How can we leverage AI for more secure and efficient code and how will it impact devsecops? Ashish spoke to Michael Hanley, CSO and SVP of Engineering at GitHub, about the transformative impact of GitHub Copilot and AI on software development and security. Michael speaks about GitHub's internal use of Copilot for over three years and its role in enhancing developer satisfaction and productivity by removing mundane coding tasks. They speak about the broader implications for DevSecOps, the future of AI in coding, and strategic tips for integrating AI tools within organizations.
Guest Socials: Michael's Linkedin
Podcast Twitter - @CloudSecPod
If you want to watch videos of this LIVE STREAMED episode and past episodes - Check out our other Cloud Security Social Channels:
- Cloud Security Podcast- Youtube
- Cloud Security Newsletter
- Cloud Security BootCamp
Questions asked:
(00:00) Introduction
(02:19) A bit about Michael Hanley
(04:25) Making Security Easy for Developers
(07:17) What is GitHub Copilot?
(10:01) Whats the Future of AI for Security and Developers?
(13:36) Security Recommendations for using AI
(16:35) How is data stored in GitHub Copilot?
(17:40) How is AI impacting DevSecOps?
(21:50) The balance between Security and Innovation
(24:18) The evolution of education with AI
(27:30) Strategic Approach for CISOs implementing AI Pair Programmers
(30:08) Bridging the gap between Security and Engineering
(34:37) The Fun Questions
Resources spoken about during the episode:
https://resources.github.com/copilot-trust-center/
https://www.github.careers/careers-home
Understand Your Cloud Security Landscape to cut through the noise!
Kubernetes Security Trends 2024 | Software Supply Chain Security, Zero Trust and AI
Kubernetes Network Security for Multi Tenancy
AWS reInvent 2023 - Security highlights and announcements
eBPF - Kubernetes Network Security without the Blind Sides!
Attack Path Analysis for Better Kubernetes Security
Secure your SaaS applications like this!
Threat Detection for not so Common Cloud Services
How to Escape Clusters in a Managed Kubernetes Cluster?
Have I lost my Secrets?
How to become a Senior Cloud Security Engineer?
5 Skills to Level Up Your Cloud Hacking
Become a Cloud Native CISO in 2023
Software Supply Chain Controls for Terraform
Data Security RoadMap in 2023
The Cloud to Code Dilemma - Let's Talk
CISO Perspective: Josh Lemos, CISO of Gitlab
The Azure Cloud Security Pentesting Skills You NEED!
How to detect software supply chain attacks with Honeytokens?
Google Cloud Security Pentesting Methodology
Create your
podcast in
minutes
It is Free
Insight Story: Tech Trends Unpacked
Zero-Shot
Fast Forward by Tomorrow Unlocked: Tech past, tech future
The Unbelivable Truth - Series 1 - 26 including specials and pilot
Lex Fridman Podcast