31 episodes
DevSec For Scale Podcast Akeyless - The Secrets Management Company
-
- Technology
-
-
5.0 • 8 Ratings
-
InfoSec. AppSec. DevOps. DevSecOps. Network Security.
Should companies be talking about these subjects only when they are a large organization? NO!
Should security be a priority for every company, no matter the size? YES!
According to a study by BullGuard study in 2020, 43% of SMB owners have no cybersecurity defense plan in place at all – leaving their most sensitive financial, customer and business data, and ultimately their companies, at significant risk.
Many startup and SMB companies will admit that security is not on their list of top 3 things to think about.... maybe even top 5.
This meetup will bring together experts, authors, and practitioners from all areas of the the security ecosystem to discuss best practices and better ways for growth companies to protect their data and networks at scale.
We're here to make security a first-class citizen in early stage companies.
-
Secrets Management Pt 3: Managing Secrets for Real w/ Jeroen Willemsen
How do you actually get started managing secrets?
In this episode of DevSec For Scale, we are joined by Jeroen for a third time to discuss the real ins and outs of getting started with secrets management. We talk about threat modeling, CI/CD, and even multi-cloud secrets management. -
Observability and Security w/ Yosef Arbiv, Epsagon (Cisco)
What challenges are there with observability in modern microservices environments?
Yosef Arbiv, Engineering Group Leader at Epsagon (Acquired by Cisco), joins the podcast to discuss observability best practices as well as the Open Telemetry project and how observability impacts the overall security health of an organization. -
Secrets Management Pt 2: OWASP WrongSecerets w/ Jeroen Willemsen, OWASP Project Lead
In this episode of DevSec For Scale, we follow up our previous episode with some really great information about how the OWASP WrongSecrets project came about and how they manage everything, as well as how users can join and help with fixes, add challenges, and features. Jeroen also discusses the future of the project.
To learn more, go to https://owasp.org/www-project-wrongsecrets/ or star the repo at https://github.com/commjoen/wrongsecrets/. -
Shift-Left Testing For Microservices w/ Arjun Iyer, Signadot
How do you approach E2E and Integration testing in the new and complex world of Kubernetes and multi-cloud environments?
Arjun Iyer, CEO & Co-Founder of Signadot joins the podcast for a very interesting and informative episode on how testing needs to shift left as we rapidly grow our development environments to the latest and greatest in infrastructure orchestration and application security. -
Secrets Management Pt 1: Trends w/ Jeroen Willemsen, OWASP Project Lead
What is the importance of Secrets Management and how has it evolved to where it is now?
In this episode of the DevSec For Scale podcast, Jeroen Willemsen, one of two project leads for the OWASP WrongSecrets project, gives us a short history of secrets management in the OWASP universe and goes into how he sees the future of secrets in the enterprise.
Check out the WrongSecrets Project: https://owasp.org/www-project-wrongsecrets/ -
From DevOps to DevSecOps w/ Gil Zellner, HourOne
What's it like to go from a DevOps engineer in large organizations with expert security engineers, to a small startup that requires you to be the security engineer?
In this episode, Gil Zellner, Infrastructure Lead at HourOne.ai talks about his personal experience being thrown into the deep end of security as a developer. He discusses some of the changes he had to make on his journey from companies like Oracle, AppsFlyer, and Wix to his current early stage employer.
Gil also brings some interesting stories about things he has learned becoming a de facto security engineer.
Customer Reviews
DevSec FTW!
Lots of essential info in this show!
Great interviews!
Love the show 🚀📈🚀📈
Really enjoying this show so far
I loved the episode with Greg Edwards! He provided a really interesting look into ransomware.