InfoQ Homepage Security Content on InfoQ
-
Cyber Security with Maxime Lamothe-Brassard
On this episode of the InfoQ Podcast, Thomas Betts talks with Maxime Lamothe-Brassard about cybersecurity. Understanding security is very similar to understanding software architecture, with general concepts applicable to everyone, and specific needs that depend on your situation. The discussion covers roles and responsibilities, DevSecOps, and the current and future state of cloud-native security
-
Michelle Brenner Builds Netflix Workstations and Enables Artists to Create From Anywhere
Producing television shows and movies at Netflix-scale means having a way to efficiently work with many artists and content creators. Netflix Workstations were created as a cloud-based solution to provide artists with secure access to the applications and content they need to complete their work. We talk about the benefits and trade-offs of the solution that enables artists to create from anywhere
-
Mario Platt on DevSecOps, Platforms, and Threat Modelling
In this podcast, Mario Platt, VP head of information security at CloudMargin, sat down with InfoQ podcast co-host Daniel Bryant. Topics discussed included: the differences and similarities between DevSecOp and DevOps; the role of a platform in relation to system security; and the value of threat modelling.
-
Marty Abbott and Tanya Cordrey on Microservices, Availability, and Managing Risk
In this podcast, Marty Abbott and Tanya Cordrey sat down with InfoQ podcast co-host Daniel Bryant and discussed topics that included: their learning from working together in the early days of eBay, why and how to avoid creating software systems that are composed of deep call chains of microservices, and how to build effective product teams.
-
Gareth Rushgrove on Kubernetes as a Platform, Applications, and Security
In this podcast, Daniel Bryant sat down with Gareth Rushgrove, director of product management at Snyk. Topics covered included Kubernetes as a platform, application abstractions, continuous delivery, and implementing good security practices in the cloud native space.
-
Vulnerabilities and Risks in the Software Supply Chain
Shane Hastie spoke to Brian Fox of Sonatype about vulnerabilities and risks inherent in the modern software supply chain and how to overcome them.
-
The Challenges of DevOps and the Importance of Developer Experience with Jyoti Bansal
In this podcast, Shane Hastie spoke to Jyoti Bansal about the challenges of DevOps today and the importance of developer experience for effective software development today.
-
Nishant Bhajaria on Security, Privacy and Ethics
In this podcast Shane Hastie, lead editor for culture & methods, spoke to Nishant Bhajaria about security, data privacy, ethics and privacy by design .
-
Derek Weeks on the 2020 DevSecOps Community Survey Results
In this podcast Shane Hastie, Lead Editor for Culture & Methods, spoke to Derek Weeks of Sonatype about the results of the 2020 DevSecOps Community Survey and the All Day DevOps conference.
-
Chris Matts & Tony Grout on IT Risk Management Framework as a Catalyst for Change
In this podcast Shane Hastie, Lead Editor for Culture & Methods, talks to Tony Grout and Chris Matts about building an IT risk management framework at a large bank and using that as a catalyst for a digital transformation.
Resources
Building an Identity Architecture
Learn about the key components for building a centralized, modular identity architecture based on open standards. Register for free course.
JWT Security Best Practices
Best practices for protecting your APIs from attacks and maintaining a high level of security of applications. Learn more.
Hardening Single Page Application Security
How do you best protect Single Page Applications? Watch this webinar to learn security best practices when developing SPAs.
Curity Identity Server - Community Edition
Take the pain out of implementing OAuth and OpenID Connect, manage API access, secure apps and websites. Free to use.