5min chapter

Tech Lead Journal cover image

#138 - Building Application Security Program - Derek Fisher

Tech Lead Journal

CHAPTER

How to Securing the Development Lifecycle

Security can be done in a hundred different ways, and there can be any combination of tools. What is the business budget tolerance? And what is your risk as an organization? If you're a company that has no sensitive data, you are not processing credit cards. There's no sensitive information. The way I usually try to approach it is that think about what are you trying to discover? DAST or IAST, get a penetration test. Software composition analysis should always be integrated.

00:00

Get the Snipd
podcast app

Unlock the knowledge in podcasts with the podcast player of the future.
App store bannerPlay store banner

AI-powered
podcast player

Listen to all your favourite podcasts with AI-powered features

Discover
highlights

Listen to the best highlights from the podcasts you love and dive into the full episode

Save any
moment

Hear something you like? Tap your headphones to save it with AI-generated key takeaways

Share
& Export

Send highlights to Twitter, WhatsApp or export them to Notion, Readwise & more

AI-powered
podcast player

Listen to all your favourite podcasts with AI-powered features

Discover
highlights

Listen to the best highlights from the podcasts you love and dive into the full episode