התחל במצב לא מקוון עם האפליקציה Player FM !
פודקאסטים ששווה להאזין
בחסות


Unravelling Trends In Data Security With Danny Allan
Manage episode 407841311 series 1601195
Episode Summary
Are you curious about the ever-changing landscape of data security? In this episode, we are joined by Danny Allan, the newly appointed Chief Technology Officer at Snyk, to delve into the evolving landscape of data security. In our conversation, we discussed his professional background and how he went from hacking security systems at university to becoming a security expert at Snyk. Hear about his experience in dynamic application security testing and the challenges and opportunities of working for large companies. We unpack how controlling human actions can reduce security vulnerabilities, the nuances of running cloud-hosted services, and how the techniques used for static application security testing have changed. Danny explains the importance of considering security aspects during the early stages of software development and how governance has integrated into data security measures. Gain valuable insights into the ever-changing landscape of data security, AI’s potential role in revolutionizing security practices, and much more.
Show Notes
In this episode, Guy Podjarny is joined by Danny Allan, the new CTO at Snyk. Danny shares his fascinating career journey that has taken him in and out of the application security space over the past 20+ years.
They discuss how application security practices like static analysis (SAST) and dynamic scanning (DAST) have evolved, with SAST becoming much faster and easier to integrate earlier in the development cycle. Danny reflects on what has changed and what has surprisingly stayed the same since his earlier days in AppSec.
The conversation digs into the intersections between application security, data security, cloud security, and how these domains are becoming more interconnected as the same teams take on responsibilities across these areas. Danny draws insights from his recent experience at Veeam, highlighting how practices like data immutability and multi-person authorization grew in importance to combat ransomware threats.
Looking ahead, Danny and Guy explore the potential impact of AI/ML on application security. From automating threat modeling to personalizing vulnerability findings based on developer interests to generating rules and fixes, Danny sees AI unlocking many opportunities to transform AppSec practices.
Overall, this episode provides a unique perspective spanning Danny's 20+ year career in security. His experiences illustrate the evolution of AppSec tooling and processes, the blurring of domains like app/data/cloud security, and how AI could radically reshape the future of application security.
Links
Follow Us
Follow Us
167 פרקים
Manage episode 407841311 series 1601195
Episode Summary
Are you curious about the ever-changing landscape of data security? In this episode, we are joined by Danny Allan, the newly appointed Chief Technology Officer at Snyk, to delve into the evolving landscape of data security. In our conversation, we discussed his professional background and how he went from hacking security systems at university to becoming a security expert at Snyk. Hear about his experience in dynamic application security testing and the challenges and opportunities of working for large companies. We unpack how controlling human actions can reduce security vulnerabilities, the nuances of running cloud-hosted services, and how the techniques used for static application security testing have changed. Danny explains the importance of considering security aspects during the early stages of software development and how governance has integrated into data security measures. Gain valuable insights into the ever-changing landscape of data security, AI’s potential role in revolutionizing security practices, and much more.
Show Notes
In this episode, Guy Podjarny is joined by Danny Allan, the new CTO at Snyk. Danny shares his fascinating career journey that has taken him in and out of the application security space over the past 20+ years.
They discuss how application security practices like static analysis (SAST) and dynamic scanning (DAST) have evolved, with SAST becoming much faster and easier to integrate earlier in the development cycle. Danny reflects on what has changed and what has surprisingly stayed the same since his earlier days in AppSec.
The conversation digs into the intersections between application security, data security, cloud security, and how these domains are becoming more interconnected as the same teams take on responsibilities across these areas. Danny draws insights from his recent experience at Veeam, highlighting how practices like data immutability and multi-person authorization grew in importance to combat ransomware threats.
Looking ahead, Danny and Guy explore the potential impact of AI/ML on application security. From automating threat modeling to personalizing vulnerability findings based on developer interests to generating rules and fixes, Danny sees AI unlocking many opportunities to transform AppSec practices.
Overall, this episode provides a unique perspective spanning Danny's 20+ year career in security. His experiences illustrate the evolution of AppSec tooling and processes, the blurring of domains like app/data/cloud security, and how AI could radically reshape the future of application security.
Links
Follow Us
Follow Us
167 פרקים
כל הפרקים
×
1 Open Authorization In The World Of AI With Aaron Parecki 36:07

1 The Evolution Of Platform Engineering With Massdriver CEO Cory O’Daniel 40:01

1 The Future Of API Security With FireTail’s Jeremy Snyder 38:00

1 The Case For Steward Ownership And Open Source With Melanie Rieback 44:11

1 Advancing AppSec With AI With Akira Brand 34:52

1 Authentication, Authorization, And The Future Of AI Security With Alex Salazar 38:36

1 Rethinking Secure Communication With Mrinal Wadhwa 40:32

1 The Future Of Security, Privacy And Control With Wayne Chang 39:22

1 Building Security Culture With Dustin Lehr 38:15

1 Securing And Defending Like Brazilian Jiu-Jitsu With Jeremiah Grossman 36:57

1 The Development Of Security With David Mytton 34:23

1 Securing The Future: How AI Is Transforming Vulnerability Detection With Berkay Berabi 29:45

1 Revolutionizing Coding - The Future Of AI-Driven Development With Jeff Wang 34:50

1 Implementing A DevSecOps Program For Large Organizations With David Imhoff 40:29

1 The Evolution of Snyk, The Developer Security Company, With Guy Podjarny 50:56

1 Secrets Management With Doppler's Brian Vallelunga 26:15


1 Unravelling Trends In Data Security With Danny Allan 36:58

1 The Crucial Role Of Consolidated Platforms In DevSecOps With John Delmare 29:10

1 Redefining Cybersecurity With Sean Catlett 49:19

1 Inside The Matrix Of Container Security: A Deep Dive Into Container Breakout Vulnerabilities 51:00

1 Threat Modeling In The Age Of Artificial Intelligence With Laura Bell Main 45:15

1 Generative AI, Security, And Predictions For 2024 1:06:43

1 AI, Cybersecurity, And Data Governance With Henrik Smith 45:42


1 The Evolution Of Data, AI, And Security In Tech With Tomasz Tunguz 46:13

1 The Need For Diverse Perspectives In AI Security With Dr. Christina Liaghati 36:29

1 (Rewind) The Changing Landscape Of Security With Dev Akhawe 44:14

1 SAIF - Effective Risk Management And AI Security Standards With Royal Hansen 54:24

1 AI Safety, Security, And Play With David Haber 52:12

1 The Intersection Of Integrity And Security With Guy Rosen 43:27

1 What AI Means For Cybersecurity With Sam Curry 53:34

1 The Five Pillars Of MLSecOps With Ian Swanson 1:00:02

1 Securing Supply Chains In C++, Java, And JavaScript With Liran Tal And Roy Ram 38:08

1 Responding To A Security Incident With Rob Zuber 46:40

1 Exploring Data Security In Social Media With Roland Cloutier 50:21

1 Defining Cloud Security With Rick Doten 41:28

1 The Future Of Software Supply Chain Security 19:52

1 Tackling Software Supply Chain Security As An Organization 33:48

1 Software Supply Chain Security - Key Terms, Players, And Projects You Need To Know About 41:02

1 What Is Software Supply Chain Security And Why It's Important 30:38

1 2022 Recap And 2023 Predictions 1:05:50

1 Building Open Source Communities With Rishiraj Sharma 35:51

1 Malicious Packages And Malicious Intent With Liran Tal 41:20

1 State Of Cloud Security With Drew Wright 44:57
ברוכים הבאים אל Player FM!
Player FM סורק את האינטרנט עבור פודקאסטים באיכות גבוהה בשבילכם כדי שתהנו מהם כרגע. זה יישום הפודקאסט הטוב ביותר והוא עובד על אנדרואיד, iPhone ואינטרנט. הירשמו לסנכרון מנויים במכשירים שונים.