The Azure Security Podcast

Episode 93: Continuous Security Development Lifecycle

Mar 25, 2024

Guests Tony Rice and David Ornstein discuss Continuous Security Development Lifecycle, Azure Key Vault, Cloud PKI, OAuth2, SQL Server password verifiers, Memory Safety, Azure SQL DB. They emphasize continuous evaluation, data-driven approach, transparent evidence, and data-driven security in compliance work for enhanced security measures.

39:12

Creator website

Episode guests

David Ornstein

Tony Rice

AI Summary

Highlights

AI Chapters

Episode notes

Podcast summary created with Snipd AI

Quick takeaways

Continuous SDL enhances security by early detection and mitigation of issues.

Adopting data-driven methodologies and transparent practices is crucial for modern software security.

Deep dives

Introduction and Overview

Episode 93 of the Azure Security Podcast introduces Tony Rice and David Ornstein discussing the Continuous Microsoft Security Development Lifecycle (Continuous SDL). The podcast delves into various aspects of security, privacy, and compliance in the modern cloud computing ecosystem. The hosts highlight upcoming events, news from the Tampa B-Sides conference, and the introduction of Trusted Launch in preview for AKS nodes to enhance security against persistent attack techniques.

Continuous Evaluation for Secure Software Development

01:39

Monitoring Numbers and Strong Evidence

00:49

Introduction

3min

Updates and Announcements in Azure Services and Security Practices

4min

Continuous Security Development Lifecycle at Microsoft

15min

Importance of Transparent and Traceable Evidence in Security Development

5min

Evolution of Data-Driven Security in Compliance Work

12min

In this episode Michael, Sarah, and Mark talk with guests Tony Rice and David Ornstein about insights into the Continuous SDL (Security Development Lifecycle).

We also discussed Azure Security news about Azure Key Vault, Cloud PKI, OAuth2, updated SQL Server password verifiers, Memory Safety and Azure SQL DB.

The Microsoft Azure Security Podcast (azsecuritypodcast.net )

Remember Everything You Learn from Podcasts

Save insights instantly, chat with episodes, and build lasting knowledge - all powered by AI.

The Azure Security Podcast

Episode 93: Continuous Security Development Lifecycle

Episode guests

Podcast summary created with Snipd AI

Quick takeaways

Deep dives

Introduction and Overview

Understanding the Security Development Lifecycle (SDL)

Continuous Evolution in Security Practices

Final Thoughts on Secure Software Development

Continuous Evaluation for Secure Software Development

Monitoring Numbers and Strong Evidence

Remember Everything You Learn from Podcasts