const podcast = { episode: 229, title: 'Security', topics: [ 'Security', 'business', 'insurance' ], guest: 'Rey Bango' hosts: [ 'Craig Shoemaker', 'Ward Bell' ]};
Recording date: 03/30/2023
John Papa @John_Papa
Ward Bell @WardBell
Dan Wahlin @DanWahlin
Craig Shoemaker @craigshoemaker
Rey Bango @ReyBango
Brought to you by
Resources:
- LastPass Issues Update on Data Breach, But Users Should Still Change Passwords - CNET
- How to Think Like a Hacker
- How to Write Secure Code
- Static Application Security Testing
- Veracode
- Snyk
- Typosquatting
- Open Worldwide Application Security Project (OWASP)
- What is Dynamic Application Security Testing (DAST)?
- Attack IQ
- Red Canary
- Zero Trust Security
- Wazuh - The free and open source XDR platform
- Defcom
- Security Courses on Udemy
Timejumps
- 00:30 Welcome
- 01:12 Guest introduction
- 02:53 What does offensive security mean?
- 07:42 Sponsor: Ag Grid
- 08:46 How do you balance security and ease for developing?
- 14:00 Is there a tool or AI for security?
- 21:22 Where are the guard rails for people?
- 34:02 Sponsor: Narwhal
- 34:39 How do you deal with the humans using the apps?
- 40:18 Dealing with supply chain and npm
- 47:28 Final thoughts
Podcast editing on this episode done by Chris Enns of Lemon Productions.