In an increasingly digital world that we live in, building secure software is important for us all. Just as personal safety and security are fundamental needs, we at the Purple Book Community believe digital security is a fundamental need as well. Welcome to The Purple Book Podcast. This podcast is part of the Purple Book Community, a community of some of the world’s leading security leaders. Our vision is to build a purpose driven, trusted, and safe community that equips people with the expertise to embrace secure development practices, connect with other practitioners to solve the ever-evolving challenges, and ultimately democratize software security.

In this podcast we host thought leaders and security practitioners to tackle the monumental challenge of building secure software and making the digital world safer and more secure.

Our goal is to bring informative and insightful discussions about securing software, sharing challenges in doing so, and promoting best practices that will inspire you to take action.

Members of the Purple Book Community host the podcast, more than 30 practitioners who truly understand the ins and outs of DevOps and have been on the frontlines of this digital challenge. They are made up of the best chief information security officers and software developers from all the leading organizations and companies right now. You can rest assured you are acquiring the best software security advice through their vast expertise and experience on the subject.

To make every discussion interesting, engaging, and unpredictable, the episodes of The Purple Book Podcast feature a mix of these 30 amazing individuals. Some conversations may only have two people diving deep into a complex topic, while others may highlight an entire group immersed in an in-depth collaboration and brainstorming. With this unique delivery that does not stick to a single format, listeners could treat themselves to a wide variety of data presentation and strategy building.

Ultimately, The Purple Book Podcast aims to build a vibrant free resource community around it, connecting practitioners and thought leaders. More practical solutions would be developed by creating awareness about heightening software security and ushering a collective work for it.

With the advent of Agile development methodologies and DevOps, the pace of software development has accelerated dramatically, going from once a year release to releases every month, week or even hourly in some cases. This certainly has made it more challenging to secure that software.

So, leaders from the Purple Book Community are also writing a “Purple book of Software Security”. This will be a “how to” handbook for anybody looking to build secure applications and products with insights from top security practitioners. This book looks at software security from the lens of many of its avatars, application security, product security, DevSecOps, and SecDevOps. Following contains the table of contents of this book.

1. Introduction
2. Why Software Security
3. People/Culture/Organization
4. Process
5. Technology
6. Compliance, Governance and Risk Framework
7. Securing Software Supply Chain
8. Building Business Case for Software Security Program
9. Capability Maturity Model, KPIs, and Security Metrics
10. Key Takeaways, Next Steps, and Conclusion

This book looks at case studies and best practices from startups to Fortune 10 corporations. So, no matter the size and maturity of your organization, this book will provide something for you.

This book will be released in the third quarter of 2021 and will be offered free of charge to all. You can find out more about it at thepurplebook.club. We invite you to come join us to be part of this community.