Relating to DevSecOps

Relating to DevSecOps

Latest Episodes

Episode #069: Your SaaS is Grass
March 20, 2024

In this episode Mike and Ken dive into the wild world of SaaS products in DevSecOps. From vendors to security tooling hygiene they cover an often overlooked ecosystem of cloud and software services that may be rotting in the sky of your workloads. Join up

Episode #068: Data Breaches and DevSecOps
February 21, 2024

With pep and full youtube energy Ken and Mike discuss the findings of the IBM "Cost of a Data Breach" report and its implications for DevSecOps. They highlight the importance of integrating security into every phase of the software development l

Episode #067: Welcome to 2024! AppSec Resolutions and A Smhoocon Recap
January 26, 2024

Ken and Mike discuss their new year's resolutions related to application security. They also reflect on the impact of AI and its adoption in the industry. The hosts share their experiences attending conferences and highlight interesting talks on topi

Episode #066: Exploration of the Shifting Definition of Shifting Left
December 05, 2023

We are joined by incredible guests Mikhail Chechik and Marcus Hallberg as they help us define DevSecOps and emphasize the importance of a security mindset throughout the development process. These two incredible folks explore common misconceptions about s

Episode #065: LASCON 2023 Recap - AI, a Misunderstood Menace or Magic Bullet
November 10, 2023

On this episode of R2DSO Mike and Ken dive into their takeaways and experiences from LASCON 2023 in Austin, TX where AI was both a problem child and praised bringer of salvation in security. Vendors and companies alike are embracing AI with wide eyes and

Episode #064: Don't Instigate, Mitigate!
September 25, 2023

In this episode Ken and Mike dive directly into the meat with solutioning and mitigation. All too often security professionals finding themselves falling into the trap of focusing on vulnerability counts, evangelizing findings, and playing the age old gam

Episode #063: Unscrambling CloudSecSoup with CSPM, Vuln Management, SIEMs, and Log Aggregators
September 05, 2023

In today's episode, we untangle the web of alphabet-soup technologies: CSPM, VM, SIEM, and Log Aggregators. We go beyond the buzzwords to give you a no-nonsense look at how these tools fit together, complement each other, or might even replace one an

Episode #062: Cyber Sentinels: Ken and Mike in the DevSecOps Labyrinth
August 07, 2023

Dive headfirst into AppSec and Terraform security with Ken and Mike in this electrifying podcast episode. They demystify complex security concepts, offer golden nuggets on Cybersecurity programs as a DevSecOps concept, and provide a rare glimpse into the

Episode #061: Fossilized Code & Future Clouds: Contrasting Worlds of Balance in Legacy Applications
July 18, 2023

Ken and Mike dive into the exciting world of modern application and cloud security, with a keen focus on the challenges posed by legacy systems. They explore the hurdles faced when dealing with older applications written in stalwart languages like Java, .

Episode #060: Precise Angles for Automation in DevSecOps Adventures
June 22, 2023

In this captivating episode of R2DSO hosts Ken and Mike embark on an exploration of security automation in the realms of application and cloud security. With a a keen understanding of the pitfalls, they emphasize the need for precision, consistency, and r