Ep 14 - DevSecOps Without the Buzzwords - What It Really Takes to Build Secure Software

https://is1-ssl.mzstatic.com/image/thumb/Podcasts211/v4/df/be/99/dfbe9941-d770-5736-7a80-42f538522c86/mza_6689034245075288237.jpg/600x600bb.jpg

Coffee, Chaos and ProdSec

Cameron Walters & Kurt Hendle

19 episodes

5 hours ago

Coffee, Chaos & ProdSec is where cybersecurity meets caffeine-fueled chaos. Hosts Kurt (security architect and chaos tamer) and Cameron (ProdSec wrangler and DevSecOps junkie) dive into hacking, AppSec, supply chain failures, AI surprises, and the everyday madness of defending modern systems. With humor, sharp insight, real breach breakdowns, bad password confessions, and a few questionable impressions, they explore the messy reality of security and how teams survive it. New episodes Every Wednesday at 5 AM Eastern.

Technology

RSS

All content for Coffee, Chaos and ProdSec is the property of Cameron Walters & Kurt Hendle and is served directly from their servers with no modification, redirects, or rehosting. The podcast is not affiliated with or endorsed by Podjoint in any way.

Technology

https://d3t3ozftmdmh3i.cloudfront.net/staging/podcast_uploaded_nologo/44638564/44638564-1762886116274-9844ad74a348e.jpg

Ep 14 - DevSecOps Without the Buzzwords - What It Really Takes to Build Secure Software

Coffee, Chaos and ProdSec

1 hour 9 minutes 57 seconds

4 weeks ago

Ep 14 - DevSecOps Without the Buzzwords - What It Really Takes to Build Secure Software

🎙️ Coffee, Chaos and ProdSec - Ep 14

DevSecOps gets thrown around in cybersecurity more than any other term, but almost no one agrees on what it actually means.

So this week, Kurt and Cameron pour fresh mugs and unpack the real practices behind modern Application Security, Product Security, DevSecOps, and Software Supply Chain Security without the marketing fluff.

From threat modeling and architecture reviews, to CI/CD guardrails, identity patterns, SBOMs, pipeline automation, and why DAST still refuses to fit anywhere, this episode digs into how security can integrate into the entire software lifecycle without slowing teams down.

Cameron and Kurt break down why DevSecOps is more culture than tooling, how design flaws start long before code, what AI is about to break next, and why “shift everywhere” beats “shift left” every time.

If you work in cybersecurity or just enjoy hearing two security leaders question reality over caffeine, this one is your new weekly ritual.

☕ New episodes every Wednesday.

Coffee, Chaos & ProdSec — strong coffee, stronger opinions.