Security Weekly Productions

Ready to shine at #BlackHatUSA2024? Our interview packages, recorded by the SCMedia and SecurityWeekly teams, provide the perfect platform to elevate your brand and share your insights. You won't want to miss the chance to be featured in a 15-minute live Executive Interview alongside industry veterans like Jeff Man, Mandy Logan, and others. Interview spots are closing Monday, July 29th. Book your interview now: https://bit.ly/3Rytwxh #Cybersecurity #ThoughtLeadership #CyberRiskTV

Be a thought leader at #BlackHatUSA2024. Our on-site interviews provide unmatched visibility and post-event reach. Amplify your message and drive thought leadership in the Cybersecurity industry. Book your interview now! https://bit.ly/3Rytwxh #BlackHatUSA2024 #Cybersecurity #ThoughtLeadership #CyberRiskTV

2yrs ago i made a prediction in my Security Weekly Productions 🎙 interview that SAST is going to die 💣 ☠ as it stands today. Thanks to AI, we are now quite close. Let me explain because SCA could be next ...👇🏾 In the Keynote for AWS Summit New York 🍎 2024 - Matt Wood shared insights on Amazon Q Developer & Brooke showed a demo of Amazon Q Developer to understand the recipe of the code that Amazon Q was assisting the new developer with. As a cybersecurity profession, the security scanning piece peaked my interest and i dived into it and this is what i found: 1️⃣ Amazon Q uses agents to understand the code that it is working on. 2️⃣ If you are new to a codebase, Amazon Q agent can suggest code that is vulnerable 3️⃣ It can also help suggest code which can be used to remove the vulnerability You can see from the research above this is not a full proof plan, it still requires an AppSec or experienced Developer to review the code before accepting the code. 🏭 SAST (Static Code Analysis) which is a huge part of the above of creating and maintaining secure code has been an function that security teams used to manage and every attempt of integrating it into an IDE has not been well received but this is a game changer. 🧑🏾💻 Caveat - I'm not from a development background so a bad AppSec person to help a developer but just the above goes a long way in helping many CISO/leaders who want a DevSecOps or Shift left approach but couldn't scale the SAST tool across their developer let alone the IDE. ☄️ Future - Amazon Q similar to Github Co-Pilot is where the future is going for code development. Natively solving security problems where the developer is writing code will be true shift left. Sorry SAST, the countdown has started. Bonus Security - Amazon Q also supports transformation from older version of language to newer version e.g Java Limitation - Support for limited set of popular languages - Code needs to be uploaded to Amazon Q or Github CoPilot for it to analyze your code which will not be acceptable in regulated industry at the moment. then again we know what happened for everyone who said No to an iPhone and only wanted Blackberries. Have you used Amazon Q Developer or Github Co-Pilot - did I miss anything? #AWSSummit #AmazonQ #sast

All checked-in and ready to hack the Gibson at H.O.P.E. Security Weekly Productions

Make a significant impact at #BlackHatUSA2024 with our Executive Interviews. Amplify your brand and thought leadership during and beyond the event. Your 15-minute interview will be streamed on top platforms, plus extra exposure on Security Weekly's Podcast network and SC Media's website. Book your interview now: https://bit.ly/3Rytwxh #BlackHatUSA2024 #Cybersecurity #ThoughtLeadership #CyberRiskTV

As organizations grow, there comes a time when managing by excel spreadsheets is not longer feasible and accurate data sources, regulations, and risk need to be accurately reflected within Governance, Risk and Compliance (GRC) tools. Reporting to the board must be based upon accurate information. Join us as we discuss the important aspects of forming a GRC program with Jonathan Ruf, FVP - Head of Cyber and Information Risk Management at Apple Bank. https://bit.ly/3XXziwu #CyberSecurity

Don't miss your chance at #BlackHatUSA2024! Join top cybersecurity podcast hosts Mandy Logan and Jeff Man in our CRA Studio at the Four Seasons Las Vegas, August 6-8. Secure your Executive Interview and get unparalleled visibility and post-event amplification as your interview streams on Twitch, YouTube, Twitter, LinkedIn, Facebook, and featured on Security Weekly’s Podcast network and SC Media’s website. Spots are limited – secure yours now! https://bit.ly/3Rytwxh #Cybersecurity #ThoughtLeadership #BlackHatUSA2024 #CyberRiskTV

Ed Harris, Global Director Information Security at Mauser Packaging Solutions joins us to discuss how to secure OT environments, implement effective air gaps, and more! https://bit.ly/3WaWcPQ #CyberSecurity