Turning to the Purple Side

Picture this: you’re working on a new software that will revolutionize your industry. You’ve got your work cut out for you, from design to programming to integration. But what about security? Keeping your software secure should be in the conversation from day one, but not all developers are well-versed in application security. The good news is that you’re not alone, and even if this picture that we’ve painted isn’t of you, there are still very accessible ways to learn about application security and information security. One of these ways is We Hack Purple, created by a Microsoft alumnus.   In this episode of Security Unlocked, hosts Natalia Godyla and Nic Fillingham are joined by the founder of We Hack Purple and former Microsoft Senior Cloud Advocate, Tanya Janca, to discuss her company, trainings, and why it’s so important to keep up with the newest movements in the world of security. Before founding her company, Tanya found herself red-teaming and blue-teaming, and declared herself in the world of Purple. She brings us into that world, breaks down app-sec framework, and even gives a few sci-fi book recommendations.   In This Episode You Will Learn:    How to keep up with new practices for security professionals  The frame work for application security  How to work with and communicate effectively with software developers  Some Questions We Ask:    How do we bridge the gap between developers and the security world?  What are the pros and cons of threat modeling?  Who should get involved in application security?   Resources:   We Hack Purple  View Tanya on LinkedIn  View Natalia on LinkedIn  View Nic on LinkedIn    Related: Listen to: Afternoon Cyber Tea with Ann Johnson Listen to: Security Unlocked Security Unlocked is produced by Microsoft and distributed as part of The CyberWire Network.