DevelopSec: Developing Security Awareness

By Jardine Software Inc.

About this podcast   English    United States

Curious about application security? Want to learn how to detect security vulnerabilities and protect your application. We discuss different topics and provide valuable insights into the world of application security.
101 episodes · since Jan, 2014
April 23, 2018
** Check out our new Live Fundamentals of Application Security training starting on May 1, 2018. Don't wait to sign up. For schedules and information check out https://www.jardinesoftware.com/fundamentals-of-application-security/ ** In this episode, James shares his thoughts on an interesting scam potential was brought up regarding Gmail and Netflix. A lot of the discussion is on a unique Gmail feature most haven't heard of. James breaks this down in this episode. The original story was shared at  https://www.theregister.co.uk/2018/04/10/gmail_netflix_phishing_vector/   For more info go to https://www.developsec.com or follow us on twitter (@developsec). Join the conversations.. join our slack channel. Email [email protected] for an invitation.   DevelopSec provides application security consulting and training to add value to your application security program. Contact us today to see how we can help.
April 16, 2018
In this episode we talk about treating security flaws as defects and embedded vs. built-in security. Do you treat security flaws differently? What barriers does that create?   For more info go to https://www.developsec.com or follow us on twitter (@developsec). Join the conversations.. join our slack channel. Email [email protected] for an invitation.   DevelopSec provides application security consulting and training to add value to your application security program. Contact us today to see how we can help.
April 9, 2018
In this episode we talk about the MyFitnessPal breach and some of the key points that we as developers, security, and users can take away from it.   Tweet with Graph of Largest Breaches mentioned: https://twitter.com/EricTopol/status/979556839015661568   Link to article about the breach: https://www.cnet.com/news/millions-of-myfitnesspal-accounts-hacked-under-armour-says/   For more info go to https://www.developsec.com or follow us on twitter (@developsec). Join the conversations.. join our slack channel. Email [email protected] for an invitation.   DevelopSec provides application security consulting and training to add value to your application security program. Contact us today to see how we can help.
April 2, 2018
In this episode we talk about penetration testing and what you need to know to get the most out of the activity. Tune in to hear some of our thoughts on the topic.   To take the training course survey go to https://forms.office.com/Pages/ResponsePage.aspx?id=dUTTGKfrY0SMJRLyejG00DrfDtlb8W5HpqoXHgPDektUNDgxVU9SNlVRNVhXMTY4UUxSU041MFVWTC4u   For more info go to https://www.developsec.com or follow us on twitter (@developsec). Join the conversations.. join our slack channel. Email [email protected] for an invitation.   DevelopSec provides application security consulting and training to add value to your application security program. Contact us today to see how we can help.
March 9, 2018
In this episode we talk about secure code review with a mention of static analysis. Do you know the difference? What is the issue of doing one over the other, or just outright replacing actual code review with static analysis? Tune in to hear some of our thoughts on the topic.   For more info go to https://www.developsec.com or follow us on twitter (@developsec). Join the conversations.. join our slack channel. Email [email protected] for an invitation.   DevelopSec provides application security consulting and training to add value to your application security program. Contact us today to see how we can help.
March 6, 2018
In this episode James talks about 2-factor authentication, why we use it, and maybe why we don't. Is your 2-factor implementation getting in your way? The DevelopSec YouTube Channel - https://www.youtube.com/channel/UCdAqgfdGs0-hPa8FhsODwNw   For more info go to https://www.developsec.com or follow us on twitter (@developsec). Join the conversations.. join our slack channel. Email [email protected] for an invitation.   DevelopSec provides application security consulting and training to add value to your application security program. Contact us today to see how we can help.
Feb. 9, 2018
The new OWASP Top 10 2017 is out. We look at some of the changes and how you can effectively use the list to better your security program.   We are also launching a new DevelopSec Live broadcast. To check out the first episode, go to https://www.youtube.com/watch?v=kfDuxwFScOE (The first 2 minutes are just a place holder as I was starting, feel free to skip those.  That will go away in future episodes).   The DevelopSec YouTube Channel - https://www.youtube.com/channel/UCdAqgfdGs0-hPa8FhsODwNw   For more info go to https://www.developsec.com or follow us on twitter (@developsec). Join the conversations.. join our slack channel. Email [email protected] for an invitation.   DevelopSec provides application security consulting and training to add value to your application security program. Contact us today to see how we can help.
Jan. 16, 2018
James sits down with Perry Krug, from Couchbase to discuss some important steps to take to secure your database.   Perry Krug - https://twitter.com/perrykrug Couchbase - https://twitter.com/couchbase Couchbase - https://www.couchbase.com/ CouchbaseSecurity Documents - https://developer.couchbase.com/documentation/server/current/security/security-intro.html   For more info go to https://www.developsec.com or follow us on twitter (@developsec). Join the conversations.. join our slack channel. Email [email protected] for an invitation.   DevelopSec provides application security consulting and training to add value to your application security program. Contact us today to see how we can help.
Jan. 4, 2018
Welcome to 2018! Another year down and time for many of us to start making promises to ourselves of things we will start doing in this new year. In this episode James talks about some lessons we should take from 2017 and ways to use them in 2018.    For more info go to https://www.developsec.com or follow us on twitter (@developsec). Join the conversations.. join our slack channel. Email [email protected] for an invitation.   DevelopSec provides application security consulting and training to add value to your application security program. Contact us today to see how we can help.
Dec. 11, 2017
In this episode, James talks with Tim Medin regarding Meteor and security. If you develop with Meteor or have to test it, there is a lot of information packed in. More about Tim Medin (@timmedin): Red Seige website - https://www.redsiege.com/  Link to Meteor Minor and other tools Tim mentioned: https://github.com/nidem Tim Medin's Bsides Orlando 2017 Presentation - Tim Medin -  Mining Meteor B-Sides Orlando 2017 For more info go to https://www.developsec.com or follow us on twitter (@developsec). Join the conversations.. join our slack channel. Email [email protected] for an invitation. DevelopSec provides application security consulting and training to add value to your application security program. Contact us today to see how we can help.
Disclaimer: The podcast and artwork embedded on this page are from Jardine Software Inc., which is the property of its owner and not affiliated with or endorsed by Listen Notes, Inc.