DevSecOps Podcast

In this insightful episode of the DevSecOps Podcast, hosts Cássio, Marcos, and Ben-Hur are joined by Magdalena Jarosz, a psychologist with extensive experience in the field of information security. The conversation delves into the crucial role that psychology plays in cybersecurity, especially in understanding and influencing human behavior to mitigate vulnerabilities and enhance security practices. Magda shares her expertise on why people often avoid addressing vulnerabilities and how psychological principles can be applied to foster a more security-conscious mindset. She explains the common defensive reactions that security team members encounter when approaching colleagues with potential security issues. The discussion highlights the importance of communication strategies and the psychological barriers that can hinder effective security practices.Become a supporter of this podcast: https://www.spreaker.com/podcast/devsecops-podcast--4179006/support.Apoio: Nova8, Snyk, Conviso, Gold Security, Digitalwolk e PurpleBird Security.

In this episode of the DevSecOps Podcast, our host engages in a fascinating conversation with experts from Kodem about the cutting-edge world of Runtime Application Security. As applications become increasingly complex and cyber threats evolve, traditional security measures often fall short. Our guests from Kodem discuss how this kind of solution provides a dynamic layer of security by continuously monitoring and protecting applications in real-time. Listeners will gain insights into the technical underpinnings of runtime security, its advantages over traditional security solutions, and practical implementation strategies. The episode delves into real-world scenarios where runtime security has thwarted sophisticated attacks, demonstrating its effectiveness in maintaining application integrity and protecting sensitive data. Whether you're a seasoned DevSecOps professional or new to the field, this episode offers valuable perspectives on enhancing your security posture with runtime security. Tune in to learn how integrating this technology can fortify your defenses and keep your applications safe from emerging threats.Become a supporter of this podcast: https://www.spreaker.com/podcast/devsecops-podcast--4179006/support.Apoio: Nova8, Snyk, Conviso, Gold Security, Digitalwolk e PurpleBird Security.

In this engaging episode of the DevSecOps Podcast, host Cássio is joined by Eitan, the CEO of Mobb.ai, to delve into the transformative impact of AI on security practices. The discussion centers around how Mobb.ai leverages the power of artificial intelligence to automatically fix vulnerabilities in software development, revolutionizing the way organizations approach security.Eitan shares insights on the core technology behind Mobb.ai, explaining how their AI-driven platform  and algorithms seamlessly integrates with existing DevOps workflows. He highlights the platform's capability of generating and appling patches autonomously, significantly reducing the window of exposure to potential threats.Listeners will gain a deeper understanding of the benefits of automated vulnerability management, including improved efficiency, reduced human error, and enhanced overall security posture. Eitan also touches on real-world case studies, illustrating the tangible impact of Mobb.ai's solutions in various industries.Tune in to learn how AI is reshaping the landscape of cybersecurity, providing innovative solutions to some of the most pressing challenges faced by development and security teams today. Whether you're a seasoned DevSecOps professional or new to the field, this episode offers valuable insights into the future of automated security.Become a supporter of this podcast: https://www.spreaker.com/podcast/devsecops-podcast--4179006/support.Apoio: Nova8, Snyk, Conviso, Gold Security, Digitalwolk e PurpleBird Security.

In this episode, our hosts dive deep into the critical realm of data protection with a renowned cybersecurity expert. Together, they explore the intricacies of safeguarding sensitive information in the SaaS landscape. The discussion kicks off with an overview of the unique challenges and responsibilities SaaS providers face in securing user data. Our guest shares insights on the best practices for data protection, emphasizing the importance of robust encryption and access controls.The conversation then shifts to data backup strategies, where they discuss the significance of regular backups, the different types of backup solutions available, and how to choose the right one for your organization. Practical advice is provided on creating effective backup policies that ensure minimal data loss and quick recovery times.Finally, the episode delves into disaster recovery planning, highlighting the steps organizations should take to prepare for and respond to data breaches, system failures, or other catastrophic events. Key components of a disaster recovery plan are outlined, from risk assessment to incident response, along with real-world examples of successful recoveries.Whether you're a SaaS provider, a business relying on SaaS solutions, or simply interested in cybersecurity, this episode is packed with valuable information and actionable tips to help you protect your data and ensure business continuity in the face of digital threats. Don't miss this enlightening conversation on the importance of data protection, backup, and disaster recovery in the ever-evolving world of SaaS.Become a supporter of this podcast: https://www.spreaker.com/podcast/devsecops-podcast--4179006/support.Apoio: Nova8, Snyk, Conviso, Gold Security, Digitalwolk e PurpleBird Security.

Neste episódio, os anfitriões mergulham no fascinante mundo da inteligência artificial (IA) e sua aplicação na segurança de aplicativos (AppSec). A conversa abrange as inovações mais recentes no desenvolvimento de software de IA, incluindo startups que estão criando engenheiros de software autônomos e ferramentas que geram infraestrutura automaticamente a partir do código-fonte de aplicativos. Os anfitriões discutem como os modelos de linguagem natural (LLMs) estão transformando o campo de AppSec, proporcionando novos desafios e oportunidades para os profissionais da área. Além disso, são compartilhadas estratégias para se manter atualizado com as rápidas mudanças tecnológicas e preparar-se para o futuro do trabalho com IA. Junte-se a nós para entender como essas tecnologias estão moldando o presente e o futuro da segurança de aplicativos e descubra dicas práticas para integrar IA em suas práticas de DevSecOps.Become a supporter of this podcast: https://www.spreaker.com/podcast/devsecops-podcast--4179006/support.Apoio: Nova8, Snyk, Conviso, Gold Security, Digitalwolk e PurpleBird Security.

In this insightful episode of the DevSecOps Podcast, hosts dive deep into the world of Application Security (AppSec) alongside special guest Chris Lindsey, a prominent figure from Mend. With years of experience in the field, Chris brings a wealth of knowledge and practical insights to the table. The conversation kicks off with an exploration of the evolving landscape of AppSec and the unique challenges it presents in today's fast-paced digital environment. From the proliferation of cloud-native applications to the increasing sophistication of cyber threats, Chris sheds light on the pressing issues facing developers and security professionals alike. Throughout the episode, listeners gain valuable perspectives on key topics such as vulnerability management, threat modeling, and secure coding practices. Chris shares real-world examples and best practices gleaned from his extensive experience, offering practical advice for organizations looking to bolster their AppSec posture. Moreover, the discussion delves into the pivotal role of DevSecOps in driving cultural and technological shifts to enhance security throughout the software development lifecycle. Chris emphasizes the importance of collaboration between development, security, and operations teams, highlighting the benefits of automation and continuous integration/continuous deployment (CI/CD) pipelines in streamlining security processes. As the episode draws to a close, the hosts and Chris reflect on the future of AppSec and the emerging trends set to shape the industry. From the rise of containerization and microservices architectures to the growing importance of secure software supply chains, there's no shortage of intriguing topics to explore. Overall, this episode serves as a compelling deep dive into the world of AppSec, offering actionable insights and expert guidance for organizations navigating the complex intersection of security and software development. Whether you're a seasoned security professional or a developer keen to bolster your security chops, this episode is not to be missed. Tune in and join the conversation today!Become a supporter of this podcast: https://www.spreaker.com/podcast/devsecops-podcast--4179006/support.Apoio: Nova8, Snyk, Conviso, Gold Security, Digitalwolk e PurpleBird Security.

In this enlightening episode of the DevSecOps Podcast, we dive deep into the intersection of security, automation, and artificial intelligence with our special guest, Leor from Blink. Join us as we explore how AI is revolutionizing security practices, making them more efficient, robust, and adaptive. 🔒 Security Challenges in the Digital Age: With the ever-evolving threat landscape, traditional security measures are often insufficient to protect against sophisticated cyberattacks. Leor shares insights into the pressing security challenges faced by organizations today and how AI-powered automation can provide proactive defense mechanisms. 🛠️ Harnessing AI for Security Automation: Leor unveils the potential of AI in automating security processes, from threat detection and incident response to vulnerability management. 🔍 Building Resilient Security Pipelines: Learn how integrating AI-driven security automation into DevSecOps pipelines enhances agility and resilience. Leor discusses practical strategies for seamlessly incorporating AI tools and techniques into existing workflows, optimizing security posture without disrupting development velocity.💡 Future Perspectives and Best Practices: As AI continues to reshape the cybersecurity landscape, Leor shares his vision for the future of security automation and offers actionable advice for organizations looking to embark on their AI journey. From leveraging machine learning models to implementing intelligent orchestration, discover the best practices for harnessing the power of AI in securing digital assets.Tune in to this episode of the DevSecOps Podcast to unlock the potential of AI-driven security automation and fortify your defenses against emerging threats.Become a supporter of this podcast: https://www.spreaker.com/podcast/devsecops-podcast--4179006/support.Apoio: Nova8, Snyk, Conviso, Gold Security, Digitalwolk e PurpleBird Security.

Não tem o que falar, assista / ouça, faça o download e comece utilizar hoje mesmo o AppSec Calendar. Baixar agora - https://cassiodeveloper.com.br/assets/downloads/AppSec-Calendar.jpg Acessar a versão com tags - https://onlysecfans.com.br/Become a supporter of this podcast: https://www.spreaker.com/podcast/devsecops-podcast--4179006/support.Apoio: Nova8, Snyk, Conviso, Gold Security, Digitalwolk e PurpleBird Security.

A emocionante jornada de migrar de outras áreas para a cibersegurança pode ser tentadora. Muitos escutam que "page bem", e outros que "é a área do futuro". Seja você um veterano da tecnologia ou um novato buscando uma mudança, este episódio é uma fonte indispensável de insights e conselhos. Junte-se a nós enquanto nosso elenco experiente compartilha suas próprias histórias e experiências, desde os desafios enfrentados até as estratégias bem-sucedidas que os ajudaram a fazer a transição para a cibersegurança. Explore as nuances únicas de migrar de diferentes campos profissionais e descubra como as habilidades transferíveis podem se traduzir de maneiras surpreendentes na defesa digital. Descubra as melhores práticas para desenvolver sua base de conhecimento em segurança da informação, encontrar oportunidades de aprendizado e se destacar no competitivo mercado de trabalho da cibersegurança. De conselhos práticos a reflexões inspiradoras, este episódio é um guia abrangente para aqueles que buscam fazer da cibersegurança sua próxima grande aventura profissional. Não perca este episódio envolvente e motivador do DevSecOps Podcast. Esteja pronto para ser inspirado e capacitado a trilhar seu próprio caminho emocionante na cibersegurança!Become a supporter of this podcast: https://www.spreaker.com/podcast/devsecops-podcast--4179006/support.Apoio: Nova8, Snyk, Conviso, Gold Security, Digitalwolk e PurpleBird Security.

No episódio de hoje do DevSecOps Podcast, mergulhamos no mundo dinâmico da segurança de aplicações com Tiago Mendo, o visionário fundador da Probely. Tiago compartilha conosco sua jornada desde a concepção da Probely até sua posição como líder na oferta de soluções DAST (Dynamic Application Security Testing) como um serviço. Ao longo da conversa, exploramos os desafios exclusivos enfrentados pelas equipes de desenvolvimento e segurança ao adotar e integrar testes DAST em seus pipelines de DevOps. Tiago compartilha insights valiosos sobre como a Probely está abordando esses desafios, oferecendo uma perspectiva única sobre como a automação e a mão de obra especializada estão transformando o teste de segurança de aplicações. Dos obstáculos técnicos à resistência organizacional, este episódio oferece uma visão aprofundada dos desafios e das melhores práticas para implementar com sucesso testes DAST em sua estratégia de segurança de software. Junte-se a nós enquanto desmistificamos o DAST e exploramos o futuro emocionante da segurança de aplicações na era do DevSecOps.Become a supporter of this podcast: https://www.spreaker.com/podcast/devsecops-podcast--4179006/support.Apoio: Nova8, Snyk, Conviso, Gold Security, Digitalwolk e PurpleBird Security.