0-Day Vulnerabilities & What’s Next – Larry Maccherone – ASW #204

Renee Alderman API security, Container Security, DAST, dockerized, Integrating Security into DevOps, John Kinsella, Larry Maccherone, Microsegmentation, Mike Shema, Mobile Application Assessment, OpenShift In Action, Raspberry PI Model B, SAST, sql injection, sw composition analysis, The 3 Ways of DevSecOps, the current state of privacy and software development, The Human Element of Application Security, vulnerabilities, WAFs, XSS Vulnerability, Zscalers July 18, 2022

Sponsored By

Visit https://securityweekly.com/contrast for more information!

0-day vulnerabilities pose a high risk because cybercriminals race to exploit them and vulnerable systems are exposed until a patch is issued & installed. These types of software vulnerabilities can be found through continuous detection but even then may not always have a patch available. It’s important for software teams to set up tools that continually look for these types of flaws, as well as defenses that let software adapt itself to an evolving threat landscape. In this episode, we will discuss the ins and outs of 0-day vulnerabilities and what the future of managing them looks like.

Segment Resources:
Recent 0-day blog: https://www.contrastsecurity.com/security-influencers/contrast-protect-eliminates-another-zero-day-headache

What is Contrast Security video: https://www.youtube.com/watch?v=8FwY6zJX1ms

The Contrast Secure Code Platform video: https://www.youtube.com/watch?v=k5CycR4R6bg
This segment is sponsored by Contrast Security. Visit https://securityweekly.com/contrast to learn more about them! Visit https://www.securityweekly.com/asw for all the latest episodes!

Full Episode Show Notes

0-Day Vulnerabilities & What’s Next

Guests

Larry Maccherone – DevSecOps Transformation at Contrast Security

@LMaccherone

Looking at Larry Maccherone’s career, you might think he can’t figure out what he wants to be when he grows up – Serial entrepreneur? Agile transformation coach? Open-source developer? Data scientist? Dev[Sec]Ops thought leader?

However, the underlying theme is that Larry has constantly been striving to create the highest performing (productivity, quality, security, etc.) software engineering teams.

At Comcast, Larry built and scaled the DevSecOps Transformation program over five years, and he’s now looking to apply what he learned doing that to help all Contrast customers and prospects.

Larry hails from Raleigh, NC, where his wife and four daughters make sure there is never a dull moment.

Hosts

John Kinsella – Co-founder & CTO at Cysense

@johnlkinsella

John Kinsella is the Co-founder & CTO of Cysense

Mike Shema – Security Partner at Square

@Codexatron

Mike Shema is a Security Partner at Square.

Announcements

Don’t miss any of your favorite Security Weekly content! Visit https://securityweekly.com/subscribe to subscribe to any of our podcast feeds and have all new episodes downloaded right to your phone! You can also join our mailing list, Discord server, and follow us on social media & our streaming platforms!

0-Day Vulnerabilities & What’s Next – Larry Maccherone – ASW #204

Sponsored By

0-Day Vulnerabilities & What’s Next

Guests

Hosts

Announcements

Related Posts

An Easier Way For Security To Keep Pace

DevSecOps Scanning Challenges & Tips