078. Alyssa Miller: Threat Modelling and DevSecOps

Threat modelling is broader than just security, and DevSecOps is more than just secure code. Application Security Advocate, Alyssa Miller talks passionately about the importance of a collaborative approach to security, where implementing a culture of building efficiently and understand security as you go, can help with getting ahead of the game. 0'22 Alyssa Miller - the Application Security Advocate 2'20 What is threat modelling? 4'32 Where do you begin with threat modelling? 9'45 Continuous improvement - being more secure tomorrow than we are today! 13'39 The user story 19'32 It's not about WHO is hacking you, but WHAT they're hacking 23'04 Monitor, mitigate and protect 27'45 Implementing threat modelling into DevSecOps to make security more efficient Alyssa's Social Media: https://twitter.com/AlyssaM_InfoSec https://www.linkedin.com/in/alyssam-infosec/ https://alyssasec.com/ Listening Time: 38 minutes Hosted by: Holly Grace Williams, Managing Director at Secarma Guest: Alyssa Miller, Application Security Advocate at Snyk