O'Reilly Security Podcast - O'Reilly Media Podcast
The O'Reilly Security Podcast examines the challenges and opportunities for security practitioners in an increasingly complex and fast-moving world. Through interviews and analysis, we highlight the people who are on the frontlines of security, working to build better defenses.
- Update frequency
- every 13 days
- Average duration
- 32 minutes
- Episodes
- 43
- Years Active
- 2015 - 2017
Rich Smith on redefining success for security teams and managing security culture
In this episode of the Security Podcast, I talk with Rich Smith, director of labs at Duo Labs, the research arm of Duo Security. We discuss the goals of agile application security, how to reframe suc…
Christie Terrill on building a high-caliber security program in 90 days
In this episode of the Security Podcast, I talk with Christie Terrill, partner at Bishop Fox. We discuss the importance of educating businesses on the complexities of “being secure,” how to approach …
Susan Sons on building security from first principles
In this episode of the Security Podcast, O’Reilly’s Mac Slocum talks with Susan Sons, senior systems analyst for the Center for Applied Cybersecurity Research (CACR) at Indiana University. They discu…
Charles Givre on the impetus for training all security teams in basic data science
In this episode of the Security Podcast, I talk with Charles Givre, senior lead data scientist at Orbital Insight. We discuss how data science skills are increasingly important for security professio…
Andrea Limbago on the effects of security’s branding problem
In this episode of the Security Podcast, I talk with Andrea Limbago, chief social scientist at Endgame. We discuss how the misperception of security as a computer science skillset ultimately restrict…
Window Snyder on the indispensable human element in securing your environment
In this episode of the Security Podcast, I talk with Window Snyder, chief security officer at Fastly. We discuss the fact that many core security best practices aren’t easy to achieve with tools, the…
Chris Wysopal on a shared responsibility model for developers and defenders
In this episode of the Security Podcast, I talk with Chris Wysopal, co-founder and CTO of Veracode. We discuss the increasing role of developers in building secure software, maintaining development s…
Scott Roberts on intelligence-driven incident response
In this episode of the Security Podcast, I talk with Scott Roberts, security operations manager at GitHub. We discuss threat intelligence, incident response, and how they interrelate.
Jack Daniel on building community and historical context in InfoSec
In this episode of the Security Podcast, I talk with Jack Daniel, co-founder of Security Bsides. We discuss how each of us (and the industry as a whole) benefits from community building, the importan…
Jay Jacobs on data analytics and security
In this episode of the Security Podcast, Courtney Nash, former chair of O’Reilly Security conference, talks with Jay Jacobs, senior data scientist at BitSight. We discuss the constraints of convenien…
Katie Moussouris on how organizations should and shouldn’t respond to reported vulnerabilities
In this episode, O’Reilly’s Courtney Nash talks with Katie Moussouris, founder and CEO of Luta Security. They discuss why many organizations have a knee-jerk legal response to a bug report (and why y…
Alex Pinto on the intersection of threat hunting and automation
In this episode, I talk with Alex Pinto, chief data scientist at Niddel. We discuss the role of threat hunting in security, the necessity for well-defined process and documentation in threat hunting …
Amanda Berlin on defensive security fundamentals
In this episode, I talk with Amanda Berlin, security architect at Hurricane Labs. We discuss how to assess and develop defensive security policies when you’re new to the task, how to approach core se…
Kimber Dowsett on developing and maturing a vulnerability disclosure program
In this episode, I talk with Kimber Dowsett, security architect at 18F. We discuss how to prepare your organization for a vulnerability disclosure policy, the benefits of starting small, and how to a…
Kelly Shortridge on overcoming common missteps affecting security decision-making
In this episode, I talk with Kelly Shortridge, detection product manager at BAE Systems Applied Intelligence. We talk about how common cognitive biases apply to security roles, how decision trees can…
Dave Lewis on the tenacity of solvable security problems
In this episode, I talk with Dave Lewis, global security advocate at Akamai. We talk about how technical sprawl and employee churn compounds security debt, the tenacity of solvable security problems,…
Parvez Ahammad on applying machine learning to security
In this special episode of the Security Podcast, O’Reilly’s Ben Lorica talks with Parvez Ahammad, who leads the data science and machine learning efforts at Instart Logic. He has applied machine lear…
Katie Moussouris on procuring and processing bug reports
In this episode, I talk with Katie Moussouris, founder and CEO of Luta Security. We discuss the five stages of vulnerability disclosure grief, hacking the government, and the pros and cons of bug bou…
Allison Miller on making security better and easier for everyone
In this episode, I talk with Allison Miller, product manager for secure browsing at Google and my co-host of the O’Reilly Security conference, which is returning to New York City this fall. We discus…
Scout Brody on crafting usable and secure technologies
In this episode, O’Reilly Media’s Mac Slocum talks with Scout Brody, executive director of Simply Secure. They discuss building systems that help humans, designing better tools through user studies, …