Apr 19, 2019
This week's tools, tips and tricks talks about the threat modeling tool from OWASP called Threat Dragon.
OWASP Threat Dragon Project Page
Be aware, be safe.
*** Support the podcast with a cup of coffee *** - Ko-Fi Security In Five
Don't forget to subscribe to the Security In Five...
Apr 18, 2019
Building security into a DevSecOps program is not easy, but it is possible. This epsiodegoes over the things you need to do in order to call yourself a DevSecOps program.
Be aware, be safe.
*** Support the podcast with a cup of coffee *** - Ko-Fi Security In Five
Don't forget to subscribe to the Security In Five...
Apr 17, 2019
DevSecOps changes in an organization tends to focus on getting everyone adjusted to security. Security professional also have significant growth opportunities they should tackle if they want to be effective in a DevSecOps program. This epsiodetalks about what those changes are.
Be aware, be safe.
*** Support the...
Apr 16, 2019
DevSecOps has security built into it but you cannot acheive that with the traditional way of doing things, at the end. Security needs to move left in the process, earlier and as often as you can. This epsiode goes into the details on how and why this needs to be.
Be aware, be safe.
*** Support the podcast with a cup of...
Apr 15, 2019
DevSecOps is driven, usually, by an agile process. The user stories are what drives the development and in the current SAFE moethodology it's difficult to get non-functional requirements, espeicallysecurity related, written as user stories. This epsiode talks about how I go about creating user stories to slide them...