To give you the best possible experience, this site uses cookies. Review our Privacy Policy and Terms of Service to learn more. Got it!
Artwork

Tech MBA Business Government Robert Wood Sidekick Security
Content provided by Robert Wood and Sidekick Security. All podcast content including episodes, graphics, and podcast descriptions are uploaded and provided directly by Robert Wood and Sidekick Security or their podcast platform partner. If you believe someone is using your copyrighted work without your permission, you can follow the process outlined here https://ppacc.player.fm/legal.
Player FM - Podcast App
Go offline with the Player FM app!
Get it on App Store Get it on Google Play

Security Program Transformation Podcast « »
From DMZs to DevSecOps: Building Modern AppSec Programs with Gunnar Peterson

1:15:00
 
Play
Playing
Share
 

MP3Episode home
Manage episode 461219658 series 3603368
Content provided by Robert Wood and Sidekick Security. All podcast content including episodes, graphics, and podcast descriptions are uploaded and provided directly by Robert Wood and Sidekick Security or their podcast platform partner. If you believe someone is using your copyrighted work without your permission, you can follow the process outlined here https://ppacc.player.fm/legal.
In this conversation, Robert Wood and Gunnar Peterson delve into the complexities of application security (AppSec), discussing its evolution, the importance of building effective AppSec programs, and the need for engaging developers in security practices. They explore the blurred lines between cloud security and application security, the role of posture management tools, and the significance of an asset-centric approach to security. Gunnar emphasizes the importance of understanding key use cases and platforms within an organization, as well as the need for security professionals to broaden their skill sets to navigate the changing landscape of cybersecurity effectively.
Takeaways
  • Application security is evolving, requiring a focus on both technology and human factors.
  • Understanding the organization's current state is crucial for building an effective AppSec program.
  • Coverage and efficacy are key metrics for assessing AppSec initiatives.
  • Engaging developers is essential for successful security practices.
  • In larger organizations, security efforts can become check-the-box activities.
  • The lines between cloud security and application security are increasingly blurred.
  • Posture management tools are emerging to address skill gaps in AppSec.
  • An asset-centric approach to security is gaining traction in the industry.
  • New security professionals should prioritize understanding key business use cases.
  • The future of security will require blending traditional practices with new technologies.
Sound Bites
  • "Good judgment comes from experience."
  • "You have to have the humility to recognize."
Chapters
00:00 Introduction to Application Security and Its Evolution
02:59. Building an Effective AppSec Program
05:51. Understanding Coverage and Efficacy in AppSec
08:58. Engaging Developers in Security Practices
11:52. Navigating Federated Environments in Security
14:55. The Blurred Lines Between Cloud and Application Security
17:46. The Role of Posture Management Tools in AppSec
21:10. The Importance of Asset-Centric Security
23:55. Advice for New Security Professionals
26:45. Final Thoughts and Future Trends in Security
  continue reading

4 episodes

#Tech #MBA #Business #Government #Robert Wood #Sidekick Security
Artwork

From DMZs to DevSecOps: Building Modern AppSec Programs with Gunnar Peterson

Security Program Transformation Podcast

published

Play Playing
iconShare
 
MP3Episode home
Manage episode 461219658 series 3603368
Content provided by Robert Wood and Sidekick Security. All podcast content including episodes, graphics, and podcast descriptions are uploaded and provided directly by Robert Wood and Sidekick Security or their podcast platform partner. If you believe someone is using your copyrighted work without your permission, you can follow the process outlined here https://ppacc.player.fm/legal.
In this conversation, Robert Wood and Gunnar Peterson delve into the complexities of application security (AppSec), discussing its evolution, the importance of building effective AppSec programs, and the need for engaging developers in security practices. They explore the blurred lines between cloud security and application security, the role of posture management tools, and the significance of an asset-centric approach to security. Gunnar emphasizes the importance of understanding key use cases and platforms within an organization, as well as the need for security professionals to broaden their skill sets to navigate the changing landscape of cybersecurity effectively.
Takeaways
  • Application security is evolving, requiring a focus on both technology and human factors.
  • Understanding the organization's current state is crucial for building an effective AppSec program.
  • Coverage and efficacy are key metrics for assessing AppSec initiatives.
  • Engaging developers is essential for successful security practices.
  • In larger organizations, security efforts can become check-the-box activities.
  • The lines between cloud security and application security are increasingly blurred.
  • Posture management tools are emerging to address skill gaps in AppSec.
  • An asset-centric approach to security is gaining traction in the industry.
  • New security professionals should prioritize understanding key business use cases.
  • The future of security will require blending traditional practices with new technologies.
Sound Bites
  • "Good judgment comes from experience."
  • "You have to have the humility to recognize."
Chapters
00:00 Introduction to Application Security and Its Evolution
02:59. Building an Effective AppSec Program
05:51. Understanding Coverage and Efficacy in AppSec
08:58. Engaging Developers in Security Practices
11:52. Navigating Federated Environments in Security
14:55. The Blurred Lines Between Cloud and Application Security
17:46. The Role of Posture Management Tools in AppSec
21:10. The Importance of Asset-Centric Security
23:55. Advice for New Security Professionals
26:45. Final Thoughts and Future Trends in Security
  continue reading

4 episodes

#Tech #MBA #Business #Government #Robert Wood #Sidekick Security

All episodes

×
 
Loading …

Welcome to Player FM!

Player FM is scanning the web for high-quality podcasts for you to enjoy right now. It's the best podcast app and works on Android, iPhone, and the web. Signup to sync subscriptions across devices.

 

Listen to 500+ topics
Player FM - Podcast App
Go offline with the Player FM app!
Get it on App Store Get it on Google Play

Quick Reference Guide

Top Podcasts
The Bill Simmons Podcast
PTI
First Take
Marketplace
Comedy of the Week
The Bugle
How Did This Get Made?
Doug Loves Movies
Planet Money
TED Talks Daily
NBC Nightly News with Lester Holt
The World This Hour
Daily Boost Motivation and Coaching
Radiolab
Science Friday
This American Life
Criminal
Sword and Scale
In The Dark
Player FM logo
Help/FAQ | Upgrade | Advertise
Arts|Business|Comedy|Economics|Entertainment|News|Politics|Religion
Science|Soccer|Sports|Storytelling|Technology|True Crime
Copyright 2025 | Sitemap | Privacy Policy | Terms of Service | | Copyright
Episode being played series thumbnail
icon icon
Speed
Series settings
1x
1x
Volume
100%
icon
icon icon
/

View Player FM in...
Player FM
Browser
Chrome
Safari
Firefox
Listen to this show while you explore
Play