))
Automation, Generative AI, Shift Left - the world of application security is evolving fast! Security Journey introduces the newest go-to AppSec resource, The Security Champions Podcast, hosted by Director of Application Security Michael Burch.Gain exclusive insight from software development leaders and security experts – from recounting their security champion journey to diving into the latest headlines in the AppSec world. Learn how to build, maintain and scale a successful software securit ...
…
continue reading
Security teams have their hands full. Building relationships across the entire organization is vital for success. In Champions of Security, I interview passionate individuals with unique stories. Each guest shares their honest opinions about what’s working (and what isn’t) in the security world. Tune in to learn valuable insights about keeping your customers safe.
…
continue reading
1
Michael Bargury - Low-Code/No-Code Security
51:31
51:31
Afspil senere
Afspil senere
Lister
Like
Liked
51:31
Michael Bargury is a security researcher passionate about all things related to cloud, SaaS and low-code security, and he spends his time finding the ways they could all go wrong. He is the co-founder and CTO of Zenity, where he helps companies secure their low-code/no-code apps and leads the OWASP No-Code/Low-Code Top 10 project. Michael joined th…
…
continue reading
1
Ahmad Sadeddin - Rewards and Risks of Using AI in Product Security
43:36
43:36
Afspil senere
Afspil senere
Lister
Like
Liked
43:36
Ahmad is an entrepreneur with three successful ventures who is currently the CEO at Corgea. He led various products at Coupa after they acquired his previous venture, Riskopy. He built his current company due to frustration with the manual and inefficient processes companies take around security. Ahmad joined the podcast to discuss the use of AI in…
…
continue reading
1
The Year in Review - 2023 Highlights
1:03:14
1:03:14
Afspil senere
Afspil senere
Lister
Like
Liked
1:03:14
Join Micheal Burch, host of The Security Champions Podcast, as he reminisces about the standout moments from this season's conversations, from unraveling the intricacies of elegant code to exploring the human side of coding. Welcome to The Security Champions Podcast [0:15] Clip 1 - What Can We Do For Our Security Champions? [18:30] Clip 2 - Elegant…
…
continue reading
1
Derek Fisher - The Application Security Handbook
51:46
51:46
Afspil senere
Afspil senere
Lister
Like
Liked
51:46
Derek is a multifaceted professional with expertise in information security, serving as an author, leader, speaker, and university instructor. His commitment to enhancing information security has defined his career, steering high-performing cybersecurity teams and crafting strategic initiatives that effectively mitigate risks and safeguard sensitiv…
…
continue reading
1
Tanya Janca - A Recipe for Security Champions
1:12:48
1:12:48
Afspil senere
Afspil senere
Lister
Like
Liked
1:12:48
Tanya Janca, also known as SheHacksPurple, is the best-selling author of 'Alice and Bob Learn Application Security' and founder of We Hack Purple. Tanya has been coding and working in IT for over 25 years, has won countless awards, and has been everywhere, from public service to tech giants, writing software, leading communities, founding companies…
…
continue reading
1
Common Pitfalls of Cloud Security w/ Michael Tayo (U.S. Bank) & Parveen Singh
43:43
43:43
Afspil senere
Afspil senere
Lister
Like
Liked
43:43
In Episode 16 of Champions of Security, Jacob Garrison interviews Michael Tayo (U.S. Bank) & Parveen Singh. Michael is an Assistant Vice President and Principal Information Security Engineer at U.S. Bank where he is responsible for providing visionary guidance for the enhancement of cloud and application security product offerings. With over 10 yea…
…
continue reading
Jason Haddix has had a distinguished 15-year career in cybersecurity, previously serving as the CISO of Ubisoft, Head of Trust/Security/Operations at Bugcrowd, Director of Penetration Testing at HP, and Lead Penetration Tester at Redspin. He is a hacker and bug hunter to the core and has authored many talks, speaking at cons such as BlackHat, RSA, …
…
continue reading
1
What Zero Trust Means for Applications w/ Amanda Alvarez (Trace3) & Brook Schoenfield (Resilient Software Security & True Positives)
54:48
54:48
Afspil senere
Afspil senere
Lister
Like
Liked
54:48
In Episode 15, Jacob Garrison interviews Amanda Alvarez (Trace3) & Brook Schoenfield (Resilient Software Security & True Positives). Amanda Alvarez is a DevSecOps Architect consultant at Trace3 with a passion for helping people learn more about software security. She is a highly-motivated practitioner who enjoys creating developer-oriented solution…
…
continue reading
1
How to Make Security Sexy with Jeevan Singh (Twilio) & Abdul Wahab
42:21
42:21
Afspil senere
Afspil senere
Lister
Like
Liked
42:21
In Episode 14 of Champions of Security, Jacob Garrison interviews Jeevan Singh (Director of Product Security at Twilio) and Abdul Wahab. Jeevan enjoys building security culture within organizations and educating staff on security best practices. Jeevan is responsible for a wide variety of tasks including architecting security programs, driving secu…
…
continue reading
Ron Woerner, CISSP, CISM, is the President and Chief Security Officer at Cyber-AAA, plus a Senior Security and Risk Consultant for Forrester Research. With over 20 years of experience in IT and Security experience, Ron works with leaders worldwide to advise on security, compliance, and privacy. Ron joins to discuss how organizations should adapt to…
…
continue reading
1
How to Build an OWASP Chapter w/ Jeremiah Salamon & Tony Quadros
50:57
50:57
Afspil senere
Afspil senere
Lister
Like
Liked
50:57
In Episode 13 of Champions of Security, Jacob Garrison interviews Jeremiah Salamon and Tony Quadros. Jeremiah Salamon is the Information Security Director at one of the nation’s premier law firms. He has over a decade of experience in Security Operations, Security Architecture and Engineering, and Governance, Risk & Compliance working in small busi…
…
continue reading
1
CI/CD Killed the Manual Code Review w/ Sean Wright, Principal Application Security Engineer at Featurespace
49:23
49:23
Afspil senere
Afspil senere
Lister
Like
Liked
49:23
In Episode 12 of Champions of Security, Jacob Garrison interviews Sean Wright, Principal Application Security Engineer at Featurespace. Sean Wright is a veteran application security engineer with software development roots. Within security, he has a particular interest in TLS encryption and supply chain attacks. He believes security teams must be b…
…
continue reading
1
Dustin Lehr - Fivetran Security Champions
52:29
52:29
Afspil senere
Afspil senere
Lister
Like
Liked
52:29
Dustin Lehr is the Sr. Director of Platform Security at Fivetran & the Co-founder and Chief Solutions Officer at Katilyst Security. Before shifting into cybersecurity leadership, Dustin spent 13 years as a software engineer and application architect in various industries. He joins us to discuss The Security Champion Program Success Guide and the in…
…
continue reading
1
Navigating the Gatekeepers of Cybersecurity w/ Shanief Webb, Manager of Detection & Response at Okta
43:08
43:08
Afspil senere
Afspil senere
Lister
Like
Liked
43:08
In Episode 11 of Champions of Security, Jacob Garrison interviews Shanief Webb, Manager of Detection & Response at Okta. Shanief is well-versed in the disciplines of computer science, cybersecurity, and digital forensics. He has over 8 years of diverse cybersecurity experience working for the FBI, Google, Cox Communications, IBM, Slack, Dropbox, an…
…
continue reading
1
Building a Grassroots Security Champions Program w/ Dustin Lehr (Fivetran) & Chris Romeo (Kerr Ventures)
1:03:46
1:03:46
Afspil senere
Afspil senere
Lister
Like
Liked
1:03:46
In Episode 10 of Champions of Security, Jacob Garrison hosts a live Q&A with Chris Romeo, CEO and Co-founder of Kerr Ventures, and Dustin Lehr, Head of Platform Security at Fivetran. Dustin and Chris have each built thriving security champions programs - and today they’re helping the audience overcome objections. They talk about: ↳ The necessary ch…
…
continue reading
1
How to Ensure Secure Governance for Generative AI w/ Walter Haydock, Founder & CEO of StackAware
49:00
49:00
Afspil senere
Afspil senere
Lister
Like
Liked
49:00
In Episode 9 of Champions of Security, Jacob Garrison interviews Walter Haydock, Founder & CEO of StackAware, a cybersecurity risk management and communication platform. Walter is also the author of the blog Deploying Securely. Previously, he was a Director of Product Management at Privacera - a data governance startup backed by Accel and Insight P…
…
continue reading
1
Becoming a Red Team Engineer with Micah Jackson, Sr. Red Team Engineer at VF Corporation
46:48
46:48
Afspil senere
Afspil senere
Lister
Like
Liked
46:48
In Episode 8 of Champions of Security, Jacob Garrison interviews Micah Jackson, Sr. Red Team Engineer at VF Corporation. Micah Jackson is a Senior Red Team Engineer who was an application security lead when we filmed this episode. He’s a hacker who enjoys breaking things and building them back stronger. As a security enthusiast, he enjoys diving in…
…
continue reading
1
Social Engineering of Salespeople in Cybersecurity w/ Tom Kanan, Sr. Strategic Account Executive at Cobalt
49:33
49:33
Afspil senere
Afspil senere
Lister
Like
Liked
49:33
In Episode 7 of Champions of Security, Jacob Garrison interviews Tom Kanan, Sr. Strategic Account Executive at Cobalt. Tom is a nine-year veteran of business-to-business security sales. He’s an active member of OWASP and the Cloud Security Alliance who believes in deeply understanding his customer’s business needs. Tom uses a customer-centric sales…
…
continue reading
1
Ken Buckler - The Human Side of Secure Coding
30:07
30:07
Afspil senere
Afspil senere
Lister
Like
Liked
30:07
Kenneth Buckler, CASP, is a research analyst of information security/risk and compliance management for Enterprise Management Associates, a technology industry analyst and consulting firm. With over 15 years of experience, Ken is an author on cybersecurity topics and has spent several years working for federal contractors in cybersecurity practitio…
…
continue reading
1
Ditching the SDLC w/ Rajendra Umadas, Head of InfoSec at ActBlue
47:52
47:52
Afspil senere
Afspil senere
Lister
Like
Liked
47:52
In Episode 6 of Champions of Security, Jacob Garrison interviews Rajendra Umadas, Head of InfoSec at ActBlue. Raj leads the security team over at Actblue. Over the years, he has been lucky to work with some great people and in some truly interesting organizations. From his time pentesting and focusing on embedded systems security at The Intrepidus …
…
continue reading
1
Spoofing Modern Car ECUs w/ Soufiane Alami, Cyber Security Specialist at Ford Motor Company
42:53
42:53
Afspil senere
Afspil senere
Lister
Like
Liked
42:53
In Episode 5 of Champions of Security, Jacob Garrison interviews Soufiane Alami, Cyber Security Specialist at Ford Motor Company. Soufiane Alami is an application security engineer at Ford Motors with a passion for cybersecurity. With his expertise in offensive security, he has been able to identify vulnerabilities and protect critical systems and …
…
continue reading
1
Tim Brown - SolarWinds CISO and the Elegance of Code
50:03
50:03
Afspil senere
Afspil senere
Lister
Like
Liked
50:03
Tim Brown is the CISO of SolarWinds, responsible for overseeing the company's internal IT security, product security, and security strategy. With over 25 years of experience and 18 issued patents on security-related topics, Tim is a trusted advisor for business executives, AppSec leaders, and the White House. Tim joins to discuss the concept of ele…
…
continue reading
1
Common Weaknesses Used By Cyber Attackers w/ David Ethington, Information Security Architect at Paramount
48:16
48:16
Afspil senere
Afspil senere
Lister
Like
Liked
48:16
In Episode 3 of Champions of Security, Jacob Garrison interviews David Ethington, Information Security Architect at Paramount. David has more than 20 years of experience as an IT Security Manager, intelligence officer, cybersecurity team leader, and senior security consultant, and IT Security Manager. David served in the United States Army, special…
…
continue reading
1
Teaching Developers to Code Securely w/ Vimalathithan Rajasekaran, Security Architect at PROS
48:30
48:30
Afspil senere
Afspil senere
Lister
Like
Liked
48:30
In Episode 2 of Champions of Security, Jacob Garrison interviews Vimalathithan Rajasekaran, Security Architect at PROS. Vimal began his career as a software developer before moving into application security. He led development efforts at Visa, Safeway, and United Airlines. He’s currently working as a security architect at PROS where he helps build …
…
continue reading
1
Building a Security Program with Developers in Mind w/ Justus Post, Principal Cybersecurity Architect at Bose
45:41
45:41
Afspil senere
Afspil senere
Lister
Like
Liked
45:41
In Episode 4 of Champions of Security, Jacob Garrison interviews Justus Post, Principal Cybersecurity Architect at Bose. Justus is a seasoned security professional who brings his Secure by Design philosophy everywhere he goes. If you’ve ever wondered how to build an effective relationship between security and development, or if you’re looking into …
…
continue reading
1
Where Security Fits into DevOps w/ Andrés Mayhew, Sr. Manager SRE at Apixio
45:56
45:56
Afspil senere
Afspil senere
Lister
Like
Liked
45:56
In Episode 1 of Champions of Security, Jacob Garrison interviews Andrés Mayhew, Sr. Manager SRE at Apixio. Andrés brings over 25 years of experience with large scale Internet operations. He has worked in the trenches of Netscape, Napster, VeriSign, Rivian, and nearly a dozen start-ups. The teams he’s led have enabled developers to own their applica…
…
continue reading
1
Chris Romeo - The Security Champions Framework
44:13
44:13
Afspil senere
Afspil senere
Lister
Like
Liked
44:13
Chris Romeo, AppSec expert and CEO of Kerr Ventures, joins to talk about The Security Champions Framework and the biggest mistake organizations make with security champion programs. Welcome to The Security Champions Podcast [0:10] Starting Cisco’s Security Champions Program [10:00] The Year of Security Champions [13:00] The Security Champions Frame…
…
continue reading
1
The Security Champions Podcast - COMING SOON
0:55
0:55
Afspil senere
Afspil senere
Lister
Like
Liked
0:55
Tune into our NEW show, The Security Champions Podcast, to hear conversations between appsec expert Mike Burch and leading software development and security professionals. Episodes will explore the latest news, trends, best practices, and technologies. The experts will share valuable insight and practical advice on building, maintaining, and scalin…
…
continue reading
