You’re (probably) Doing AppSec Wrong – Grant Ongers – ASW #102
Most security programs generally get in the way of delivery (if they don't, to all intents and purposes, prevent it altogether) and are probably also failing to provide the required level of actual security. This segment can try to look at why this is the case and how (in general terms) security and product teams can change this.
Guest
Co-founder of Secure Delivery and current OWASP Global Foundation board chair, Grant Ongers is a firm believer in security enabling delivery not blocking it. Well-known in the international InfoSec community (it’s hard to forget the beard!), his 10+ years of experience in Dev, 20 years in Ops and 30 years in Sec (mostly white hat) has made him a firm believer that there’s no such thing as DevSecOps – just DevOps done right, and that compliance != security (or the other way around). Alongside his role as CTO within Secure Delivery, Grant provides C-suite advice and guidance on security to FTSE100 enterprises and strategic risk analysis within M&A diligence teams.