How can we leverage AI for more secure and efficient code and how will it impact devsecops? Ashish spoke to Michael Hanley, CSO and SVP of Engineering at GitHub, about the transformative impact of GitHub Copilot and AI on software development and security. Michael speaks about GitHub's internal use of Copilot for over three years and its role in enhancing developer satisfaction and productivity by removing mundane coding tasks. They speak about the broader implications for DevSecOps, the future of AI in coding, and strategic tips for integrating AI tools within organizations.
Guest Socials: Michael's Linkedin
Podcast Twitter - @CloudSecPod
If you want to watch videos of this LIVE STREAMED episode and past episodes - Check out our other Cloud Security Social Channels:
- Cloud Security Podcast- Youtube
- Cloud Security Newsletter
- Cloud Security BootCamp
Questions asked:
(00:00) Introduction
(02:19) A bit about Michael Hanley
(04:25) Making Security Easy for Developers
(07:17) What is GitHub Copilot?
(10:01) Whats the Future of AI for Security and Developers?
(13:36) Security Recommendations for using AI
(16:35) How is data stored in GitHub Copilot?
(17:40) How is AI impacting DevSecOps?
(21:50) The balance between Security and Innovation
(24:18) The evolution of education with AI
(27:30) Strategic Approach for CISOs implementing AI Pair Programmers
(30:08) Bridging the gap between Security and Engineering
(34:37) The Fun Questions
Resources spoken about during the episode:
https://resources.github.com/copilot-trust-center/
https://www.github.careers/careers-home
Google Cloud Security Fundamentals
Red Team in Google Cloud
How to Automate Security in Google Cloud?
Authorization Control for Enterprise in Cloud
McFee and FireEye join forces for XDR
AWS IAM Getting Started
Remote Access Trojans target Public Cloud Infrastructure
Secret Management for Modern Apps Explained
CISO in a Cloud World in 2022 - Stu Hirst
UK Financial Regulators monitoring Cloud Providers Closely
Building Modern Identity (IAM) Roadmap for Cloud
Google invests in Security + Microsoft's Log4Shell Update
Building Scalable Authorization in Cloud Native Apps
The Latest with Log4J
Log4j - How the Cloud Providers responded!
AWS Outage - What is impacted?
AWS re:Invent 2021 - All the Cloud Security Updates so far
Palo Alto Investors told: "18- 24 months ahead" of competition
Breaking and Building Serverless Application Security
Feds go "Cloud Smart"+ Alibaba Cloud targeted by Hackers
Create your
podcast in
minutes
It is Free
Insight Story: Tech Trends Unpacked
Zero-Shot
Fast Forward by Tomorrow Unlocked: Tech past, tech future
The Unbelivable Truth - Series 1 - 26 including specials and pilot
Lex Fridman Podcast