Difference between revisions of "Asw132"

From Security Weekly Wiki
Jump to navigationJump to search
(Created page with " <!-- ************************* DO NOT EDIT THIS SECTION. THIS IS AUTO-GENERATED BY PPWORKS. YOUR CHANGES WILL BE LOST! *************************** --> = Application Securit...")
 
 
(4 intermediate revisions by the same user not shown)
Line 10: Line 10:
 
************************* DO NOT EDIT THIS SECTION. THIS IS AUTO-GENERATED BY PPWORKS. YOUR CHANGES WILL BE LOST! ***************************
 
************************* DO NOT EDIT THIS SECTION. THIS IS AUTO-GENERATED BY PPWORKS. YOUR CHANGES WILL BE LOST! ***************************
 
-->
 
-->
= 1. Fuzz Testing! - 12:30 PM  =
+
= 1. Security Decisions During Application Development - 12:30 PM-01:00 PM  =
 
<!--   
 
<!--   
 
************************* MAKE CHANGES IN THE TEMPLATES BELOW! ***************************
 
************************* MAKE CHANGES IN THE TEMPLATES BELOW! ***************************
Line 16: Line 16:
  
  
 +
=== Sponsored By ===
 +
<gallery mode="packed" widths=150px heights=150px>
 +
Image:Synopsys_color_logo_sm-1.png
 +
</gallery>
 +
<center><strong>Visit https://securityweekly.com/synopsys for more information!</strong></center>
 +
 +
 +
=== Announcements ===
 +
<ul style="margin-left: 50px;">
 +
 +
<li> <p>Security Weekly, in partnership with CyberRisk Alliance, is excited to present Security Weekly Unlocked on December 10, 2020. This 1 day virtual event wraps up with the 15th anniversary edition of Paul&#8217;s Security Weekly live on Youtube! Visit https://securityweekly.com/unlocked to view the agenda and register for free!</p></li>
 +
 +
</ul>
  
 
=== Description ===
 
=== Description ===
  
 +
The security of any application is a function of the decisions made during development. Measuring the risk of those decisions isn't something contained within a single tool, but instead requires a set of perspectives on how a "bad decision" can manifest itself in the security of the app.
 +
 +
This segment is sponsored by Synopsys. Visit https://securityweekly.com/synopsys to learn more about them!
 +
 +
 +
 +
 +
==Guest(s)==
 +
 +
 +
===Tim Mackey===
 +
<gallery mode="nolines" widths=175px heights=175px>
 +
 +
Image:TimMackey-1.jpg|'''[https://twitter.com/@timintech Tim Mackey]''' is Principal Security Strategist at Synopsys<br>
 +
 +
</gallery>
 +
Tim Mackey is a principal security strategist for the Synopsys Cybersecurity Research Center. As a security strategist, he applies his skills in distributed systems engineering, mission critical engineering, performance monitoring, large-scale data center operations, and global data privacy regulations to customer problems. An O'Reilly Media published author, Tim has also been covered in publications around the globe including Fortune, NBC News, Dark Reading, InfoSecurity Magazine, and The Straits Times.<br>
  
  
Line 24: Line 54:
  
 
<gallery mode="nolines" widths=175px heights=175px>
 
<gallery mode="nolines" widths=175px heights=175px>
 +
 +
Image:John_Kinsella-1.jpg|<center>[https://twitter.com/@johnlkinsella John Kinsella]  - Chief Architect at Accurics</center>
 +
 +
Image:MattAlderman-0.png|<center>[https://twitter.com/@maldermania Matt Alderman]  - CEO at Security Weekly</center>
  
 
Image:mike-shema-0.jpg|<center>[https://twitter.com/@Codexatron Mike Shema]  - Product Security Lead at Square</center>
 
Image:mike-shema-0.jpg|<center>[https://twitter.com/@Codexatron Mike Shema]  - Product Security Lead at Square</center>
Line 29: Line 63:
 
</gallery>
 
</gallery>
  
= 2. Application News - 01:00 PM  =
+
= 2. Application News - 01:00 PM-01:30 PM  =
 
<!--   
 
<!--   
 
************************* MAKE CHANGES IN THE TEMPLATES BELOW! ***************************
 
************************* MAKE CHANGES IN THE TEMPLATES BELOW! ***************************
Line 35: Line 69:
  
  
 +
 +
=== Announcements ===
 +
<ul style="margin-left: 50px;">
 +
 +
<li> <p>Do you always end up missing our live streams? Need somewhere to flag Security Weekly podcasts that you want to listen to? Subscribe on your favorite podcast catcher or our Youtube channel, sign up for our mailing list, and join our Discord Server to stay in the loop on all things Security Weekly! Visit: https://securityweekly.com/subscribe</p></li>
 +
 +
<li> <p>In our upcoming webcasts &amp; technical trainings, you will learn how to build a risk-based vulnerability management program, how to prevent phishing scams, and how to move beyond vulnerability scan to vulnerability fix! Visit https://securityweekly.com/webcasts to see what we have coming up, or visit securityweekly.com/ondemand to view our previously recorded webcasts!</p></li>
 +
 +
</ul>
  
 
=== Description ===
 
=== Description ===
 +
 +
XBox bug exposed email identities, focusing on prevention for your cloud security strategies, Amazon looking to hire more Rust developers, KubeCon continues push for security, and a DevOps reading list.
  
  
Line 42: Line 87:
 
==Hosts==
 
==Hosts==
  
 +
 +
==[https://twitter.com/@johnlkinsella John Kinsella]'s Content: ==
 +
<gallery mode="nolines" widths=150px heights=150px>
 +
Image:John_Kinsella-1.jpg
 +
</gallery>
 +
{{Template:ASW132NewsJohnKinsella}}
 +
 +
==[https://twitter.com/@maldermania Matt Alderman]'s Content: ==
 +
<gallery mode="nolines" widths=150px heights=150px>
 +
Image:MattAlderman-0.png
 +
</gallery>
 +
{{Template:ASW132NewsMattAlderman}}
  
 
==[https://twitter.com/@Codexatron Mike Shema]'s Content: ==
 
==[https://twitter.com/@Codexatron Mike Shema]'s Content: ==

Latest revision as of 14:30, 30 November 2020

Application Security Weekly Episode #132 - November 30, 2020

Subscribe to all of our shows and mailing list by visiting: https://securityweekly.com/subscribe

1. Security Decisions During Application Development - 12:30 PM-01:00 PM

Visit https://securityweekly.com/synopsys for more information!


Announcements

  • Security Weekly, in partnership with CyberRisk Alliance, is excited to present Security Weekly Unlocked on December 10, 2020. This 1 day virtual event wraps up with the 15th anniversary edition of Paul’s Security Weekly live on Youtube! Visit https://securityweekly.com/unlocked to view the agenda and register for free!

Description

The security of any application is a function of the decisions made during development. Measuring the risk of those decisions isn't something contained within a single tool, but instead requires a set of perspectives on how a "bad decision" can manifest itself in the security of the app.

This segment is sponsored by Synopsys. Visit https://securityweekly.com/synopsys to learn more about them!



Guest(s)

Tim Mackey

Tim Mackey is a principal security strategist for the Synopsys Cybersecurity Research Center. As a security strategist, he applies his skills in distributed systems engineering, mission critical engineering, performance monitoring, large-scale data center operations, and global data privacy regulations to customer problems. An O'Reilly Media published author, Tim has also been covered in publications around the globe including Fortune, NBC News, Dark Reading, InfoSecurity Magazine, and The Straits Times.


Hosts

2. Application News - 01:00 PM-01:30 PM

Announcements

  • Do you always end up missing our live streams? Need somewhere to flag Security Weekly podcasts that you want to listen to? Subscribe on your favorite podcast catcher or our Youtube channel, sign up for our mailing list, and join our Discord Server to stay in the loop on all things Security Weekly! Visit: https://securityweekly.com/subscribe

  • In our upcoming webcasts & technical trainings, you will learn how to build a risk-based vulnerability management program, how to prevent phishing scams, and how to move beyond vulnerability scan to vulnerability fix! Visit https://securityweekly.com/webcasts to see what we have coming up, or visit securityweekly.com/ondemand to view our previously recorded webcasts!

Description

XBox bug exposed email identities, focusing on prevention for your cloud security strategies, Amazon looking to hire more Rust developers, KubeCon continues push for security, and a DevOps reading list.


Hosts

John Kinsella's Content:

Articles

Matt Alderman's Content:

Articles

Mike Shema's Content:

Articles