January 05, 2022

DevSecOps in 2022 with Jess Dodson

Listen Later

39 minutes

2021 was a tough year for security - how can we do better in 2022? Richard chats with Jess Dodson about working to get better at information security in your organization. Jess talks about the log4j exploit as a great example of "what don't we know" - and the need for a software bill of materials as part of your configuration management database. Having a list of the libraries that internal applications depend on helps you respond in a time of crisis, being able to answer the question "where are we vulnerable?" This leads to a conversation about better DevSecOps - where development, security, and operations all take security seriously and help each other to help the organization succeed!

Links:

Power Apps
Azure Sentinel
Software Bill of Materials
Configuration Management Database

Recorded December 20, 2021

...more

View all episodes

View all episodes

Download on the App Store

Download on the App Store

Get it on Google Play

RunAs Radio

By Richard Campbell

4.6

8282 ratings

January 05, 2022

DevSecOps in 2022 with Jess Dodson

Listen Later

39 minutes

2021 was a tough year for security - how can we do better in 2022? Richard chats with Jess Dodson about working to get better at information security in your organization. Jess talks about the log4j exploit as a great example of "what don't we know" - and the need for a software bill of materials as part of your configuration management database. Having a list of the libraries that internal applications depend on helps you respond in a time of crisis, being able to answer the question "where are we vulnerable?" This leads to a conversation about better DevSecOps - where development, security, and operations all take security seriously and help each other to help the organization succeed!

Links:

Power Apps
Azure Sentinel
Software Bill of Materials
Configuration Management Database

Recorded December 20, 2021

...more

More shows like RunAs Radio

Hanselminutes with Scott Hanselman by Scott Hanselman

Hanselminutes with Scott Hanselman

380 Listeners

.NET Rocks! by Carl Franklin and Richard Campbell

.NET Rocks!

38 Listeners

This Week in Tech (Audio) by TWiT

This Week in Tech (Audio)

3,057 Listeners

Security Now (Audio) by TWiT

Security Now (Audio)

2,003 Listeners

MacBreak Weekly (Audio) by TWiT

MacBreak Weekly (Audio)

2,015 Listeners

Windows Weekly (Audio) by TWiT

Windows Weekly (Audio)

879 Listeners

Tech News Weekly (Audio) by TWiT

Tech News Weekly (Audio)

1,076 Listeners

Intelligent Machines (Audio) by TWiT

Intelligent Machines (Audio)

777 Listeners

LINUX Unplugged by Jupiter Broadcasting

LINUX Unplugged

266 Listeners

The Cloudcast by Massive Studios

The Cloudcast

155 Listeners

SANS Internet Stormcenter Daily Cyber Security Podcast (Stormcast) by Johannes B. Ullrich

SANS Internet Stormcenter Daily Cyber Security Podcast (Stormcast)

638 Listeners

Smashing Security by Graham Cluley

Smashing Security

322 Listeners

Darknet Diaries by Jack Rhysider

Darknet Diaries

8,001 Listeners

.NET Rocks! by Carl Franklin and Richard Campbell

.NET Rocks!

245 Listeners

The Stack Overflow Podcast by The Stack Overflow Podcast

The Stack Overflow Podcast

62 Listeners

2.5 Admins by The Late Night Linux Family

2.5 Admins

99 Listeners