Tanya Janca

In this discussion, Tanya Janca, author of 'Alice and Bob Learn Secure Coding' and a leading voice in application security, shares her insights on integrating security throughout the software development lifecycle. She emphasizes the importance of defining security requirements early and using threat modeling in design. Tanya details secure coding practices, effective testing strategies like SAST and DAST, and the necessity of continuous security monitoring post-deployment. With a focus on practical techniques and real-world examples, she guides developers on enhancing software security.

Join Francis Odum, founder of Software Analyst Cyber Research, Chris Hughes of Aquia and Resilient Cyber, cloud and AppSec engineer James Berthoty, and secure coding advocate Tanya Janca as they unpack insights from RSA Conference 2025. They discuss the transformative impact of AI on AppSec and security operations, the importance of runtime security, and innovative strategies for vulnerability management. Expect candid takes on industry challenges like ransomware and the diminishing focus on zero trust—along with actionable insights for the future of cybersecurity.

Tanya Janca, a cybersecurity expert with 28 years of experience and author of "Alice and Bob Learn Secure Coding," sheds light on the pitfalls of treating security as an afterthought. She emphasizes the need to redefine security as an ongoing practice rather than a final gate. Tanya shares insights on enhancing developer empowerment through clear guidelines and internal knowledge libraries. The conversation also touches on the evolving relationship between AI integration and security, advocating for continuous learning and critical evaluation of AI-generated code.

Tanya Janca, an application security expert and author of 'Alice and Bob Learn Application Security,' discusses the alarming trend of teaching insecure coding practices right from the 'Hello, World' program. She emphasizes the importance of secure coding throughout the development lifecycle and shares insights on tool selection and fostering a culture of security awareness. Tanya also highlights key strategies to prevent vulnerabilities and the necessity of aligning security needs with development teams, ensuring safer coding practices in today's tech landscape.

In a riveting discussion, Tanya Janca, developer relations at Semgrep and author of 'Alice and Bob Learn Secure Coding,' joins Ed Gaudet, CEO of SenseNet, to tackle cybersecurity in healthcare. They explore why healthcare remains tough to disrupt and emphasize the critical need for enhanced security amidst rising ransomware threats. Tanya shares insights from her book on secure coding, while Ed highlights the unique risks rural healthcare facilities face. Their engaging conversation underscores the urgent mission to safeguard patient safety in the evolving digital landscape.