Meet the people behind technology, learn about the open source projects you need to know about, get updates on community events, and deep dives into social causes on the web. Come deploy with us on a Friday and deep dive into the latest news and information about the constantly evolving ecosystem - where people are working, what’s left to be solved, how to get started, and where you can help.
…
continue reading
Featuring guests from around the world and builders of some of the most exciting technologies on earth, join us as we explore the world of innovation and technology and what we need to do as engineers to keep it safe and secure.
…
continue reading
The GDPR Guy - the podcast dedicated to all things privacy, hosted by Carl Gottlieb - the trusted privacy advisor to leading tech companies, helping them gain maximum advantage through the right privacy strategy. Each episode Carl will be providing information, insights and inspiration to help you on your privacy journey. There'll be regular interviews with leaders in the tech industry about how privacy and security are an essential part of their world. You’ll find show notes and useful reso ...
…
continue reading
1
Building AppSec from Existing Practices with Andrew Wheatley (Tayko)
18:43
18:43
Play later
Play later
Lists
Like
Liked
18:43
In this episode of "Build Amazing Things Securely," host Laura Bell Main sits down with Andrew from Teko. Andrew shares his journey from software development to application security, highlighting his burnout experience and subsequent career pivot. He discusses the importance of understanding and integrating into teams' existing processes, using tec…
…
continue reading
1
Unveiling the Layers of Database Security with Dejan Milicic (RavenDB)
25:44
25:44
Play later
Play later
Lists
Like
Liked
25:44
Episode Summary: "Unveiling the Layers of Database Security" In this episode of "Build Amazing Things Securely," host Laura Bell Main engages in a fascinating conversation with Dejan from RavenDB. Broadcasting from Serbia, Dejan provides insightful perspectives on database security, the importance of encryption, and the nuances of building stable, …
…
continue reading
1
How to Build Trust in Tech: Integrating Human Presence with Secure Innovation with Anthony Maley (Vouch.io)
24:37
24:37
Play later
Play later
Lists
Like
Liked
24:37
Episode Summary In this episode of "Build Amazing Things Securely," host Laura Bell Main interviews Anthony Maley from vouch.io. They delve into Anthony's background, his journey from the UK to Belgium, and eventually to the US, as well as the innovative and secure solutions offered by vouch.io. Anthony discusses the challenges and advancements in …
…
continue reading
1
Demystifying DevSecOps: Insights and Strategies with Tanya Janca (Semgrep)
27:56
27:56
Play later
Play later
Lists
Like
Liked
27:56
Episode Summary In this episode of "Build Amazing Things Securely," host Laura Bell Main interviews Tanya Janca, a prominent figure in the DevSecOps community. Tanya shares insights from her journey in software development to security, emphasizing the importance of secure software. She discusses common pitfalls in DevSecOps and shares lessons from …
…
continue reading
1
How to Secure Trust and Embrace Sustainability with Joey Stanford (Platform.sh)
27:23
27:23
Play later
Play later
Lists
Like
Liked
27:23
Episode Summary In this episode of "Build Amazing Things Securely," host Laura Bell Main speaks with Joey Stanford, Vice President of Data Privacy and Compliance at Platform.sh. Joey shares his journey from starting as the only person in his role to leading a substantial team focused on privacy and compliance. He emphasizes the importance of buildi…
…
continue reading
1
How to use infrastructure automation to improve Security, Velocity and Stability with Ben Goodman (DragonDrop)
21:05
21:05
Play later
Play later
Lists
Like
Liked
21:05
Episode Summary In this episode of "Build Amazing Things Securely," host Laura Bell Main talks with Ben Goodman, founder and CEO of DragonDrop Cloud and the maintainer of Cloud Concierge. Ben discusses his journey from an economics and computer science background to becoming a tech entrepreneur. He shares insights into the importance of automating …
…
continue reading
1
Securing the Game: Navigating the Challenges of Product Security in Gaming with Rohit Selacha (Zynga)
21:46
21:46
Play later
Play later
Lists
Like
Liked
21:46
Episode Summary In this episode of "Build Amazing Things Securely," host Laura Bell Main interviews Rohit, a product security expert in the gaming industry. Rohit shares his journey from an electronics background into cybersecurity, emphasizing the broad scope and diverse challenges in the field. The conversation delves into the specifics of securi…
…
continue reading
1
How to Embrace Penetration Testing: Insights from a Cybersecurity Expert with Gabrielle B (Desjardins)
25:00
25:00
Play later
Play later
Lists
Like
Liked
25:00
Episode Summary In this episode of "Build Amazing Things Securely," host Laura Bell Main interviews Gabrielle, an offensive security advisor at Desjardins, Canada. Gabrielle shares her unique journey from acting to cybersecurity, detailing the skills and experiences that led her to become a penetration tester. The discussion dives into the nuances …
…
continue reading
1
Data at unimaginable scale with Rachael Greaves (Castlepoint Systems)
28:16
28:16
Play later
Play later
Lists
Like
Liked
28:16
Rachael Greaves is the CEO and founder of Castlepoint Systems, a regulatory technology company at the heart of a global push for accountability, privacy, and security in data storage and processing. In this episode, Rachael and Laura dig into the scale of data in our systems, why handling it poorly has real-world consequences, and how explainable A…
…
continue reading
1
Building for scale when you're small with Evan Johnson (RunReveal)
30:29
30:29
Play later
Play later
Lists
Like
Liked
30:29
Evan Johnson has been through a massive shift. Formerly the Senior Director of Security Engineering at Cloudflare, he is now a co-founder at RunReveal. In this episode, Laura and Evan chat about how you build security in early for a global scale and the lessons Evan has learned from his transition from large to small.…
…
continue reading
1
Securing someone else's foundation with Ryan Thomas (Fl0)
32:33
32:33
Play later
Play later
Lists
Like
Liked
32:33
Ryan Thomas is the Head of Engineering at Fl0, a platform as a service organization specializing the databases and backends. In this episode, Laura and Ryan discuss the challenges of building a foundation that others will build upon and how embracing Rust has helped with their mission.By Laura Bell Main
…
continue reading
1
Finding an adequate level of security with Lachlan Temple (Belong)
30:45
30:45
Play later
Play later
Lists
Like
Liked
30:45
Lachlan "skooch" Temple is the Head of Application Security at Belong, an Australian telco. In this episode, Laura and Lachlan discuss how you manage cyber security at the scale of telecommunications and how you figure out how much security is enough.By Laura Bell Main
…
continue reading
1
The Person They Call When Things GO WRONG with Shanna Daly
29:43
29:43
Play later
Play later
Lists
Like
Liked
29:43
Shanna Daly is a computer forensics and cyber security specialist for Cosive Security. She is the person companies call when things have gone very wrong. In this episode, Laura and Shanna talk through what actually happens when a forensics team is called in after an incident, what data really matters, and what we can do as developers to make invest…
…
continue reading
1
Playing with Identity Profiles in Gaming with Jax Garrett
28:16
28:16
Play later
Play later
Lists
Like
Liked
28:16
Jax Garrett is the CEO and founder of GGWP Academy, a platform that teaches gamers how to monetize their social media and online presence while doing what they love. In this episode, Laura and Jax dive into how machine learning is applied in marketing/gaming to understand and categorize players, how this uses data, and the privacy and security cons…
…
continue reading
Ben Chartrand is the CTO of Spotlight Reporting, a popular financial reporting platform. In this episode, Ben shares a recent real-world application security incident faced by him and his team and how they responded.By Laura Bell Main
…
continue reading
1
The One with All the Robots with Antonio Loquercio
27:09
27:09
Play later
Play later
Lists
Like
Liked
27:09
Antonio Loquercio is a roboticist and academic from the University of California, Berkeley, specializing in autonomous space traversal for both legged and flying robots. In this episode, Laura and Antonio dig into the current state of autonomous robots, the challenges involved with making them navigate environments safely and where this exciting le…
…
continue reading
1
Dream a little dream of SBOM with Paul McCarty (SecureStack)
30:19
30:19
Play later
Play later
Lists
Like
Liked
30:19
Paul McCarty is the CEO and founder of SecureStack and has a dream. What if you could quickly know all the components your software is made from, trust they were secure, and push to prod? In this episode, Laura and Paul dig into what we would need to do should we try to make this dream happen, how to think about the components and dependencies in o…
…
continue reading
1
Securing Healthcare at a DNA level - Lisa Hall
57:35
57:35
Play later
Play later
Lists
Like
Liked
57:35
Lisa Hall is the CISO at ColorHealth, a healthcare company based in San Francisco specializing in health testing and DNA screening. In this episode, Lisa joins Laura to discuss the realities of securing software in the healthcare industry and the impact of security risks when you store a person's DNA and have an actual, physical lab in the mix.…
…
continue reading
1
Podman, Containers and Cars - Oh My! with Dan Walsh
29:15
29:15
Play later
Play later
Lists
Like
Liked
29:15
Dan Walsh is a distinguished engineer at Red Hat. With a long history of securing systems from the operating system level and up, he has moved into functional safety, a subsection of cyber security related to keeping people safe from harm. This week, Dan joins us to discuss his work bringing containerization into cars and his work on PodMan, an ope…
…
continue reading
1
Life at the Edge of Authentication with Jon Gelsey
38:48
38:48
Play later
Play later
Lists
Like
Liked
38:48
Jon Gelsey has had an incredible career for someone who describes themselves as "unemployed." Most notably, however, you may know him last as the founder and former CEO of Auth0. In this week's episode, Jon joins us to talk about the importance of cyber security from day 1, planning on being wildly successful, and what the future of authentication …
…
continue reading
1
Securing Messaging at a Global Scale with Ariel Shin (Twillio)
26:17
26:17
Play later
Play later
Lists
Like
Liked
26:17
This week we are joined by Ariel Shin, Product Security Lead at Twillio. Join us as we chat through how security works when you provide messaging services for some of the world's biggest brands and how to scale your security practices when you have 3000 engineers to manage.By Laura Bell Main
…
continue reading
1
Building the Secure Future of IOT with Santiago Bernhardt
26:12
26:12
Play later
Play later
Lists
Like
Liked
26:12
Meet Santiago Bernhardt, a self-confessed cyber security lover and software engineer passionate about securing the Internet of Things (IOT). Join us as we dig into what remarkable technologies are being developed to solve this world-sized problem and the challenges along the way. Be prepared to dive into a problem that brings together cars, formal …
…
continue reading
1
Attribute Based Access Control with Dr. Vaughan Shanks
26:45
26:45
Play later
Play later
Lists
Like
Liked
26:45
Today's guest is Dr. Vaughan Shanks, the Co-Founder, and CEO of Cydarm Technologies. In this episode, we will dig into Attribute Based Access Control(ABAC), a little-used technology for authorization that Vaughan believes can help us not just authorize people but also support critical functions such as incident response.…
…
continue reading
1
Want to be a guest on Build Amazing Things (securely)?
1:00
1:00
Play later
Play later
Lists
Like
Liked
1:00
Whatever industry you are in, wherever you are in the world - we are looking for technologies that are changing the world and the people building and securing it. Want to be our next guest? Get in touch! Email laura@safestack.io to applyBy Laura Bell Main
…
continue reading
Are you building amazing technology that will change the world for the better? Are you trying to keep the world secure while we develop at pace? Join us for weekly episodes of Build Amazing Things (securely), the secure development podcast.By Laura Bell Main
…
continue reading
1
#59 Must you code — Exploring multiple paths to work in tech
1:00:19
1:00:19
Play later
Play later
Lists
Like
Liked
1:00:19
Continuing our focus on women in tech, we discuss the multiple pathways to enter the tech industry, including coding, with our 3 guests, Elena Kolevska, a Senior Technical Enablement Architect at Redislabs, Helen Tabunshchyk, Director of ‘Women Who Code’ London, and Kristina Kushner, a Senior Project Manager at PMP. Coding’s gendered history Though…
…
continue reading
1
#58: Empowering Women for Leadership Roles
58:42
58:42
Play later
Play later
Lists
Like
Liked
58:42
Today we speak with three leaders and women in tech, Susan An, the Senior Sales Director of Tessian, Jessica Alderson, the Co-Founder & CEO of So Syncd, and Maria Antinkaapo, VP of Customer Success at Platform.sh, on the gender imbalance in tech, including the impact of internal and external biases. Fixing the disparity in tech requires a perspecti…
…
continue reading
1
#57: Know the enemy — assessing the cybersecurity threat
1:00:45
1:00:45
Play later
Play later
Lists
Like
Liked
1:00:45
Our guests today, Jane Frankland, owner and CEO of KnewStart, Fareedah Shaheed, CEO and founder of Sekuva, and Eliza-May Austin, Co-Founder of th4ts3cur1ty.company, help us determine the state of the cybersecurity world today and how it can affect you. Defining cybersecurity All three guests admit the term “cybersecurity” is broad. Eliza May says,”…
…
continue reading
1
#56: EZContent, the Drupal distribution for headless content publishing
59:25
59:25
Play later
Play later
Lists
Like
Liked
59:25
EZContent is a Drupal distribution, decoupled framework, and publishing platform created by Srijan. It has many out-of-the-box reusable components for layout building and editing, including AI and machine learning features. We discuss EZContent with experienced Drupal folks, Ishan Mahajan, Kamalpreet Kaur, and Vinay KG. EZContent’s features address…
…
continue reading
1
#55: Golem Network — Anonymous, unstoppable, and censorship-resistant applications
59:22
59:22
Play later
Play later
Lists
Like
Liked
59:22
We speak with María Paula Fernández, Mattias Nystrom, and Stefan Adolf about the Golem Network, and the implications of creating a future internet based on distributed computing, with more focus on privacy. The Golem Network The Golem Network is an accessible, reliable, open access and censorship-resistant protocol, which democratizes access to dig…
…
continue reading
1
54: Does your API Spark Joy — Learn decluttering with GraphQL
56:30
56:30
Play later
Play later
Lists
Like
Liked
56:30
Calling APIs to retrieve data can be a difficult and messy process. Our two guests, Mark Stuart and Shruti Kapoor, are both engineers at PayPal who use GraphQL to bring order to their APIs and data. What is GraphQL GraphQL is a query language for your API, but as Shruti says, “A common myth people have about GraphQL is that we’re querying the datab…
…
continue reading
1
#53: Is the Future of E-commerce Headless?
55:42
55:42
Play later
Play later
Lists
Like
Liked
55:42
As e-commerce has developed as an industry, the old guard e-commerce tools are phasing out to make way for new guard: headless e-commerce. Our two guests today, Product Marketing Manager at Strapi, Anastasiia Shpiliak, and Ryan Szrama, founder of Centarro, discuss the benefits of headless e-commerce and how to achieve it with Strapi and Centarro. S…
…
continue reading
1
#52: OpenStack in the Enterprise; the Path to Your Own Cloud
58:38
58:38
Play later
Play later
Lists
Like
Liked
58:38
OpenStack: scalable, automated cloud infrastructure We introduced OpenStack, powerful open source software that automates the management of hardware and infrastructure, in our 50th episode. Organizations like Sardina Systems use OpenStack to offer their clients scalable, pay-as-you-grow cloud infrastructure. Today we have two guests from Sardina Sy…
…
continue reading
Three different paths to tech Elina Valeeva, CEO of Meditivity, Anna Radulovski, Founder of Coding Girls, and Claudia Mendes Silva, Project Manager for Siemens and an Ambassador of Portugal’s Women in Tech chapter, each came into the tech industry in their own ways. Claudia Mendes Silva and Elina Valeeva both met Ayumi Moore, the President and Foun…
…
continue reading
The Open Infrastructure Foundation Julia Kreger, Mark Collier, and Mohammed Naser are all part of the Open Infrastructure Foundation (OIF), a nonprofit that builds communities around IaaS, Infrastructure-as-a-Service. The OIF is vast and global — it spans 100,000 members across over 180 countries, and it focuses on projects in multiple areas, inclu…
…
continue reading
1
#48 Fission: Fast app publishing for front end devs to ship web native apps
1:00:58
1:00:58
Play later
Play later
Lists
Like
Liked
1:00:58
Defining Fission Fission is an edge app publishing platform for front-end developers. As Boris Mann, one of its creators, defines it, “Fission is a stack of tools, identity files, and data storage that gives developers everything that's needed to run a full web app using only the front end.” Out of the box, Fission has some key benefits. Runs anywh…
…
continue reading
1
#49: Azul, Open Source, and the Zulu Build of OpenJDK
53:21
53:21
Play later
Play later
Lists
Like
Liked
53:21
Azul, the JVM, and the JDK Simon Ritter and Geertjan Wielenga are the brains behind Azul, a company focused on providing the best Java Development Kit (JDK) and Java Virtual Machine (JVM) possible. It’s also the biggest Java-only company in the world. As Simon says, “Azul is all about Java.” Azul has two products: Zing — A high-performance JVM. As …
…
continue reading
Reducing risk when deploying code is a huge priority for many DevOps teams, and incidentally, the reason behind our podcast's name, Deploy Friday. Today, we speak with experts Jackie Balzer and Maryann Bell about best practices for risk reduction during code deployment. Defining code deployment Code deployment can depend on the scale of your organi…
…
continue reading
1
#43: Move your Java Microservices to the cloud with Payara
57:38
57:38
Play later
Play later
Lists
Like
Liked
57:38
Our guests today Rudy de Busscher, on the Payara Sales team, and Fabio Andres Turizo, a Payara Engineer, speak with us about the importance of standards, what Jakarta EE offers developers, and using Payara. Defining Payara Payara is a cloud-native, open source middleware platform that’s both Jakarta EE and MicroProfile compatible. It comes in two v…
…
continue reading
1
#45: The Next Generation Servlet Engine to your cloud application
59:41
59:41
Play later
Play later
Lists
Like
Liked
59:41
What is Jetty? Today, our guests share their extensive experience with Jetty. Greg Wilkins is the original software engineer for Jetty and Simone Bordet is a Jetty Committer. Jetty itself is an HTTP server and container for deploying Java servlets that run on HTTP, and it was also the first Java application server to be deployed as a clickable JAR …
…
continue reading
1
#44: 97 Things Every Cloud Engineer Should Know
57:14
57:14
Play later
Play later
Lists
Like
Liked
57:14
“97 Things Every Cloud Engineer Should Know” is a book of collected wisdom by cloud engineering experts. Our two guests today, Michelle Brenner and Dan Moore, both contributed chapters, and we speak with them about the book and the state of cloud engineering in 2021. What is cloud engineering? With most companies having at least part of their infra…
…
continue reading
Today we’ll be talking about reactive programming, Quarkus and Mutiny with our experts, Clement Escoffier and Julien Ponge, both Principal Software Engineers at Red Hat. Why use reactive programming Reactive programming differs from the “traditional” imperative paradigm. Reactive is a programming approach that centers on events (and reacting to the…
…
continue reading
1
#41: Empowering business automation with Quarkus
56:42
56:42
Play later
Play later
Lists
Like
Liked
56:42
Business automation has been used in other industries for years. Now it’s available for software development. Our Red Hat guests Karina Varela and Donato Marrazzo tell us how business automation can help bridge the gap between business and technical teams. What is business automation? According to Red Hat, “Business automation is the alignment of b…
…
continue reading
Composer 2.0 Jordi Boggiano and Nils Aderman are the original authors of Composer, a near-universal package and dependency manager for PHP, and it just hit a major milestone: Composer 2.0. The two join us in this episode to give us the download on Composer 2 improvements and updates. But first, Nils helpfully defines Composer for us. “Composer is a…
…
continue reading
1
#39: The Platform.sh Agency Partner Program
51:39
51:39
Play later
Play later
Lists
Like
Liked
51:39
What is the Platform.sh Partner Program For digital agencies, Platform.sh offers a number of incentives and benefits that make our service more attractive and your business more profitable. The team behind the Digital Agency Partner Program, and our guests today, explain how this partner program includes exclusive pricing, co-selling, and special f…
…
continue reading
1
#38: Innovation despite lockdown, progress during COVID-19
46:59
46:59
Play later
Play later
Lists
Like
Liked
46:59
By Robert Douglass, Zohar Stolar, Netanel Goldstein, Elroi Marom
…
continue reading
1
#37: Be an API integration genius with Pizzly
51:11
51:11
Play later
Play later
Lists
Like
Liked
51:11
Bearer: good tidings for developers Pizzly is an open source, OAuth integration proxy created by Bearer. It handles dozens of pre-configured APIs like Asana, Basecamp, Salesforce, Slack, Google Sheets, and more, and lets you quickly add even more APIs with a generic JSON configuration schema. Says Guillaume, Co-Founder and CEO of Bearer, “Pizzly is…
…
continue reading
1
#36: Open source authoring: creating a new CMS guidebook
57:13
57:13
Play later
Play later
Lists
Like
Liked
57:13
By Robert Douglass, Heather McNamee, Felicity Brand, Jeffrey A. McGuire
…
continue reading
1
#35: Feature Spotlight — Source Operations to run your fleets
53:56
53:56
Play later
Play later
Lists
Like
Liked
53:56
Website maintenance is a common challenge, especially for agencies running dozens or even hundreds of sites. Platform.sh uses an internally-developed feature, Source Operations, to effectively manage its “fleets” of web applications. Defining a fleet Augustin Delaporte, Director of Enterprise and Fleets at Platform.sh, defines a fleet like this.“As…
…
continue reading
1
#34: GraphQL vs REST — Choosing the right tool
58:18
58:18
Play later
Play later
Lists
Like
Liked
58:18
GraphQL is an open source, declarative language that you can use to source data from your APIs. In a backend landscape with disparate APIs that all need to be tied together, GraphQL is like a middle layer interface between them. Josh Oppenheim, a software engineer and one of our guests today, adds to this definition. “GraphQL allows you to declarat…
…
continue reading