Left Shifted Security

Security has long been about building walls and keeping ‘bad guys’ on the other side of them. No longer. With the embrace of DEVOPS methodologies, security is “shifting left” – into the development pipeline. What does that mean for the information security industry and the practice of cyber security? We explore those questions in this ongoing podcast series.

SIEM concept

Spotlight: SIEMs suck. Panther is out to change that. 

I interview Jack Naglieri, CEO of Panther about the failures of the current SIEM technology and the need for what Naglieri terms “detection engineers.”

cyber word cloud

Episode 240: As Stakes Grow, Cyber Policy Needs to “Shift Right”?

In this episode of the podcast (#240) Lauren Zabierek, the Executive Director for the Cyber Project at the Belfer Center at Harvard’s Kennedy School joins us to talk about the need for a re-think of national cybersecurity preparedness, as major hacks like the attack on Colonial Pipeline put the focus on resilience and public safety.

China Intellectual Property Theft

Episode 221: Biden Unmasked APT 40. But Does It Matter?

Andrew Sellers, the Chief Technology Officer at QOMPLX joins us to unpack the revelations this week about APT 40, the Chinese group that the US has accused of a string of attacks aimed at stealing sensitive trade secrets. Also: is Salesforce the next SolarWinds

Data Center and Code

Episode 191: Shifting Compliance Left with Galen Emery of Chef

Galen Emery of Chef comes into the Security Ledger studios to talk about how security and compliance are “shifting left” with DEVSECOPS.

Developer in darkened room

Podcast Episode 189: AppSec for Pandemic Times, A Conversation with GitLab Security VP Jonathan Hunt

The pandemic isn’t the only thing shaking up development organizations. Application security is a top concern and security work is “shifting left” and becoming more intertwined with development. In this podcast, Security Ledger Editor in Chief Paul Roberts talks about it with Jonathan Hunt, Vice President of Security at the firm GitLab.