Secure By Design Is Better Than Secure By Myth – Bob Lord – ASW #365
Not all infosec advice is helpful. Bad advice wastes time, makes people less secure, and takes focus away from making software more secure. Bob Lord talks about his efforts to tamp down hacklore -- the security myths and mistakes that crop up in news stories and advice to users. He talks about how these myths come about, why they're harmful, and how they're related to the necessity of building software that's secure by design.
Segment Resources:
Bob Lord is a cybersecurity executive and public-interest technologist with deep experience building and defending high profile digital systems. He has led major secure by design initiatives at the Institute for Security and Technology (IST) and at the Cybersecurity and Infrastructure Security Agency (CISA), where he served as a Senior Technical Advisor focused on shifting more responsibility for customer safety to software manufacturers. He was the first Chief Security Officer (CSO) at the Democratic National Committee (DNC), boosting the security of the Committee along with state parties and campaigns. Earlier in his career he was the CISO at Yahoo and the first security hire at Twitter, where he built and led the information security program from the ground up.
Security Weekly listeners save $100 on their RSAC 2026 All Access Pass! RSAC 2026 Conference will take place March 23rd to March 26th in San Francisco. To register using our discount code, please visit securityweekly.com/rsac26 and use the code 56U5SECWEEKLY! We hope to see you there!
