Tanya Janca

In this discussion, Tanya Janca, author of 'Alice and Bob Learn Secure Coding' and a leading voice in application security, shares her insights on integrating security throughout the software development lifecycle. She emphasizes the importance of defining security requirements early and using threat modeling in design. Tanya details secure coding practices, effective testing strategies like SAST and DAST, and the necessity of continuous security monitoring post-deployment. With a focus on practical techniques and real-world examples, she guides developers on enhancing software security.

Join Francis Odum, founder of Software Analyst Cyber Research, Chris Hughes of Aquia and Resilient Cyber, cloud and AppSec engineer James Berthoty, and secure coding advocate Tanya Janca as they unpack insights from RSA Conference 2025. They discuss the transformative impact of AI on AppSec and security operations, the importance of runtime security, and innovative strategies for vulnerability management. Expect candid takes on industry challenges like ransomware and the diminishing focus on zero trust—along with actionable insights for the future of cybersecurity.

Tanya Janca, a cybersecurity expert with 28 years of experience and author of "Alice and Bob Learn Secure Coding," sheds light on the pitfalls of treating security as an afterthought. She emphasizes the need to redefine security as an ongoing practice rather than a final gate. Tanya shares insights on enhancing developer empowerment through clear guidelines and internal knowledge libraries. The conversation also touches on the evolving relationship between AI integration and security, advocating for continuous learning and critical evaluation of AI-generated code.

In a riveting discussion, Tanya Janca, developer relations at Semgrep and author of 'Alice and Bob Learn Secure Coding,' joins Ed Gaudet, CEO of SenseNet, to tackle cybersecurity in healthcare. They explore why healthcare remains tough to disrupt and emphasize the critical need for enhanced security amidst rising ransomware threats. Tanya shares insights from her book on secure coding, while Ed highlights the unique risks rural healthcare facilities face. Their engaging conversation underscores the urgent mission to safeguard patient safety in the evolving digital landscape.

In this engaging discussion, Tanya Janca, Head of Community at Semgrep and security trainer at She Hacks Purple, shares insights from her new book aimed at helping developers write secure code. She emphasizes the critical importance of validating inputs and adopting a zero-trust security model. Tanya discusses balancing security with usability, especially in sensitive environments like hospitals. She also explores effective strategies for securing legacy applications and the need for continuous security testing in the software development lifecycle.