DSO Overflow

EXPLORE

Society & Culture

© 2024 PodJoint

https://is1-ssl.mzstatic.com/image/thumb/Podcasts221/v4/14/22/e6/1422e641-19f8-3960-3273-b9290af7bcf6/mza_5860666017353091723.jpg/600x600bb.jpg

DSO Overflow

Glenn Wilson, and Steve Giguere

48 episodes

1 week ago

DSO Overflow S5EP4 Threat modelling and AI with Petra Vukmirovic In this episode Petra Vukmirovic, head of information security and technology at Numan, shares her experience of threat modelling within an AI landscape drawing from her background in medicine to highlight similarities between differential diagnosis and threat modelling. She discusses the opportunities and the risks of integrating AI into security workflows as well as exploring evolving methodologies and updated frameworks to a...

Show more...

All content for DSO Overflow is the property of Glenn Wilson, and Steve Giguere and is served directly from their servers with no modification, redirects, or rehosting. The podcast is not affiliated with or endorsed by Podjoint in any way.

DSO Overflow S5EP4 Threat modelling and AI with Petra Vukmirovic In this episode Petra Vukmirovic, head of information security and technology at Numan, shares her experience of threat modelling within an AI landscape drawing from her background in medicine to highlight similarities between differential diagnosis and threat modelling. She discusses the opportunities and the risks of integrating AI into security workflows as well as exploring evolving methodologies and updated frameworks to a...

Show more...

Episodes (20/48)

DSO Overflow

S5Ep4 - Threat modelling and AI with Petra Vukmirovic

DSO Overflow S5EP4 Threat modelling and AI with Petra Vukmirovic In this episode Petra Vukmirovic, head of information security and technology at Numan, shares her experience of threat modelling within an AI landscape drawing from her background in medicine to highlight similarities between differential diagnosis and threat modelling. She discusses the opportunities and the risks of integrating AI into security workflows as well as exploring evolving methodologies and updated frameworks to a...

3 weeks ago

38 minutes

DSO Overflow

S5Ep3 - AI and Auto-remediation with Jonathan Schneider

DSO Overflow S5EP3 AI and auto-remediation with Jonathan Schneider In this episode Jonathan Schneider discusses his path from Netflix to founding Moderne, focusing on large-scale software modernisation. The conversation covers the promise and pitfalls of AI and auto-remediation. Jonathan advocates for empowering developers with self-service, pull-based tooling rather than top-down changes and emphasises collaboration between security and engineering to reduce technical toil so developers can...

2 months ago

42 minutes

DSO Overflow

S5Ep2 - Vulnerability Management, Supply Chain threats and AI with Mackenzie Jackson

DSO Overflow S5EP2 Vulnerability Management, Supply Chain threats and AI with Mackenzie Jackson In this episode of DSO Overflow, Mackenzie Jackson discusses his transition from GitGuardian to Aikido Security, where he focuses on Application Security Posture Management (ASPM). He explains ASPM as an integrated platform that consolidates security tools. The conversation explores Aikido Security's use of open-source tools and AI to minimise false positives and streamline vulnerability manageme...

2 months ago

47 minutes

DSO Overflow

S5Ep1 - Securing the Software Supply Chain with Francois Proulx

DSO Overflow S5EP1 Security the Software Supply Chain with Francois Proulx In this episode, featuring Francois Proulx, a senior product security engineer, we discuss software supply chain security, particularly the security of build pipelines and dependencies. Francois shares insights on defining supply chains, identifying vulnerabilities, threat modeling, and strategies to improve security. The conversation explores topics like the SALSA framework, risk factors in CI/CD pipelines, and redu...

9 months ago

48 minutes

DSO Overflow

S4Ep10 - Threat modelling with Ashley Ward

DSO Overflow S4EP10 Threat Modelling with Ashley Ward In this month's episode, Steve and Glenn chatted with Ashley Ward to discuss topics around threat modelling. Ashley is a highly experienced CTO at ControlPlan with expertise in cloud-native architectures and cybersecurity, known for leading transformative initiatives across startups and large enterprises, including as Group CTO for a €4.5 billion company. He excels in scaling organisations through agile, FinOps, and DevSecOps, while ins...

11 months ago

46 minutes

DSO Overflow

S4Ep9 - Open Source Integrity with Luke Hinds

DSO Overflow S4EP9 Open Source Integrity with Luke Hinds In this month's episode, Jessica and Glenn chatted with Luke Hinds to discuss topics around Open Source integrity and provenance. Luke is a co-founder and the CTO at Stacklok who loves building open source software and communities, as well as leading talented engineering teams to develop innovative cutting edge security technologies at scale. In this episode, Luke talks about the challenges of ensuring open source software integrity...

11 months ago

41 minutes

DSO Overflow

S4Ep8 - Cloud Native and Kubernetes with Steve Wade and Michael Foster

DSO Overflow S4EP8 Cloud Native and Kubernetes with Steve Wade and Michael Foster In this month's episode, Steve met with Steve Wade and Michael Foster to talk about the Cloud Native Club and new and future developments in Kubernetes. Steve Wade founded The Cloud Native Club, a global community for cloud-native enthusiasts. He is also a maintainer of the Flux Terraform Provider. As an experienced conference speaker, independent cloud-native consultant, and trainer, Steve shares...

1 year ago

51 minutes

DSO Overflow

S4Ep7 - Managing the risks that really matter with Sam Watkins

DSO Overflow S4EP7 Managing the risks that really matter with Sam Watkins In this month's episode, Glenn and Jessica speak with Sam Watkins to talk about a new paradigm for managing risks. Sam Watkins is an accomplished engineer working at BT in the UK. Sam is driven by a passion for driving change through the implementation of technological solutions, possessing the expertise in impacting organisational capability and performance, catering to business needs by early adaption of futuristic...

1 year ago

39 minutes

DSO Overflow

S4Ep6 - Security in front-end application development with David Mytton

DSO Overflow S4EP6 Security in front-end application development with David Mytton In this month's episode, Glenn speaks with David Mytton to talk about how to make sure front-end development is secure. David Mytton is the CEO of Arcjet, a devtools software startup that helps developers protect their apps. He also writes the weekly Console.dev devtools newsletter which helps developers find the best tools. He's an angel investor in >30 early-stage developer-first startups and is workin...

1 year ago

44 minutes

DSO Overflow

S4Ep5 - LLMs and GenAI with John Boero

DSO Overflow S4EP5 LLM and GenAI security with John Boero In this month's episode, Jess and Glenn speak with Field CTO at TeraSky John Boero to talk about LLMs and GenAI. John lives in London and has 20 years in the IT industry developing and consulting for Red Hat, Puppet, HashiCorp, and more with emphasis on performance and security. In this episode, John talks about the inherent risks of using LLMs and GenAI and provides some hints on how to benefit from using them effectively. He disc...

1 year ago

38 minutes

DSO Overflow

S4Ep4 - IoT, AI and DevSecOps with Darren Richardson

DSO Overflow S4EP4 IoT, AI and DevSecOps with Darren Richardson In this month's episode, Jess and Glenn speak with networking graduate, security enthusiast, coder and giant with a great bushy beard Darren Richardson from Eficode. Darren is an IT graduate specializing in system administration, network operation and information security with experience in Cisco IOS operation and network management. He has a passion for information security with a bias towards offensive security and ethical h...

1 year ago

34 minutes

DSO Overflow

S4Ep3 - Paving the Road to Effective Software Development with Sarah Wells

DSO Overflow S4EP3 Paving the Road to Effective Software Development with Sarah Wells In this month's episode, Jess and Glenn speak with Sarah Wells an independent tech consultant, author formerly the Technical Director for Engineering Enablement at the Financial Times to talk about how to balance developer autonomy with standardisation. Sarah is a technology leader, consultant and conference speaker with a focus on microservices, engineering enablement, observability and devops. She has o...

1 year ago

43 minutes

DSO Overflow

S4Ep2 - Resilient Cybersecurity with Kennedy Torkura

DSO Overflow S4EP2 Resilient Cybersecurity with Kennedy Torkura In this month's episode, Steve and Glenn speak with Kennedy Torkura from Mitigant to talk about how to build cyber resiliency into your organisation. Kennedy is a cybersecurity professional, CTO and co-founder at Mitigant who specialises continuous security verification and making cybersecurity resilience a first-class citizen in the cloud. Kennedy holds a doctorate in cybersecurity whose thesis covers continuous security para...

1 year ago

43 minutes

DSO Overflow

S4Ep1 - Contract First Development with Holly Cummins

DSO Overflow S4EP1 Contract First Development with Holly Cummins In this month's episode, Steve, Jess and Glenn speak with Holly Cummins to talk about how to API contracts and Contract First Development. Holly Cummins is a Senior Principal Software Engineer on the Red Hat Quarkus team and a Java Champion. Over her career, Holly has been a full-stack javascript developer, a WebSphere Liberty build architect, a client-facing consultant, a JVM performance engineer, and an innovation leader.&n...

1 year ago

41 minutes

DSO Overflow

S3Ep12 - The World of OWASP with Sam Stepanyan

DSO Overflow S3EP12 The world of OWASP with Sam Stepanyan In this month's episode, Steve and Glenn speak with Sam Stepanyan who was recently voted onto the OWASP board. Sam tells us about his involvement with OWASP, the origins of OWASP, and what the future hold for OWASP. Sam is an OWASP London Chapter Leader, elected OWASP board member and an Independent Application Security Consultant with over 20 years of experience in the IT industry with a background in software engineering and...

1 year ago

47 minutes

DSO Overflow

S3Ep11 - Storing secrets with Mackenzie Jackson

DSO Overflow S3EP11 Storing secrets with Mackenze Jackson In this month's episode, Steve, Jess and Glenn speak with Mackenzie Jackson to talk about managing secrets and digital authentication credentials in distributed architectures. In particular, Mackenzie digs into the concepts of secrets sprawl, and how we can keep secrets safe. Mackenzie is currently the developer advocate at GitGuardian, a developer-first cybersecurity company based in Paris that is focused on helping keep secrets an...

2 years ago

42 minutes

DSO Overflow

S3Ep10 - Private end-points with Jonathan D'Aloia

DSO Overflow S3EP10 Private end-points with Jonathan D'Aloia In this episode, Glenn, Jess and Steve are joined by Jonathan D'Aloia from Adatis to talk about benefits and challenges of using private end-points. Jonathan is a Principal DevOps Engineer at Adatis (part of Telefonica Tech) and is also an Azure Certified DevOps engineer and certified Cloud Solution Architect. Jonathan works with Infrastructure as code languages such as BICEP, Terraform and ARM templates, writes and designs YAML ...

2 years ago

37 minutes

DSO Overflow

S3Ep9 - Container Security with Rony Moshkovich

DSO Overflow S3EP9 Container Security with Rony Moshkovich In this episode, Glenn and Jess are joined by Rony Moshkovich, co-founder & CPO at Prevasio, an AlgoSec company to talk about adopting a container security programme. Rony has extensive experience with cloud platform development, developing cloud-hosted service platforms for companies such as NTT, Symantec, HCL, CA, and more. A true veteran of the antivirus industry, Rony has worked as Development Director and Malware Research L...

2 years ago

47 minutes

DSO Overflow

S3Ep8 - Static Application Security Testing with Nipun Gupta

DSO Overflow S3EP8 Static Application Security Testing with Nipun Gupta In this episode, Glenn is joined by Nipun Gupta, a seasoned technology executive, entrepreneur, and speaker to talk about static code analysis, its benefits, its pitfalls and how best to integrate tools into developer workflows. Based nowadays in London, UK after a decade in Silicon Valley, Nipun has developed a reputation as a thought leader and innovator in cybersecurity at places like NCC Group, Deutsche Bank, ...

2 years ago

36 minutes

DSO Overflow

S3Ep7 - Open Source Cloud Security with Matt Johnson

DSO Overflow S3EP7 Open Source Cloud Security with Matt Johnson In this episode, Steve, Jess and I are joined by Matt Johnson, developer advocate at Palo Alto Networks to talk to us about open source cloud security. Matt is a Developer Advocate for all things cloud security and open source at Prisma Cloud (part of Palo Alto). Hobbyist pentester, network and container geek, he specialises in Cloud Infrastructure and developer ecosystem security. Matt introduces us to the Checkov and Yor open...

2 years ago

45 minutes