Ken Toler and Mike McCabe

Relating to DevSecOps

A Podcast dedicated to forging iron clad relationships between developers, engineers, operations, and security practitioners by discussing hot topics in the world of DevSecOps. This podcast aims to air out some of the common gripes, misconceptions, and hardships that these teams face in the real world every day.

Koniecznie odwiedź stronę podcastu i wesprzyj twórcę: www.buzzsprout.com

Autor

Ken Toler and Mike McCabe

Kategoria

Technology

Strona podcastu

www.buzzsprout.com

Ostatni odcinek

29 kwi 2026

Gdzie słuchać?

Podcasty w aplikacji Replaio Radio Już wkrótce

Podcasty trafią do aplikacji już wkrótce. Zainstaluj teraz i jako pierwszy zobacz nowe podejście do podcastów

Pobierz z Google Play Zainstaluj za darmo Android 5 mln+ pobrań · ocena 4,8 iOS niedługo

Odcinki

Episode #009: OWASP Top 10: Awareness, not Measurement 04.09.2020

Send us Fan Mail In this episode we cover the OWASP Top 10, a popular security awareness document and how DevOps and Product Engineering are typically exposed to it. While it's made waves in the industry we discuss how to use and how not to use this document and give some opinions on categories that fall into the DevSecOps sphere of work. This isn't your typical "What is SQL Injecti...

Episode #008: Testing Depths of the DevSecOps River with Both Feet 19.08.2020

Send us Fan Mail There are so many types of tests across DevSecOps and we try to cover as many as possible from SAST to Contract testing. Simon covers his dislike for test-driven development, Ken talks through writing security tests against requirements, and Jamieson brings automation testing to light with new toolsets and process developments.  We all had some preconceived notions going into this...

Episode #007: Service Mesh, more than a Sean Connery sidecar to your Indiana Jones App 12.08.2020

Send us Fan Mail In this episode we get back to tech in the DevOps centric topic of Service Mesh. Ken and Simon chat with Jamieson about concerns and first thoughts on service mesh in their respective experiences. If you're looking at spinning up service mesh within your organization or just want to learn more about it this episode gives highlights from different professional perspectives. We...

Episode #006: How Engineering Titles Affect Your Communication with Development and Product Engineering Teams 05.08.2020

Send us Fan Mail In this episode we take another people centric approach with Simon Dollo as we explore the difference between developers and product engineers. We explore Simon's engineering history and work to identify more meaningful and effective ways of communicating with people writing code. 

Episode #005: Know Your Audience, the Face of Documentation and Training in a DevSecOps World 31.07.2020

Send us Fan Mail In this episode we discuss product engineering security Easter eggs and try to stay on track talking about how to get other departments and teams to adapt your latest and greatest process, tool, or optimization. The conversation quickly devolves into a side track on documentation where we discuss the pitfalls of traditional documentation tactics in the fast paced world of Agile de...

Episode #004: Be careful with your logs aka a hand grenade with a dictionary attached to it 22.07.2020

Send us Fan Mail This time on Relating to DevSecOps we cover application logging, how it's viewed by different teams and what those teams are looking to get out of them. We cover some tips and tricks with logging challenges like ACTUALLY implementing a logging standard, the importance of logging severity levels, and the challenge with the appropriate amount to log. Join us for our divergent o...

Episode #003: Bookending DevSecOps starting with Threat Models 08.07.2020

Send us Fan Mail Starting on the left side of the SDLC, we talk about Threat Modeling experiences from all perspectives and the fundamental issues with checkbox security. We almost get through a whole episode without making fun of Perl and are still waiting for a Perl developer to reach out and tell us how wrong we are. We attempted to get to application logging perspectives but ran into a timewal...

Episode #002: A Product Engineering Perspective on DevSecOps 30.06.2020

Send us Fan Mail Simon Dollo joins the crew and brings his product engineering perspective to the burning question "What is DevSecOps?" We explore the developer perspective to security and devops and have a little fun with Jamieson's love of Perl as an automation tool. Along the way we figure out a common thread to our introduction to code and dig into collaborating against the chal...

Relating to DevSecOps #001: What is DevSecOps?! 23.06.2020

Send us Fan Mail Join us on our first episode of relating to DevSecOps where we introduce the first two co-hosts of 3 recurring players, Jamieson Colburn, representing DevOps. We dig into our definitions of DevSecOps, talk about learning from your colleagues, leveling up your collaboration chops, homelabs, tearing apart electronics in our youth, and Jamieson's love affair with Perl. As the fi...

Słuchaj podcastu Relating to DevSecOps w Replaio

Radio i podcasty w jednej aplikacji - za darmo, bez zakładania konta. Zainstaluj już dziś i nie przegap premiery

Pobierz z Google Play

Replaio nie jest wydawcą podcastów; nazwy audycji, okładki i audio należą do ich autorów i są rozpowszechniane przez publiczne kanały RSS