Discover more from The OSINTion Tidbit

Open Source Intelligence (OSINT), Geospatial Intelligence (GEOINT), OPSEC/Privacy, Disinformation, and Data Science and the impacts they have on society.

Brakeing Down the Advanced Persistent Security…

Joe Gray

Dec 4, 2016

Make sure you’re wearing your ugly Christmas Sweater and have a glass of eggnog when you enjoy this special episode.

A Joint PODCAST with Brakeing Down Security

(With Bryan Brake and Brian (mr.) Boettcher, Featuring Dr. Gary McGraw)

December 3, 2016

If you enjoy this podcast, be sure to give us a 5 Star Review and “Love Us” on iTunes; Like us on Google Play, Stitcher, Sound Cloud, Spreaker, and YouTube.
NOTE: The opinions expressed in this podcast are ours alone and do not reflect those of our employers

BRAKEING DOWN THE ADVANCED PERSISTENT SECURITY PODCAST HOLIDAY SPECIAL AND BOOK CLUB KICKOFF SHOW NOTES

As part of Brakeing Down Security’s ongoing discussion about the #SDLC and getting security baked in as far left as possible, Bryan, Mr. Boettcher, and I sat down with Dr. Gary McGraw, author of “Software Security: Building Security In” to discuss his book, which we are doing in the Brakeing Security Book Club (check out both Brakeing Down Security‘s and our #Slack channel for more information!)

Gary walks us through the 7 Kingdoms of getting more security in, including doing automated and manual code audits, proper penetration testing of the application at various stages (testing), documentation (if you don’t know it works, how can you test it?), and your Security Operations people, monitoring for things once it goes into production.

Join Bryan, Mr. Boettcher, and I for a discussion with a true leader in the software and application security industry.

ABOUT Gary McGraw

Gary McGraw is the CTO of Cigital, Inc., a software security consulting firm with headquarters in the Washington, D.C. area and thirteen offices throughout the world. He is a globally recognized authority on software security and the author of eight best selling books on this topic. His titles include Software Security, Exploiting Software, Building Secure Software, Java Security, Exploiting Online Games, and 6 other books; and he is editor of the Addison-Wesley Software Security series. Dr. McGraw has also written over 100 peer-reviewed scientific publications, authors a monthly security column for SearchSecurity and Information Security Magazine, and is frequently quoted in the press. Besides serving as a strategic counselor for top business and IT executives, Gary is on the Advisory Boards of Dasient (acquired by Twitter), Fortify Software (acquired by HP), Raven White, Invotas, and Max Financial. His dual PhD is in Cognitive Science and Computer Science from Indiana University where he serves on the Dean’s Advisory Council for the School of Informatics. Gary served on the IEEE Computer Society Board of Governors and produces the monthly Silver Bullet Security Podcast for IEEE Security & Privacy magazine (syndicated by SearchSecurity).

CONTACTING Dr. McGraw:

Twitter: @cigitalgem

Company: www.cigital.com

Podcast: www.cigital.com/silverbullet

Blog: www.cigital.com/blog

Book: www.swsec.com

Personal: www.garymcgraw.com

Dr. McGraw’s Books:

Software Security: Building Security In

Exploiting Software: How to Break Code

Building Secure Software: How to Avoid Security Problems the Right Way (Discussed on the show and part of the Brakeing Down Security Book Club; considered by many to be a seminal text in application security)

Thanks for stopping by and checking out our podcast. We would appreciate if you could subscribe (assuming you like what you hear; we think you will). This is meant to be informative and to provide value to anyone who listens – regardless of their knowledge and/or understanding of IT/Cybersecurity. To learn more about us, check out our “About Us” page.

Enter your email address:

Delivered by FeedBurner