Episode 229: Security with Rey Bango
Rey Bango talks with us about ways to implement security in the apps you're developing, and how to think about encouraging developers and users to be more security minded.
const podcast = { episode: 229, title: 'Security', topics: [ 'Security', 'business', 'insurance' ], guest: 'Rey Bango' hosts: [ 'Craig Shoemaker', 'Ward Bell' ]};Recording date: 03/30/2023
John Papa @John_Papa
Ward Bell @WardBell
Dan Wahlin @DanWahlin
Craig Shoemaker @craigshoemaker
Rey Bango @ReyBango
Brought to you by
Visit nx.dev to get the preeminent open-source toolkit for monorepo development, today.
Resources:
- How to Think Like a Hacker
- How to Write Secure Code
- Static Application Security Testing
- Veracode
- Snyk
- Typosquatting
- Open Worldwide Application Security Project (OWASP)
- What is Dynamic Application Security Testing (DAST)?
- Attack IQ
- Red Canary
- Zero Trust Security
- Wazuh - The free and open source XDR platform
- Defcom
- Security Courses on Udemy
Timejumps
- 00:30 Welcome
- 01:12 Guest introduction
- 02:53 What does offensive security mean?
- 07:42 Sponsor: Ag Grid
- 08:46 How do you balance security and ease for developing?
- 14:00 Is there a tool or AI for security?
- 21:22 Where are the guard rails for people?
- 34:02 Sponsor: Narwhal
- 34:39 How do you deal with the humans using the apps?
- 40:18 Dealing with supply chain and npm
- 47:28 Final thoughts
Podcast editing on this episode done by Chris Enns of Lemon Productions.