Awesome talk on developer driven security in high-growth environments.

https://youtu.be/-D5ZnDjAMHY

#security #cybersecurity #appsec #applicationsecurity #productsecurity #devsecops #devops #riskassessment #sdlc #ssdlc #threatmodel

A lightweight approach to implement SSDLC (Secure Software Development LifeCycle).

https://www.anshumanbhartiya.com/posts/secure-sdlc

#security #cybersecurity #appsec #applicationsecurity #productsecurity #devsecops #devops #cicd #riskassessment #sdlc #ssdlc #threatmodel

https://int3.substack.com/p/stuff-for-the-stash-week-49

Hot of the press, this week's edition of Stuff for the Stash, covering #automotivesecurity , #windowsdebugging, #windowssandbox, #hypervisor , #bootloader , #pwn2own, #fuzzing , #ssdlc, #5g , #securitytools and more #cybersecurity

Retoots for reach strongly appreciated !

Alright, time to join the crowd with an #introduction. Greetings, Fediverse! 🐘

I've been using computers for almost 20 years (started on Windows 95) although worked in IT and security only for 4 years (I think). Before that I was on the dark side: web marketing, ad tech... It's bad, never go there. ☠️

Currently, I'm working in Japan for a car maker 🚗 , trying to make sure car hacking isn't the "next big thing (tm)" ; on the #AppSec side. I also lead #sSDLC group and work in very close relationship with our #privacy team. ㊙️

I actually joined cybersecurity because of my interest for privacy.

I wish I had more time to learn new skill like #RFID (I've got a Flipper Zero 🐬 I don't know how to use) and #HardwareHacking (RIP little robot vacuum cleaner, you left too soon 👼 ).

In my free time, I #workout, I love #rucking and I collect #kokeshi (Japanese wooden dolls). It's getting out of hand, I have hundreds. I actually have a Excel sheet to track them. Is it too much? I also like #flamingo 🦩

When the yen/dollar difference goes back to something reasonable I wish to buy a gaming computer. Oh well. 💸

Oh yeah speaking of yen, I live in Japan but I'm French. Also most of my toots will probably be in Japanese. Feel free to answer in English tho (and use the new translation feature!)

Feel free to connect! Peace & Flamingo 🦩

Combining @OwaspSAMM with @owasp #DSOMM Feedback more than welcome, RT appreciated #DevSecOps #SSDLC

Hey all. There is an open position in the #Cybersecurity team regarding #appsec #ssdlc / #SecureSoftwareDevelopment often with involvement of vehicle back end homologation and regulation.

If you know anyone who might be interested then please forward it on! The company takes diversity and inclusion seriously so if you are interested but feel that maybe you don’t quite tick all the boxes, please do #ApplyNow. We all had to start somewhere!

Any boosts to help me reach the person to take advantage of this opportunity are welcome :blobwink:

https://experienced-toyota-europe.icims.com/jobs/3403/application-cybersecurity-specialist/job?hub=9

#hiring #HiringNow #joboffer #opening #OpenPosition

*Ultimate DevSecOps library*

#docker #kubernetes #aws #security #devops #automation #awesome #cloud #serverless #tool #azure #containers #gcp #ci_cd #cybersecurity #k8s #awesome_list #devsecops #ssdlc

DevSecOps focuses on security automation, testing and enforcement during DevOps - Release - SDLC cycles. The whole meaning behind this methodology is connecting together Development, Security and Operations. DevSecOps is methodology providing different methods, techniques and processes backed mainly with tooling focusing on developer / security experience.

DevSecOps takes care that security is part of every stage of DevOps loop - Plan, Code, Build, Test, Release, Deploy, Operate, Monitor.

https://github.com/sottlmarek/DevSecOps