Tanya Janca

In this discussion, Tanya Janca, author of 'Alice and Bob Learn Secure Coding' and a leading voice in application security, shares her insights on integrating security throughout the software development lifecycle. She emphasizes the importance of defining security requirements early and using threat modeling in design. Tanya details secure coding practices, effective testing strategies like SAST and DAST, and the necessity of continuous security monitoring post-deployment. With a focus on practical techniques and real-world examples, she guides developers on enhancing software security.

Tanya Janca, a cybersecurity expert with 28 years of experience and author of "Alice and Bob Learn Secure Coding," sheds light on the pitfalls of treating security as an afterthought. She emphasizes the need to redefine security as an ongoing practice rather than a final gate. Tanya shares insights on enhancing developer empowerment through clear guidelines and internal knowledge libraries. The conversation also touches on the evolving relationship between AI integration and security, advocating for continuous learning and critical evaluation of AI-generated code.

Join Francis Odum, founder of Software Analyst Cyber Research, Chris Hughes of Aquia and Resilient Cyber, cloud and AppSec engineer James Berthoty, and secure coding advocate Tanya Janca as they unpack insights from RSA Conference 2025. They discuss the transformative impact of AI on AppSec and security operations, the importance of runtime security, and innovative strategies for vulnerability management. Expect candid takes on industry challenges like ransomware and the diminishing focus on zero trust—along with actionable insights for the future of cybersecurity.

In this engaging chat, Tanya Janca, known as SheHacksPurple, shares her insights as an AppSec expert and author. She discusses why traditional security policies often flop and how to make them more effective. Bridging the gap between developers and policy writers is key—Tanya emphasizes the need for practical, simplified guidelines. She also touches on her advocacy work in enhancing cybersecurity within government sectors. Tune in for her tips on empowering developers and making security accessible!

Tanya Janca, an application security expert and author of 'Alice and Bob Learn Application Security,' discusses the alarming trend of teaching insecure coding practices right from the 'Hello, World' program. She emphasizes the importance of secure coding throughout the development lifecycle and shares insights on tool selection and fostering a culture of security awareness. Tanya also highlights key strategies to prevent vulnerabilities and the necessity of aligning security needs with development teams, ensuring safer coding practices in today's tech landscape.