Episode 22: How To Do Add Open Source Code To Your Applications, Securely

Episode 22 August 03, 2020 00:32:39
Episode 22: How To Do Add Open Source Code To Your Applications, Securely
SilverLining IL
Episode 22: How To Do Add Open Source Code To Your Applications, Securely
/

Hosted By

Moshe Ferber Ariel Munafo

Show Notes

Attendees

Guest: Liran Tal

Guest title: Developer Advocate

Company:  Synk

Abstract

Open source software takes a big part in our daily lives, and also in our development environments. Many applications developers rely on open source libraries &  tools and integrating it into their code. This is a great improvement for developers allowing them to innovate quickly and efficiently. But all this good comes with a big responsibility - open source software should be carefully examined in order to make sure its reliability. In this episode we talk with Liran Tal from Synk about the growing importance of adding security evaluation of open source software in the development cycle.

Timing:

 0:00 introducing our guest

5:50 what is the challenge of open-source security

10:05 - open source security - the people angel

16:00 - open source security - the process angel

24:55 - open source security - the technology angel

29:42 summary and last words

Other Episodes

Episode 31

December 23, 2020 00:32:14
Episode Cover

Episode 31: Understanding Cloud Native Security Basics

Attendees Guest: Benjy Portnoy Guest Title: Sr. Director, Solution Architects Company: Aqua Security Abstract A cloud-native security strategy entails protecting the infrastructure, build, and running workloads. In this episode, we spoke with Benjy Portnoy, Sr Director of Solution Architects at Aqua Security regarding cloud-native security fundamentals. We also delve into various attacks identified in the recently published Cloud Native Threat Report by Aqua's security research team, Nautilus. Timing 0:00 introducing our guest 2:50 what is cloud native security 5:11 Sorting out between CWPP, CSPM & DevSecOps 8:01 Protecting the build, the platform and workload 10:30 Understanding what is CASB  12:45 diving into the kinsing attack 29.11 Summary and last words ...

Listen

Episode 2

April 22, 2019 00:33:27
Episode Cover

Episode 2: Security Challenges Of Moving From Monolith To Micro-Services

Attendees Guest: Yuval Reut,  Guest title:  CIO & CISO  Company:  Riskified  Micro-services can bring enormous benefits into the organizations – giving flexibility and driving innovation. But Micro-services are also challenging from a security point of view. In this podcast, Yuval Reut, CIO & CISO for Riskified, will share his experience of moving an entire monolith application to a group of integrated micro services. Timing: 0:00 – 3:39 - intro and learning about Riskified 3:39 - 9:55 - CISO & CIO positions at SaaS startups 9:55 - 12:20 - moving from Monolith to Microservices – reasons for the move. 12:20 - 19:30 - technology challenges when moving to Micro services 19:30 - 25:00 - People challenges when moving to Micro services 25:00 – 29:35 - Process challenges when moving to Micro services        29.40 – 33:00 - Summary and conclusions ...

Listen

Episode 49

April 06, 2022 00:37:28
Episode Cover

SilverLining Episode 49: Security for Fintech Companies

Guest: Alex Gestin Guest title:  CISO, Riseup Language: English   Abstract The growing number of fintech companies represent a shift in the market from traditional banking &  financing to new models and tools that are empowered by technology. But fintech companies face security challenges - they need to provide customers and financial partners with assurance & security at a level of giant institutes - while being young and small companies. In this episode we spoke with Alex Gestin, CISO for Riseup - about the challenges of Fintech companies and how Riseup builds environments that provide assurance and trust with regulators, consumers and other banks. ...

Listen