To give you the best possible experience, this site uses cookies. Review our Privacy Policy and Terms of Service to learn more. Got it!
Artwork

Content provided by Day One. All podcast content including episodes, graphics, and podcast descriptions are uploaded and provided directly by Day One or their podcast platform partner. If you believe someone is using your copyrighted work without your permission, you can follow the process outlined here https://ppacc.player.fm/legal.
Player FM - Podcast App
Go offline with the Player FM app!
Get it on App Store Get it on Google Play

Secured by Galah Cyber »
Engineering Security: Bridging DevOps and AppSec with Jon-Anthoney de Boer

43:13
 
Play
Playing
Share
 

MP3Episode home
Manage episode 477438946 series 3463790
Content provided by Day One. All podcast content including episodes, graphics, and podcast descriptions are uploaded and provided directly by Day One or their podcast platform partner. If you believe someone is using your copyrighted work without your permission, you can follow the process outlined here https://ppacc.player.fm/legal.

Episode Summary

Jon-Anthoney de Boer is the Product Security Lead at Transmax, overseeing security for critical infrastructure that manages traffic flow across Australia. Coming from a strong software engineering background, Jon-Anthoney shares his experience transitioning from traditional engineering into product and application security. He highlights the importance of aligning software engineering and security teams, building trust into the software development lifecycle, and fostering a security culture based on practical strategy rather than superficial metrics. Jon-Anthoney also discusses how behavioural change, organisational alignment, and operational excellence are key to achieving effective, sustainable security outcomes.

Timestamps

00:32 - Jon-Anthoney’s journey from electrical engineering to product security

05:08 - Transitioning from software craftsmanship to cybersecurity

09:30 - Why aligned incentives between engineering and security teams matter

12:22 - Goodhart's Law: pitfalls of security metrics

18:21 - Rethinking cybersecurity strategies beyond tools and compliance

25:12 - Building observability into the secure software development lifecycle

32:35 - Why executive support is crucial for security initiatives

38:34 - Operational excellence: removing waste from security processes

Mentioned in this episode:

Call for Feedback


This podcast uses the following third-party services for analysis:
Podtrac - https://analytics.podtrac.com/privacy-policy-gdrp
Spotify Ad Analytics - https://www.spotify.com/us/legal/ad-analytics-privacy-policy/
  continue reading

49 episodes

Artwork

Engineering Security: Bridging DevOps and AppSec with Jon-Anthoney de Boer

Secured by Galah Cyber

published

Play Playing
iconShare
 
MP3Episode home
Manage episode 477438946 series 3463790
Content provided by Day One. All podcast content including episodes, graphics, and podcast descriptions are uploaded and provided directly by Day One or their podcast platform partner. If you believe someone is using your copyrighted work without your permission, you can follow the process outlined here https://ppacc.player.fm/legal.

Episode Summary

Jon-Anthoney de Boer is the Product Security Lead at Transmax, overseeing security for critical infrastructure that manages traffic flow across Australia. Coming from a strong software engineering background, Jon-Anthoney shares his experience transitioning from traditional engineering into product and application security. He highlights the importance of aligning software engineering and security teams, building trust into the software development lifecycle, and fostering a security culture based on practical strategy rather than superficial metrics. Jon-Anthoney also discusses how behavioural change, organisational alignment, and operational excellence are key to achieving effective, sustainable security outcomes.

Timestamps

00:32 - Jon-Anthoney’s journey from electrical engineering to product security

05:08 - Transitioning from software craftsmanship to cybersecurity

09:30 - Why aligned incentives between engineering and security teams matter

12:22 - Goodhart's Law: pitfalls of security metrics

18:21 - Rethinking cybersecurity strategies beyond tools and compliance

25:12 - Building observability into the secure software development lifecycle

32:35 - Why executive support is crucial for security initiatives

38:34 - Operational excellence: removing waste from security processes

Mentioned in this episode:

Call for Feedback


This podcast uses the following third-party services for analysis:
Podtrac - https://analytics.podtrac.com/privacy-policy-gdrp
Spotify Ad Analytics - https://www.spotify.com/us/legal/ad-analytics-privacy-policy/
  continue reading

49 episodes

All episodes

×
 
Loading …

Welcome to Player FM!

Player FM is scanning the web for high-quality podcasts for you to enjoy right now. It's the best podcast app and works on Android, iPhone, and the web. Signup to sync subscriptions across devices.

 

Listen to 500+ topics
Player FM - Podcast App
Go offline with the Player FM app!
Get it on App Store Get it on Google Play

Quick Reference Guide

Top Podcasts
The Bill Simmons Podcast
PTI
First Take
Marketplace
Comedy of the Week
The Bugle
How Did This Get Made?
Doug Loves Movies
Planet Money
TED Talks Daily
NBC Nightly News with Lester Holt
The World This Hour
Daily Boost Motivation and Coaching
Radiolab
Science Friday
This American Life
Criminal
Sword and Scale
In The Dark
Player FM logo
Help/FAQ | Upgrade | Advertise
Arts|Business|Comedy|Economics|Entertainment|News|Politics|Religion
Science|Soccer|Sports|Storytelling|Technology|True Crime
Copyright 2025 | Sitemap | Privacy Policy | Terms of Service | | Copyright
Episode being played series thumbnail
icon icon
Speed
Series settings
1x
1x
Volume
100%
icon
icon icon
/

View Player FM in...
Player FM
Browser
Chrome
Safari
Firefox
Listen to this show while you explore
Play