The Balancing Act by Security Compass cover art

The Balancing Act by Security Compass

The Balancing Act by Security Compass

By: Security Compass
Listen for free

About this listen

 Security Compass, a leading provider of cybersecurity solutions and advisory services, enables organizations to adopt balanced development automation for rapid and secure application development. With their flagship product, SD Elements, the company helps automate significant portions of proactive manual processes for security and compliance that improves time to market for new technology. In addition, they offer advisory services on how organizations can embrace emerging technologies like cloud to strengthen their security posture. Security Compass is the trusted solution provider to leading financial organizations, technology enablers, and renowned global brands.Copyright 2020 All rights reserved.
Episodes
  • Shaun Mckeag - Behind Application Security

    Shaun Mckeag - Behind Application Security
    Dec 5 2022

    Today we are joined by Altaz Valani from Security Compass and Shaun Mckeag, Principal Software Engineer at Gen Digital, to talk about her personal journey in software development and security. Many listeners are either trying to get into secure software development, or have graduated from a program that teaches security and software development, or perhaps recently transitioned from a different role. It’s nice to have someone with years of experience in the field to give some perspective, guidance, tips, and encouragement. Listen in as Shaun shares her personal journey that will inspire and help those of us who are newer to the secure software space.

    Useful links from this podcast:

    • https://www.linkedin.com/in/shaunmckeag/
    • https://nakedsecurity.sophos.com/podcast/
    • https://www.sans.org/blog/
    • https://www.devseccon.com/the-secure-developer-podcast
    • https://darknetdiaries.com/
    • https://owasp.org/events/#AppSec%20Days
    • https://devcon.org/
    • https://www.blackhat.com/
    Show More Show Less
    24 mins
  • Pranshu Bajpai - Use Training to Influence Your Developers With Embracing Security

    Pranshu Bajpai - Use Training to Influence Your Developers With Embracing Security
    Nov 8 2022

    Today we are joined by Altaz Valani from Security Compass and Pranshu Bajpai, Security Architect at Motorola Solutions, to talk about the use of application security training to influence developers toward embracing security. Many developers are eager to learn about security but they need help. Developers move very fast because their performance is often measured around release frequency. All of this is happening while developers have to keep up with continually evolving frameworks and tools. It is possible for security teams to influence developers without getting in their way.
    Show More Show Less
    27 mins
  • Simone Curzi - Developer Centric Threat Modeling

    Simone Curzi - Developer Centric Threat Modeling
    Sep 12 2022

    Today we are joined by Altaz Valani from Security Compass and Simone Curzi, Principal Consultant at Microsoft, to talk about the role of developers within threat modeling. When we mention threat modeling, what often comes to mind are data flow diagrams created during a security design process. After these diagrams are created and eventually hit the developer backlog, we discover more insights that further evolve the security design. In this way, developers are crucial to an evolving threat model activity. Yet, many questions exist. We try to answer some of those developer questions related to threat modeling.

    Useful links from this podcast:

    • https://simoneonsecurity.com/
    • https://threatsmanager.com/
    • https://www.threatmodelingmanifesto.org/
    • https://cve.mitre.org/
    • https://cwe.mitre.org/
    Show More Show Less
    31 mins
No reviews yet