In an increasingly digital world that we live in, building secure software is important for us all. Just as personal safety and security are fundamental needs, we at the Purple Book Community believe digital security is a fundamental need as well. Welcome to The Purple Book Podcast. This podcast is part of the Purple Book Community, a community of some of the world’s leading security leaders. Our vision is to build a purpose driven, trusted, and safe community that equips people with the expertise to embrace secure development practices, connect with other practitioners to solve the ever-evolving challenges, and ultimately democratize software security.In this podcast we host thought leaders and security practitioners to tackle the monumental challenge of building secure software and making the digital world safer and more secure. Our goal is to bring informative and insightful discussions about securing software, sharing challenges in doing so, and promoting best practices that will inspire you to take action. Members of the Purple Book Community host the podcast, more than 30 practitioners who truly understand the ins and outs of DevOps and have been on the frontlines of this digital challenge. They are made up of the best chief information security officers and software developers from all the leading organizations and companies right now. You can rest assured you are acquiring the best software security advice through their vast expertise and experience on the subject. To make every discussion interesting, engaging, and unpredictable, the episodes of The Purple Book Podcast feature a mix of these 30 amazing individuals. Some conversations may only have two people diving deep into a complex topic, while others may highlight an entire group immersed in an in-depth collaboration and brainstorming. With this unique delivery that does not stick to a single format, listeners could treat themselves to a wide variety of data presentation and strategy building.Ultimately, The Purple Book Podcast aims to build a vibrant free resource community around it, connecting practitioners and thought leaders. More practical solutions would be developed by creating awareness about heightening software security and ushering a collective work for it. With the advent of Agile development methodologies and DevOps, the pace of software development has accelerated dramatically, going from once a year release to releases every month, week or even hourly in some cases. This certainly has made it more challenging to secure that software.So, leaders from the Purple Book Community are also writing a “Purple book of Software Security”. This will be a “how to” handbook for anybody looking to build secure applications and products with insights from top security practitioners. This book looks at software security from the lens of many of its avatars, application security, product security, DevSecOps, and SecDevOps. Following contains the table of contents of this book. Introduction Why Software Security People/Culture/OrganizationProcessTechnologyCompliance, Governance and Risk FrameworkSecuring Software Supply ChainBuilding Business Case for Software Security ProgramCapability Maturity Model, KPIs, and Security Metrics Key Takeaways, Next Steps, and ConclusionThis book looks at case studies and best practices from startups to Fortune 10 corporations. So, no matter the size and maturity of your organization, this book will provide something for you. This book will be released in the third quarter of 2021 and will be offered free of charge to all. You can find out more about it at thepurplebook.club. We invite you to come join us to be part of this community.
All content for Purple Book Podcast is the property of Podgo and is served directly from their servers
with no modification, redirects, or rehosting. The podcast is not affiliated with or endorsed by Podjoint in any way.
In an increasingly digital world that we live in, building secure software is important for us all. Just as personal safety and security are fundamental needs, we at the Purple Book Community believe digital security is a fundamental need as well. Welcome to The Purple Book Podcast. This podcast is part of the Purple Book Community, a community of some of the world’s leading security leaders. Our vision is to build a purpose driven, trusted, and safe community that equips people with the expertise to embrace secure development practices, connect with other practitioners to solve the ever-evolving challenges, and ultimately democratize software security.In this podcast we host thought leaders and security practitioners to tackle the monumental challenge of building secure software and making the digital world safer and more secure. Our goal is to bring informative and insightful discussions about securing software, sharing challenges in doing so, and promoting best practices that will inspire you to take action. Members of the Purple Book Community host the podcast, more than 30 practitioners who truly understand the ins and outs of DevOps and have been on the frontlines of this digital challenge. They are made up of the best chief information security officers and software developers from all the leading organizations and companies right now. You can rest assured you are acquiring the best software security advice through their vast expertise and experience on the subject. To make every discussion interesting, engaging, and unpredictable, the episodes of The Purple Book Podcast feature a mix of these 30 amazing individuals. Some conversations may only have two people diving deep into a complex topic, while others may highlight an entire group immersed in an in-depth collaboration and brainstorming. With this unique delivery that does not stick to a single format, listeners could treat themselves to a wide variety of data presentation and strategy building.Ultimately, The Purple Book Podcast aims to build a vibrant free resource community around it, connecting practitioners and thought leaders. More practical solutions would be developed by creating awareness about heightening software security and ushering a collective work for it. With the advent of Agile development methodologies and DevOps, the pace of software development has accelerated dramatically, going from once a year release to releases every month, week or even hourly in some cases. This certainly has made it more challenging to secure that software.So, leaders from the Purple Book Community are also writing a “Purple book of Software Security”. This will be a “how to” handbook for anybody looking to build secure applications and products with insights from top security practitioners. This book looks at software security from the lens of many of its avatars, application security, product security, DevSecOps, and SecDevOps. Following contains the table of contents of this book. Introduction Why Software Security People/Culture/OrganizationProcessTechnologyCompliance, Governance and Risk FrameworkSecuring Software Supply ChainBuilding Business Case for Software Security ProgramCapability Maturity Model, KPIs, and Security Metrics Key Takeaways, Next Steps, and ConclusionThis book looks at case studies and best practices from startups to Fortune 10 corporations. So, no matter the size and maturity of your organization, this book will provide something for you. This book will be released in the third quarter of 2021 and will be offered free of charge to all. You can find out more about it at thepurplebook.club. We invite you to come join us to be part of this community.
Security champions are integral in running a smooth business and scaling up successfully. Chitra Dharmarajan stresses why setting up a security champions program within the organization can drastically improve working relationships and keep information well-protected. She joins Nitin Raina to discuss the best time to start your own program and the right strategies to make it effective. Chitra also calls for a methodical approach to develop training and realign expectations that will help improve the skills and capabilities of security champions.
Security experts are often seen as blockers in an organization, disconnected and distant from the rest of the departments. It is up to security champions like Bob Zinga to influence people to see them as partners in the most crucial situations. Bob joins Nitin Raina to share his role in raising security awareness to improve interconnectedness among different departments. He explains why security must be a major concern throughout the year, as well as how to train people to adapt this mindset to design highly functional cultures that are safe at all levels.
Companies come and go, but the good ones tend to stay. What makes for that market differentiator is the ability of companies to make a connection, earn trust, and build a community around them. This is what our guest, Robert Rodriguez, has long known and helped him build SINET. In this episode, he sits down with Nikhil Gupta to share his passion for building communities and why he thinks it is important for software security. Robert sheds light on the importance of community perspectives because even in technology, we need to bring people together to solve the problem. Join this conversation and learn the value of building a sustainable community in your business.
With society's ever-increasing reliance on software, it's more important than ever to ensure that the software supply chain is secure. The rise of the Internet of things has made more devices connected to the Internet and are thus vulnerable to attack. What can software developers do to ensure security in the software supply chain? That is what today's guests, Cassie Crossley and Piyoush Sharma, discuss. Cassie, Product & Systems Security Director at Schneider Electric, is an experienced cybersecurity technology executive in Information Technology and Product Development. Piyoush Sharma, on the other hand, is an experienced leader with a demonstrated history of working across various industry verticals such as manufacturing, biotechnology, and software development. Tune in as Cassie and Piyoush share their expertise on software supply chain security and what can be done to protect software from cyber threats and attacks.
The speed of software releases today jumped from only once or twice a year to almost every month or every day. This poses a challenge for developers to come up with proper software security measures while keeping up with the rapid demand. LingRaj Patil sits down with Les Correia, Global Head of Application Security at Estee Lauder, to discuss why a big mindset change is needed for the software to become truly secure. They talk about how the Total Quality Management movement revolutionized the Japanese auto industry from being perceived as makers of substandard cars to becoming globally recognized in quality. Les also shares how the Purple Book Community feels like a family, where people can speak their mind, learn something from others, challenge each other’s thinking, and give something back to the group.
As technology continues to become deeply embedded in our every life, software security has become a field that everyone could not just set aside anymore. Joining LingRaj Patil to delve into this subject is Poornaprajna Udupi, Chief Technology Officer of Good Money, and Pavi Ramamurthy, Chief Information Security Officer of Upstart. Together, they look at the Purple Book Community and how the Purple Book of Software Security came about. They also explain why this book is timely today when software attacks like the Solarwinds and Colonial Pipeline attacks are on the rise. The trio discusses its table of contents and even shares personal stories that will touch your hearts.
Bigger things can be achieved much easier and faster if like-minded people come together for one collective goal. This is what the Purple Book Community wants to do in improving today's approach and mindset towards software security. Nikhil Gupta joins LingRaj Patil to look at the origin of the Purple Book of Software Security. They discuss how the book has matured with the participation of new members, giving birth to ten informative chapters. LingRaj and Nikhil also delve into how the book evolves into a community, serving as a cradle for shared insights about software security and a stage for effective mentorship.
In an increasingly digital world that we live in, building secure software is important for us all. Just as personal safety and security are fundamental needs, we at the Purple Book Community believe digital security is a fundamental need as well. Welcome to The Purple Book Podcast. This podcast is part of the Purple Book Community, a community of some of the world’s leading security leaders. Our vision is to build a purpose driven, trusted, and safe community that equips people with the expertise to embrace secure development practices, connect with other practitioners to solve the ever-evolving challenges, and ultimately democratize software security.In this podcast we host thought leaders and security practitioners to tackle the monumental challenge of building secure software and making the digital world safer and more secure. Our goal is to bring informative and insightful discussions about securing software, sharing challenges in doing so, and promoting best practices that will inspire you to take action. Members of the Purple Book Community host the podcast, more than 30 practitioners who truly understand the ins and outs of DevOps and have been on the frontlines of this digital challenge. They are made up of the best chief information security officers and software developers from all the leading organizations and companies right now. You can rest assured you are acquiring the best software security advice through their vast expertise and experience on the subject. To make every discussion interesting, engaging, and unpredictable, the episodes of The Purple Book Podcast feature a mix of these 30 amazing individuals. Some conversations may only have two people diving deep into a complex topic, while others may highlight an entire group immersed in an in-depth collaboration and brainstorming. With this unique delivery that does not stick to a single format, listeners could treat themselves to a wide variety of data presentation and strategy building.Ultimately, The Purple Book Podcast aims to build a vibrant free resource community around it, connecting practitioners and thought leaders. More practical solutions would be developed by creating awareness about heightening software security and ushering a collective work for it. With the advent of Agile development methodologies and DevOps, the pace of software development has accelerated dramatically, going from once a year release to releases every month, week or even hourly in some cases. This certainly has made it more challenging to secure that software.So, leaders from the Purple Book Community are also writing a “Purple book of Software Security”. This will be a “how to” handbook for anybody looking to build secure applications and products with insights from top security practitioners. This book looks at software security from the lens of many of its avatars, application security, product security, DevSecOps, and SecDevOps. Following contains the table of contents of this book. Introduction Why Software Security People/Culture/OrganizationProcessTechnologyCompliance, Governance and Risk FrameworkSecuring Software Supply ChainBuilding Business Case for Software Security ProgramCapability Maturity Model, KPIs, and Security Metrics Key Takeaways, Next Steps, and ConclusionThis book looks at case studies and best practices from startups to Fortune 10 corporations. So, no matter the size and maturity of your organization, this book will provide something for you. This book will be released in the third quarter of 2021 and will be offered free of charge to all. You can find out more about it at thepurplebook.club. We invite you to come join us to be part of this community.
