O'reilly Security Podcast - O'reilly Media Podcast

The O’Reilly Security podcast: DevOps, risk reduction, and vulnerabilities in open source.In this episode, I talk with Guy Podjarny, founder of Snyk, a developer tooling company focused on securing open source alongside building a business. We discuss the parallel paths between the transformation from Ops teams to DevOps and where security teams are right now, building security tools focused on the people who will be using them, and who owns the problem of vulnerabilities in open source.Here are some highlights: Parallel paths of DevOps and security People think of DevOps positively, now. They think of all the awesome things that an ops team, a DevOps team, can do for them, and it would be amazing to try to convert that sentiment and that knowledge and that community into the world of security. We still need to find the analogies for that in security. Building positive security tools It's constantly hard, reducing risk without being a fear monge