התחל במצב לא מקוון עם האפליקציה Player FM !
פודקאסטים ששווה להאזין
בחסות


1 The 3 N’s - Negotiation, Networking & No with Kathryn Valentine | 327 37:43
EP 36 — Highspot’s Joe Basirico on How to Build Security by Buildng Trust
Manage episode 366724019 series 3330694
In this episode of the Future of Application Security, Harshil speaks with Joe Basirico, Senior Director of Product Security at Highspot, a sales enablement platform. They discuss how product security's evolution has increased its focus on relationships and trust-building, why security is like fixing a leaky faucet, and how to prioritize for more efficiency and impact. They also discuss where product security is going and how AI will help it get there, the elements for security at scale, and how to better collaborate with developers.
Topics discussed:
- Why Joe "fell in love with security" and how his career evolved from developer to pen test to trainer, back to developer, and now to leader of a product security team.
- How product security has shifted to building trust and relationships among teams and customers — and why you should hire for hard and soft skills like empathy.
- Why security is like a leaky faucet, and why you should turn off the tap — or, fix the influx of vulnerabilities — before you spend time cleaning up the mess.
- How to prioritize what to focus on first, and why execution trumps prioritization when it comes to getting stuff done.
- What Joe does to make developers more successful through collaboration and solving problems together.
- The three elements Joe considers key for security at scale: awareness, enablement, and detection.
- The ways in which Joe and the security team distribute knowledge across the organization, including "hijacking October" for talks during Cybersecurity Awareness Month.
- What the future of product security will look like, and how AI tools will play a role in shaping it.
60 פרקים
Manage episode 366724019 series 3330694
In this episode of the Future of Application Security, Harshil speaks with Joe Basirico, Senior Director of Product Security at Highspot, a sales enablement platform. They discuss how product security's evolution has increased its focus on relationships and trust-building, why security is like fixing a leaky faucet, and how to prioritize for more efficiency and impact. They also discuss where product security is going and how AI will help it get there, the elements for security at scale, and how to better collaborate with developers.
Topics discussed:
- Why Joe "fell in love with security" and how his career evolved from developer to pen test to trainer, back to developer, and now to leader of a product security team.
- How product security has shifted to building trust and relationships among teams and customers — and why you should hire for hard and soft skills like empathy.
- Why security is like a leaky faucet, and why you should turn off the tap — or, fix the influx of vulnerabilities — before you spend time cleaning up the mess.
- How to prioritize what to focus on first, and why execution trumps prioritization when it comes to getting stuff done.
- What Joe does to make developers more successful through collaboration and solving problems together.
- The three elements Joe considers key for security at scale: awareness, enablement, and detection.
- The ways in which Joe and the security team distribute knowledge across the organization, including "hijacking October" for talks during Cybersecurity Awareness Month.
- What the future of product security will look like, and how AI tools will play a role in shaping it.
60 פרקים
כל הפרקים
×
1 EP 60 - Appian’s Abdullah Munawar on Enhancing Product Security Amid Evolving Development Trends 21:05

1 EP 59 - Nat Mokry on Advancing Application Security in the Gaming Industry 26:55

1 EP 58 — Asana's Felix Matenaar on Building Resilient Security Practices for the Future 32:45

1 EP 57 — Clari's Steve Lukose on Using SLAs as Benchmarks for Businesses 27:05

1 EP 56 — Aruneesh Salhotra on Why Security is Everyone’s Job 24:49

1 EP 55 — BlackBerry's Christine Gadsby on What's Driving Software Supplier Transparency and Accountability 26:21

1 EP 54 — LPL Financial's Chad Girouard on Improving Application Security Through Better Tools and Relationships 23:43

1 EP 53 — ReversingLabs's Dave Ferguson on Securing Your Software Supply Chains 24:24

1 EP 52 — Gen’s Curtis Koenig on Speaking the Language of Why Security Matters 27:28

1 EP 51 — Ping Identity’s Arthur Loris on How to Tell Better Stories About Your Product Security Success 27:10

1 EP 50 — DryRun Security’s James Wickett on Aligning Incentives and Speaking the Same Language with Developers and Security 31:08

1 EP 49 — Semgrep’s Colleen Dai on Building Security Strategies and Relationships with Other Teams 20:14

1 EP 48 — Chaotic Good’s Johnathan Kuskos on Testing for Functionality, Priorities, and Better Incident Response 31:10

1 EP 47 — Manicode Security’s Jim Manico on Addressing OWASP Top Ten Issues Through Better Security and Developer Partnerships 26:38

1 EP 46 — TuSimple’s Madjid Nakhjiri on the Evolving Need for Automotive Cybersecurity 24:03

1 EP 45 — Toast’s David Kosorok on Leading Application Security with Collaboration, Empathy, and Good Data 33:55

1 EP 44 — Workrise’s Tim Kelly on How to Build a Data-Driven Application Security Program 24:06

1 EP 43 — Avalara’s Derek Samford on Building a Security Culture with Data, Collaboration, Education, and Empathy 35:56

1 EP 42 — Snowflake’s Jacob Salassi on the Science of Product Security 38:00

1 EP 41 — SAP’s Helen Oakley on Protecting Human Well-Being by Securing Software Supply Chains 26:07

1 EP 40 — Steve Springett on Solving Software Supply Chain Security and SBOM Challenges 33:58

1 EP 39 — A Modernized and Scalable Approach to Product Security with Origami Risk’s Prajakta Badhe 28:20

1 EP 38 — Avalara’s Anthony Ungerman on the Imperative for Security-Minded Organizations 29:34

1 EP 37 — Choosing AppSec Priorities: Software Supply Chain, Code-to-Cloud Business Context and Metrics 55:51

1 EP 36 — Highspot’s Joe Basirico on How to Build Security by Buildng Trust 30:58

1 EP 35 — Streamlining and Accelerating Your Product Security with iHerb’s Mike de Libero 25:21

1 EP 34 — The Future of AppSec: People, Processes, and Progress with Coalfire’s Warren Kopp 30:00

1 EP 33 — Democratizing Security and Implementing Change with Twilio’s Ariel Shin 39:36

1 EP 32 — Leading with Context - Where Institutional Knowledge Cannot Scale 30:04

1 EP 31 — Cloudflare’s Sri Pulla on Building Collaboration and Synergies for Better Product Security 24:55

1 EP 30 — C.H. Robsinson’s Jason Espone on Building Business Resiliency Through Application Security 32:10

1 EP 29 — A Conversation on the State of AppSec with Reddit’s Matt Johansen and Semgrep’s Clint Gibler 37:28

1 EP 28 — Injecting Better Security into Products and Processes with Dremio’s Emre Saglam 37:00

1 EP 27 — Mohit Kalra: How Sprinklr Scales Product Security 36:40

1 EP 26 — Derek Fisher: How Envestnet Scales Product Security 38:45

1 EP 25 — Navigating the Complex World of Software Supply Chain Security with Schneider Electric’s Cassie Crossley 39:23

1 EP 24 — Innovating Application Security with Industry Expert Eric Sheridan 29:23

1 Ep 23 — Martin Nystrom: How Lumen Scales Product Security 30:53

1 Ep 22 — How to Find the Right Balance Between Compliance and Security with KnowBe4’s Senior Director of Product Security, Bradley Petzer 28:21

1 EP 21 — Red Hat’s Emmy Eide on How To Build A Strong Software Supply Chain Security Program 30:30

1 EP 20 — Naomi Buckwalter: Closing the Demand Gap in Cybersecurity and Building Diverse Teams 35:56

1 EP 19 — Kevin Paige, CISO: How Supply Chain Company Flexport Scales AppSec 32:31

1 EP 18 — Daniel Wood, CISO: How Unqork Scales Product Security 35:44

1 EP 17 — SolarWinds VP of Security Tim Brown: Behind the Scenes of the 2020 SolarWinds Breach 34:45

1 EP 16 — Mukund Sarma: How Chime Built a Scalable Product Security Program 36:56
ברוכים הבאים אל Player FM!
Player FM סורק את האינטרנט עבור פודקאסטים באיכות גבוהה בשבילכם כדי שתהנו מהם כרגע. זה יישום הפודקאסט הטוב ביותר והוא עובד על אנדרואיד, iPhone ואינטרנט. הירשמו לסנכרון מנויים במכשירים שונים.