Security often feels like a roadblock to developers, but what if it could be seamlessly integrated into the development process? As software delivery becomes increasingly automated and self-service, the traditional approach to security needs a major overhaul.

Danny Allan, CTO at Snyk, shares practical insights on transforming security from a bottleneck into an enabler of developer productivity. Drawing from his extensive experience at IBM, VMware, and Veeam, Allan discusses how security teams can shift left effectively without creating friction.

Key topics covered:

• Building successful security champions programs that cultivate curiosity rather than relying solely on senior developers
• Practical approaches to embedding security controls into development pipelines, from IDE integration to PR checks
• Strategies for measuring security team success beyond just vulnerability counts
• The role of pre-hardened containers and infrastructure-as-code scanning in platform security
• How AI is transforming both code generation and security tooling, including Snyk's approach to vulnerability detection

Love the show? Subscribe, rate, review, & share! http://platformengineeringpod.com/