CYBER cover image

CYBER

You Can’t Automate the Difficult Decisions

Nov 27, 2023
The podcast discusses the challenges of integrating security into the development process and the benefits and limitations of automation in security teams. It explores techniques for mitigating security vulnerabilities and dealing with false positives. The chapter also emphasizes the importance of tuning security automations to minimize false positives and false negatives.
19:53
Creator website

Podcast summary created with Snipd AI

Quick takeaways

  • Collaboration between development, operations, and security teams is essential to prioritize security without hindering development.
  • Automation in security offers numerous benefits such as efficient penetration testing, incident response, and faster vulnerability identification, but it requires ongoing research, tuning, and integration.

Deep dives

Automating Security and the Balancing Act

In this podcast episode, the host explores the challenges of automating security in the development process. While automation can enhance security by identifying vulnerabilities early on, there is a delicate balance between security and speed. Many companies still prioritize speed over cybersecurity, but there is a growing shift towards prioritizing cybersecurity. The podcast features Jolyn Kirui, a senior cloud security advocate at Microsoft, who shares her experience transitioning from a software developer to a security advocate. The episode delves into the complexities of integrating security into the development process, the need for collaboration between development, operations, and security teams, and the concept of shifting security to the left through DevSecOps. Automation, including IDE plugins and pre-commit checks, plays a crucial role in catching security vulnerabilities early, but it requires careful tuning to minimize false positives and negatives. The goal is to strike a balance between effective security measures and the speed of development.

Get the Snipd
podcast app

Unlock the knowledge in podcasts with the podcast player of the future.
App store bannerPlay store banner

AI-powered
podcast player

Listen to all your favourite podcasts with AI-powered features

Discover
highlights

Listen to the best highlights from the podcasts you love and dive into the full episode

Save any
moment

Hear something you like? Tap your headphones to save it with AI-generated key takeaways

Share
& Export

Send highlights to Twitter, WhatsApp or export them to Notion, Readwise & more

AI-powered
podcast player

Listen to all your favourite podcasts with AI-powered features

Discover
highlights

Listen to the best highlights from the podcasts you love and dive into the full episode