התחל במצב לא מקוון עם האפליקציה Player FM !
EP 47 — Manicode Security’s Jim Manico on Addressing OWASP Top Ten Issues Through Better Security and Developer Partnerships
Manage episode 380220580 series 3330694
In this special episode of the Future of Application Security, recorded at the Developers & Security are Friends Day, Eric speaks with Jim Manico, Founder and CEO of Manicode Security, a secure coding education firm. They discuss the various challenges around certain items on the OWASP Top Ten list, including server side request forgery and access control, and how security and developers can partner for better logging and alerting. They also talk about the courses Jim offers and why the biggest one in demand today is AI and security.
Topics discussed:
- What are the biggest changes in the OWASP Top Ten, and the challenges that accompany two of the list’s issues: server side request forgery and access control.
- What issue is Jim surprised to see on the OWASP Top Ten.
- How developers and security can work more closely together to create a better approach to logging and alerting.
- Why the best approach to DevOps is to have it as a service and a liaison team, not as a merger of individuals from across the organization.
- Why training on AI and security is increasing in demand today.
- How security professionals and developers are like professional wrestling superstars.
60 פרקים
Manage episode 380220580 series 3330694
In this special episode of the Future of Application Security, recorded at the Developers & Security are Friends Day, Eric speaks with Jim Manico, Founder and CEO of Manicode Security, a secure coding education firm. They discuss the various challenges around certain items on the OWASP Top Ten list, including server side request forgery and access control, and how security and developers can partner for better logging and alerting. They also talk about the courses Jim offers and why the biggest one in demand today is AI and security.
Topics discussed:
- What are the biggest changes in the OWASP Top Ten, and the challenges that accompany two of the list’s issues: server side request forgery and access control.
- What issue is Jim surprised to see on the OWASP Top Ten.
- How developers and security can work more closely together to create a better approach to logging and alerting.
- Why the best approach to DevOps is to have it as a service and a liaison team, not as a merger of individuals from across the organization.
- Why training on AI and security is increasing in demand today.
- How security professionals and developers are like professional wrestling superstars.
60 פרקים
כל הפרקים
×
1 EP 60 - Appian’s Abdullah Munawar on Enhancing Product Security Amid Evolving Development Trends 21:05

1 EP 59 - Nat Mokry on Advancing Application Security in the Gaming Industry 26:55

1 EP 58 — Asana's Felix Matenaar on Building Resilient Security Practices for the Future 32:45

1 EP 57 — Clari's Steve Lukose on Using SLAs as Benchmarks for Businesses 27:05

1 EP 56 — Aruneesh Salhotra on Why Security is Everyone’s Job 24:49

1 EP 55 — BlackBerry's Christine Gadsby on What's Driving Software Supplier Transparency and Accountability 26:21

1 EP 54 — LPL Financial's Chad Girouard on Improving Application Security Through Better Tools and Relationships 23:43

1 EP 53 — ReversingLabs's Dave Ferguson on Securing Your Software Supply Chains 24:24

1 EP 52 — Gen’s Curtis Koenig on Speaking the Language of Why Security Matters 27:28

1 EP 51 — Ping Identity’s Arthur Loris on How to Tell Better Stories About Your Product Security Success 27:10

1 EP 50 — DryRun Security’s James Wickett on Aligning Incentives and Speaking the Same Language with Developers and Security 31:08

1 EP 49 — Semgrep’s Colleen Dai on Building Security Strategies and Relationships with Other Teams 20:14

1 EP 48 — Chaotic Good’s Johnathan Kuskos on Testing for Functionality, Priorities, and Better Incident Response 31:10

1 EP 47 — Manicode Security’s Jim Manico on Addressing OWASP Top Ten Issues Through Better Security and Developer Partnerships 26:38

1 EP 46 — TuSimple’s Madjid Nakhjiri on the Evolving Need for Automotive Cybersecurity 24:03
ברוכים הבאים אל Player FM!
Player FM סורק את האינטרנט עבור פודקאסטים באיכות גבוהה בשבילכם כדי שתהנו מהם כרגע. זה יישום הפודקאסט הטוב ביותר והוא עובד על אנדרואיד, iPhone ואינטרנט. הירשמו לסנכרון מנויים במכשירים שונים.