The Balancing Act by Security Compass
Sesh Vaidyula & Harvey Nusz - Understand the CMMC

Sesh Vaidyula & Harvey Nusz - Understand the CMMC

December 4, 2020

Today we are joined by Altaz Valani from Security Compass, Sesh Vaidyula, Partner at Templar shield,  and Harvey Nusz, Principal at 4IT Security, Governance & Compliance, in our second podcast to talk about CMMC. We will talk about what CMMC means to DoD suppliers around building maturity. We will then discuss the transformational leadership role that the DoD has as they work toward a more secure supply chain. We will conclude by discussing challenges that, in particular, smaller organizations face with CMMC compliance.

Wendy Murphy - Insights from CMMC Center of Excellence

Wendy Murphy - Insights from CMMC Center of Excellence

November 30, 2020

Today we are joined by Altaz Valani from Security Compass and Wendy Murphy, Chair - Events & Outreach Working Group for CMMC Center of Excellence, to talk about their mission and then dive deeper into the common challenges organizations face with CMMC. We will conclude by talking about where the CMMC CoE is headed in the future. Given the importance of CMMC and its implications for ensuring security in the DoD supply chain, having insights and guidance from a Center of Excellence can help organizations leverage best practices and learn from the experience of others. 

Ayhan Tek - How a Security Executive Can Help Accelerate Software Development

Ayhan Tek - How a Security Executive Can Help Accelerate Software Development

November 27, 2020

Today we are joined by Altaz Valani from Security Compass and Ayhan Tek, VP of Information Security at Cyber Electra, to talk about how a security executive can enable speed to market in software development. Competition adds a lot of pressure to deliver software products faster which is why we will explore how a senior security executive can enable the business to keep moving fast instead of being perceived as a blocker. In today’s world, security is an imperative component of software development and can enable speed to market.

Rohini Narasipur - Build a Product Security Program

Rohini Narasipur - Build a Product Security Program

November 23, 2020

Today we are joined by Altaz Valani from Security Compass and Rohini Narasipur, Product Security Engineer at Bosch, to talk about what makes product security different from software security. With the convergence of software and hardware, it has become important to understand how software and hardware security processes can integrate with each other. To conclude, we get some forward-looking insights from Rohini about where product security is headed. In today’s world, we need to consider the security aspect of both software and hardware as well as the challenges that arise due to the cross-functional narrative.

David Fairman - Convergence of Cyber Physical Systems

David Fairman - Convergence of Cyber Physical Systems

November 20, 2020

Today we are joined by Rohit Sethi from Security Compass and David Fairman, Chief Security Officer at Netskope, to understand the concept of cyber-physical systems and how these are transforming the way we interact with engineered objects and infrastructure. We will also delve into the security concerns for cyber-physical systems as these play an increasingly vital role in critical infrastructure and can cause massive damage in the event of a cyberattack. In addition, David will talk about the use of these systems in the financial services sector drawing from his experience.

Arun Prabhakar - The Difference Between Product and Software Security

Arun Prabhakar - The Difference Between Product and Software Security

November 16, 2020

Today we are joined by Altaz Valani from Security Compass and Arun Prabhakar, Security Consultant at Security Compass, to talk about product security. We start by talking about both product and software security, where there are similarities and differences. We then turn the conversation to look at quality and the categories of metrics that help make secure products. At the end of our discussion, we discuss where hardware security is headed in the future. This area of product security is an important topic in light of  the growing convergence between hardware and software layers.

DJ Schleen - Using Technology to Enhance DevSecOps

DJ Schleen - Using Technology to Enhance DevSecOps

November 13, 2020

Today we are joined by Pranoy De and Michael Bolger from Security Compass and DJ Schleen, Senior Manager of Software Security at Rally Health, to talk about how we can leverage technology to enhance DevSecOps practices. In this podcast, we delve into the details of technology and automation tools that are essential for setting up a robust DevSecOps program, with specific emphasis on the Healthcare industry.

Enabling Both Speed and Security

Enabling Both Speed and Security

November 9, 2020

Today we are joined by Pranoy De, Eleonor Lee, and Altaz Valani from Security Compass, to talk about three DevSecOps challenges from a technical leader’s perspective: integrating security into DevOps pipelines; building a knowledge retention and training model that balances speed and security; and the convergence of business and IT. In all cases, security has a key role to play in enabling the business to manage risk, in a way that doesn’t slow down the business.

Spencer Koch - An Executive Perspective on Agile Security

Spencer Koch - An Executive Perspective on Agile Security

November 2, 2020

Today we are joined by Altaz Valani from Security Compass and Spencer Koch, Offensive Security Professional at Reddit, to talk about Agile Security in technology companies from an Executive’s perspective. We would start with the question — Why does the business think security gets in the way of being agile — and discuss how a security executive can start to change this perception. As with any change, there needs to be an ongoing effort from security teams to provide assurance and business value for agility. Agile is at the forefront of technology companies today, and security can be an enabler by reducing risk without  getting in the way.

Purnima Bihari - Managing Speed and Security in Your DevOps Product Lifecycle

Purnima Bihari - Managing Speed and Security in Your DevOps Product Lifecycle

October 30, 2020

Today we are joined by Altaz Valani from Security Compass and Purnima Bihari, Product Owner at Security Compass, to talk about how managing a fast moving product delivery lifecycle while ensuring security is a challenging task. Purnima will share insights from her experience about the role a product owner plays in injecting security early into the product lifecycle and the impact being a security champion can make on ensuring product security. We will also discuss the skills required to adopt a balanced approach to speed and security.

Podbean App

Play this podcast on Podbean App