You’ve Got Appsec, But Do You Have ArchSec? – Merritt Baer – ASW #250
Mature shops should be looking to a security architecture process to help scale their systems and embrace security by design. We talk about what it means to create a security architecture process, why it's not just another security review, and why it requires security to dig into engineering.
Segment Resources:
Announcements
Join us at an upcoming Official Cyber Security Summit in a city near you! This series of one-day, invitation-only, executive level conferences are designed to educate senior cyber professionals on the latest threat landscape.
We are pleased to offer our listeners $100 off admission when you use code SecWeek23 to register.
Visit securityweekly.com/cybersecuritysummit to learn more and register today!
Guest
Merritt (Twitter: @MerrittBaer) is Field CISO at Lacework, a cloud security unicorn. Merritt provides technical security guidance to Lacework’s customer executives. She is also instrumental in the security industry: speaking, talking and advising companies on security at scale, and she helps to inform Lacework product roadmaps with customer and threat landscape feedback.
Previously, Merritt served in the Office of the CISO at Amazon Web Services, as part of a small elite team that formed a Deputy CISO. Merritt has experience in all three branches of government and the private sector. Before Amazon, Merritt served as Lead Cyber Advisor to the Federal Communications Commission. She also advises and serves on boards of young companies, including Expanso (open-source platform that enables efficient and secure distributed computation). Merritt is a graduate of Harvard Law School and Harvard College.