Securitea Time / Episode #4

Cyber Roulette: Playing with Digital Risks

featuring Farshad Abasi

Farshad Abasi, Founder and CEO of Forward Security, is a seasoned security professional with over fifteen years of experience. He joins us on the fourth episode of SecuriTea Time to teach us how to finesse software security like a pro.

Don’t risk missing out on his tips to stay on top of threat scenarios and vulnerabilities in your applications! This episode is the perfect prescription to beat digital risk, so tune in for a healthy dose of securitea secrets.

“Threat modeling and code review. You’ve got to do all four of those, and most people are only doing one.”

“Assessing vulnerabilities and performing comprehensive threat modeling is essential. It’s not just about individual weaknesses; you must consider how these holes in your system can be exploited by attackers across different layers. Neglecting this holistic approach may leave you vulnerable to basic attacks, as seen in the Capital One case.”

“Tools play a significant role. In the realm of software security, it's possible to integrate static analysis into your development pipeline. This way, as your developers commit code, a fundamental layer of security is applied to the source code.”

Read full transcript here

Listen on YouTube

Read full transcript here

Listen on
Your favourite platforms

Description

Don’t roll the dice on dealing with digital risk! Dive into the world of secure applications with  Farshad Abasi’s savvy software testing methods.

Discover how adopting DevSecOps best practices like enlisting security champions within your dev teams can scale your security practices. 

Learn the strategies small and medium-sized companies can adopt to efficiently address application security without the need for full-time AppSec hires. Master how to balance AppSec and Development with the 80-20 rule.

Get all this juicy information and more on this very exciting episode. Tune in today!

Highlights from the episode

  • Effective software testing methods to protect your apps
  • A comprehensive deep-dive into threat scenarios
  • The benefits of following the OWASP framework
  • How DevSecOps can redefine your approach to security

More Episodes

Watch All
Derek Kalles & Glen Willis
Kalles Group
Episode #1
Strategies to Master Cloud Security
Davis Hake
Co-Founder of Resilience
Episode #1
Fancy some acronym soup, mate?
Vignesh Kumar
Manager of Security and Privacy at Microsoft
Episode #2
Do Auditors Have Horns?
Walter Haydock
CEO of StackAware
Episode #3
AI With a Pinch of Responsibility
Gary Hunter
Cybersecurity at The Walt Disney Company
Episode #4
Back to Basics: A Crash Course for Experts!
Ross Haleliuk
Head of Product at LimaCharlie
Episode #5
De*Romanticizing the Cybersecurity Complexity
Satya Nayak
Head of Security Engineering & Operations at Outreach
Episode #6
Are You YAFing, Bud?
Renae Martin
Senior Technical Program Manager
Episode #7
The Process of Setting Up A Process To Set Up A Process
Jason Leuenberger
Team Coach
Episode #8
A Scoop of Risk, Squishy Not Crunchy!
Akshay Ahuja
Principal - Information Security
Episode #9
The Art of Breaking Into the Security Space
Shashank Karincheti
Senior Manager - Razorpay
Episode #10
The Perks of Automating Audits
Joshua Zweig
Zip Security
Episode #2
Cracking the Cyber Code with Evolving Perspectives of Cybersecurity
Beau Butaud
Risk and Compliance Manager at Moss Adams
Episode #3
Compliance Beyond the Checkbox: A Fresh Perspective on Auditors and Risk
Aaron Wurthmann
CIO & CSO at Spire One
Episode #12
Security: Building a Business Within a business
Todd Dekkinga
CISO at Scrut Automation and Zluri
Episode #11
The Upshot of (Un)continous Compliance
Kevin Qiu
Security Expert at Tech Startups
Episode #13
Security on a shoestring budget

See Scrut in action!

Schedule a Demo