Episode 18: Testing Cloud Application

Episode 18 August 02, 2020 00:38:08
Episode 18: Testing Cloud Application
SilverLining IL
Episode 18: Testing Cloud Application
/

Hosted By

Moshe Ferber Ariel Munafo

Show Notes

Attendees

Guest: Bar Hofesh

Guest Title:  Co-Founder

Company:  Neurolegion

Abstract

Application security is among the hardest things to get right. In this episode we are talking with Bar Hofesh from Neurolegion about the world of automated security testing - what are the challenges, what are the different stages of integration and delivery and how to perform each stage correctly.

Timing:

0:50 - introducing our guest

2:58 - the need to automate security testing - the challenge of developing faster

7:15 - so what is testing automation - describing the process - the code  integration stage

13:50  - security testing the packing and delivery stage

18:50 - testing live application stage

20:20 - appsec finding strategy - what do when found an alert

22:20 - Static analysis vs. dynamic analysis

24:58 - emerging technologies - RASP, IAST

30:50 - Is there still room for manual penetration testing?

34:05 - summary and last words

Other Episodes

Episode 34

February 08, 2021 00:49:02
Episode Cover

Episode 34: PayPal cloud journey

Attendees Guest: Assaf Keren Guest Title: VP, Enterprise Cyber Security Company: PayPal Abstract PayPal is one of the most interesting organizations in the world in terms of security. The combination of online presence with the unique line of business is making PayPal one of the most secure hi-tech companies and one of the most innovative financial institutions.  In this episode, we hosted Assaf Keren, VP of enterprise cyber security, for a discussion about PayPal’s cloud journey from traditional on-premise to the multi-cloud / multi-locations giant they are now, and how COVID-19 is changing Paypal’s digital journey with their customers & employees.     ...

Listen

Episode 38

May 12, 2021 00:32:43
Episode Cover

SilverLining Episode 38: Cloud Native Security Foundations

Attendees Guest: Gadi Naor  Guest Title: VP Software Engineering, Cloud Security @ Rapid7 Topic: Cloud Native Security Foundations Abstract Lately, The CNCF (Cloud Native Computing Foundation) released the cloud native security whitepaper: the first release of security guidelines for organizations who adopt cloud native approaches. In order to better understand the guidelines, we hosted Gadi Naor, VP Software Engineering, Cloud Security @ Rapid7, and co-author of the guidelines, for a conversation about what is cloud native security and why & how organizations should adopt this approach. ...

Listen

Episode 46

February 09, 2022 00:27:40
Episode Cover

SilverLining Episode 46: Securing Small & Medium businesses

Guest: Alex Peleg Guest title: Co-founder and CVO at Cynergy Language: English   Abstract Small and medium businesses are currently the most vulnerable sector in the market. They don’t have the knowledge and awareness to secure their own operations, and security vendors and IT services companies often neglect this sector. In this episode we spoke with Alex Peleg, CVO at Cynergy, on the challenges of securing SMB and how regulators, Security vendors and the security community should bridge the gap of knowledge and awareness in the SMB market.   ...

Listen