Modern Security Podcast: Jamie Finnigan on How HashiCorp Secures Their Products

https://is1-ssl.mzstatic.com/image/thumb/Podcasts116/v4/f7/56/97/f75697d3-df67-37d6-0326-38a33b971470/mza_12056266361536565593.jpg/600x600bb.jpg

The Modern Security Podcast

Clint Gibler

10 episodes

2 weeks ago

In the Modern Security Podcast, Clint Gibler (Founder of tl;dr sec and Head of Security Research) joins other CISOs and security leaders to talk about upcoming trends for security, career advice for those just getting started, and much more. Follow us at https://semgrep.dev/ and follow clint at https://tldrsec.com/

Technology

RSS

All content for The Modern Security Podcast is the property of Clint Gibler and is served directly from their servers with no modification, redirects, or rehosting. The podcast is not affiliated with or endorsed by Podjoint in any way.

Technology

https://d3t3ozftmdmh3i.cloudfront.net/staging/podcast_uploaded_nologo/38867527/38867527-1693618289150-7da5377e8f601.jpg

Modern Security Podcast: Jamie Finnigan on How HashiCorp Secures Their Products

The Modern Security Podcast

1 hour 3 minutes 53 seconds

1 year ago

Modern Security Podcast: Jamie Finnigan on How HashiCorp Secures Their Products

In this episode of the Modern Security Podcast we were joined by Jamie Finnigan, Director of Product Security @HashiCorp , and discussed how the security team prioritizes their time, rolling out developer-friendly security tooling, and much more. 2:08 - Intro to Jamie Finnigan 7:41 - The Product Security Org at HashiCorp 11:27 - How do you determine what to focus on? 16:40 - What does success look like for security at HashiCorp 20:50 - The difference between outputs and outcomes 25:52 - The Creation of Bandit 30:37 - HashiCorp Product Security Model 34:14 - Developer-Friendly Security Tooling 39:56 - Tool selection 46:09 - Eliminating SSRF via Secure Defaults 53:22 - Overview of the Secure Defaults Approach 59:16 - Empathy in Security