Platform Security – PaaS & Hosting – Trey Ford – ESW #221

Security Weekly Productions Adrian Sanabria, API security, Application Security, Cloud Security, coding, Container Security, DAST, DevOps, DevSecOps, docker, exploits, incident response, Intrusion Detection, log analysis, logging, Microsegmentation, mobile application, Open Source, OpenShift, paul asadoorian, programmer, Programming, ransomware, rasp, SAST, sca, SIEM, SOAR, software, sql injection, sw composition analysis, Threat Hunting, threat intelligence, threats, Trey Ford, Tyler Shields, vulnerabilities, WAF, XSS March 24, 2021

– What security features does Heroku offer that the customer can control and how have these evolved over time?
– How do you balance the security of the application, with the security of the deployment, with the security of the platform?
– What are some tips and/or advice for deploying applications and keeping them secure during the lifecycle? (e.g. as a developer I may run applications in a secure environment, but then down the line someone runs my container with —privileged and exposes a security hole).

The goal being our audience learns what to consider when choosing a platform (or platforms) to run applications from a security perspective. Visit https://www.securityweekly.com/esw for all the latest episodes!

Full Episode Show Notes

Platform Security – PaaS & Hosting

Guests

Trey Ford – VP Platform Strategy and Trust at Salesforce

@treyford

Transformational leader at the intersection of cybersecurity and strategy.

Hosts

Adrian Sanabria – Senior Research Engineer at CyberRisk Alliance

@sawaba

Adrian is an outspoken researcher that doesn’t shy away from uncomfortable truths. He loves to write about the security industry, tell stories, and still sees the glass as half full.

Paul Asadoorian – Founder at Security Weekly

@securityweekly

Paul Asadoorian is the founder of Security Weekly, which was acquired by CyberRisk Alliance. Paul spent time “in the trenches” implementing security programs for a lottery company and then a large university. Paul is offensive, having spent several years as a penetration tester. As Product Evangelist for Tenable Network Security, Paul built a library of materials on the topic of vulnerability management. When not hacking together embedded systems (or just plain hacking them) or coding silly projects in Python, Paul can be found researching his next set of headphones.

Tyler Shields – CMO at JupiterOne

@txs

Tyler advises, guides, and operates high tech startups primarily in the B2B security space. He is a former market analyst, engineer, product manager, marketing leader, and partnership manager. In other words, Tyler builds and grows businesses – in all aspects. He’s a board advisor, angel investor, and board member at multiple firms and an investment advisor for a venture debt business. He loves to play guitar and poker in his free time.

Announcements

Our next live webcast will be on April 29th at 11am ET where you will learn how to prepare for modern ransomware attacks! Visit https://securityweekly.com/webcasts to register now! If you missed any of our previously recorded webcasts or technical trainings, they are available for your viewing pleasure at https://securityweekly.com/ondemand

Platform Security – PaaS & Hosting – Trey Ford – ESW #221

Platform Security – PaaS & Hosting

Guests

Hosts

Announcements

Audio

Related Posts