- 1 Application Security Weekly Episode #132 - November 30, 2020
- 2 1. Security Decisions During Application Development - 12:30 PM-01:00 PM
- 3 2. Application News - 01:00 PM
Application Security Weekly Episode #132 - November 30, 2020
Subscribe to all of our shows and mailing list by visiting: https://securityweekly.com/subscribe
1. Security Decisions During Application Development - 12:30 PM-01:00 PM
The security of any application is a function of the decisions made during development. Measuring the risk of those decisions isn't something contained within a single tool, but instead requires a set of perspectives on how a "bad decision" can manifest itself in the security of the app. This segment is sponsored by Synopsys. Visit https://securityweekly.com/synopsys to learn more about them!
Tim Mackey is Principal Security Strategist at Synopsys
Tim Mackey is a principal security strategist for the Synopsys Cybersecurity Research Center. As a security strategist, he applies his skills in distributed systems engineering, mission critical engineering, performance monitoring, large-scale data center operations, and global data privacy regulations to customer problems. An O'Reilly Media published author, Tim has also been covered in publications around the globe including Fortune, NBC News, Dark Reading, InfoSecurity Magazine, and The Straits Times.
2. Application News - 01:00 PM
Mike Shema's Content:
- Critical MobileIron RCE Flaw Under Active Attack for a bug disclosed and patched in June.
- Xbox bug could have allowed hackers to link gamer tags with players' emails, making identity in Fortnite less fortified than expected.
- Prevention Is Better Than the Cure When Securing Cloud-Native Deployments reiterates a tenet of DevOps -- the feedback loop.
- Amazon: We're hiring software engineers who know programming language Rust gives us a chance to consider the influence of toolchains on security.
- KubeCon Coverage: Incentivizing the DevSecOps Culture gives us a chance to think about motivating teams to focus on prevention, toolchains, and feedback loops.
- The DevOps Reading List: Choosing your next DevOps book gives us some ways to learn more about DevOps.