The Secure Developer

In episode 51 of The Secure Developer, Guy Podjarny talks to Adrian Ludwig, Chief Information Security Officer at Atlassian. Adrian has a marketing and tech background, we speak to him about his transition between the two seemingly unrelated fields through his work at NSA, Adobe, Nest, and Android, and how both sides inform his approach to security at Atlassian...

In episode 50 of The Secure Developer, Guy Podjarny talks to Mandi Walls about her talk at DevSecCon Seattle: InSpec, which is Chef’s product for infrastructure security testing of code. She sheds light on its uses, and how through its flexibility, it's increasing the speed at which it can do security checks. Mandi also shares more on how the product deals with containerization, how it issues alerts and the role she sees the product playing in the future.

In episode 49 of The Secure Developer, Guy Podjarny talks to Gene Kim about the five ideals for optimizing performance in the DevOps space that can be found in The Unicorn Project, particularly from the lens of security. We also chat to Gene about the four hypotheses that the DevOps report he co-authored rested on, and some of the interesting and unexpected conclusions that he and his collaborators came to.

In episode 48 of The Secure Developer, Guy Podjarny talks to Clint Gibler, research director at NCC Group. They chat at DevSecCon Seattle about the current landscape of application security, how his company fits into that as a global information assurance specialist and the job of helping companies scale their security efforts through cutting edge tools and processes. We also get to hear about the panel discussion he moderated at the DevSecCon event.

In episode 47 of The Secure Developer, Guy chats to Tad Whitaker, Engineering Manager at CircleCi. We gain some insights into the structure at Circle, from how his team works to their relationship with the development team. The dynamic relationship between development and security is not one we encounter often, so it is refreshing to hear. Tad also walks us through compliance and how adhering to mandated compliance standards have helped and hindered his work.

In episode 45 of The Secure Developer, Guy Podjarny talks to Julien Vehent, Firefox Operations Security at Mozilla at DevSecCon Seattle, where Julien was a keynote speaker. His talk, titled 'Beyond the Security Team', explored the idea of using modern techniques, culture shifts and DevOps principles to grow security-first culture in organizations.

In episode 45 of The Secure Developer, Guy Podjarny talks to Duo’s Director of Security, Michael Hanley. Mike shares his vision of democratizing security, his dynamic role at Duo over the years, and how their teams are organized to promote cross-functional collaboration.

In episode 44 of The Secure Developer, Guy Podjarny sits down with guest host Simon Maple of Snyk to reflect back on the numerous guests he’s had on the show throughout 2019, and the many security lessons and insights shared along the way.

In episode 43 of The Secure Developer, Guy joins Stu Hirst, Principle Cloud Security Engineer at Just Eat. They discuss Stu’s journey into cloud security, avoiding burnout, cultivating better hiring practices, and the importance of failing fast.

In episode 42 of The Secure Developer, Guy speaks with Kate Whalen, a security engineer at The Guardian, to discuss news media security and advocating security across many teams within a large organization.