In this episode of the “DevSec for Scale” podcast, Jeremy Hess interviews Nick DiPasquale, a security professional with a background in system administration, systems engineering, and DevOps. Nick emphasizes that people remain the most common attack vector in security breaches, a challenge that persists despite technological advancements. He highlights the need for both technical and […]
In this episode of the “DevSec for Scale” podcast, Jeremy Hess interviews Yuval Yogev, Chief Architect at Sygnia, a cybersecurity company specializing in incident response and threat hunting. Yuval highlights the different types of authentication and authorization use cases that growing startups often encounter, including user logins, machine-to-machine communication, and external API interactions. He emphasizes […]
In this episode of the “DevSec for Scale” podcast, host Jeremy Hess welcomes Liran Tal, the Director of Developer Advocacy at Snyk. Liran and Jeremy dive into the topic of open source security, emphasizing the increasing threat from attackers who exploit open source ecosystems like PyPI, RubyGems, and npm. Liran explains how easy it is […]
In this episode of the “DevSec for Scale” podcast, host Jeremy Hess welcomes Ashish Rajan, the CISO at PageUp People and host of the Cloud Security Podcast. Ashish discusses his journey in cyber advocacy and highlights the parallels between the rise of DevOps and the current evolution of cyber advocacy. He emphasizes the need for […]
In this episode of the “DevSec for Scale” podcast, host Jeremy Hess welcomes Dan Moore, Head of Developer Relations at FusionAuth, to discuss the intricacies of authentication (auth) and its evolution in modern computing. Dan breaks down the three main components of auth: authentication (identifying who you are), authorization (determining what you can do), and […]
In this episode of the “DevSec for Scale” podcast, host Jeremy Hess is joined by Conor Mancone, Principal Application Security Engineer at Cimpress. Conor discusses the crucial topic of credential rotation and the challenges associated with managing access credentials within application environments. He highlights a common dilemma teams face: how to change passwords without disrupting […]
In this episode of the “DevSec for Scale” podcast, host Jeremy Hess welcomes Zan Markan, Senior Developer Advocate at CircleCI. Zan provides a deep dive into best practices for CI/CD pipeline security, particularly for early-stage companies. He underscores the importance of automating pipelines from the outset, enabling smaller teams to compete effectively with larger organizations […]
In this episode of the “DevSec for Scale” podcast, host Jeremy Hess welcomes Dan Yelovitch, Chief DevOps Architect at develeap, a consulting company specializing in DevOps transformation. Dan discusses the critical importance of integrating security measures from the very beginning of a company’s growth. He emphasizes that as companies expand, their systems become more complex, […]
In this episode of the “DevSec for Scale” podcast, host Jeremy Hess welcomes Harshit Chitalia, CTO and co-founder of Tromzo, a startup focused on integrating security into the daily practices of developers. Harshit discusses the importance of embedding security throughout the development process to ensure both speed and safety in product releases. He emphasizes that […]
In this episode of the “DevSec for Scale” podcast, host Jeremy Hess welcomes Rotem Raphael, Director of Engineering at ARMO, a Kubernetes security company based in Tel Aviv. Rotem discusses the findings from ARMO’s research on scanning public Kubernetes clusters for misconfigurations and highlights common issues and their implications. The research revealed that 100% of […]
Are development environments important enough for us to even care about securing? The answer is a resounding yes. In this episode, Guy Flechter, CEO & Co-Founder of Cider Security goes in-depth into why security is not just a requirement for production, but also development environments. And development environment security also has an impact on the […]
Is there a simple way to detect and manage ransomware attacks? In this episode, Greg Edwards, CEO of CryptoStopper introduces us to the evolution and basics of ransomware as well as how to get better at detecting sophisticated attacks, such as file-less ransomware, before they can damage your system. He also gives us insights into […]
Discover how Akeyless simplifies secrets management, reduces sprawl, minimizes risk, and saves time.
Take a self-guided tour of our top features.
See the platform
Learn what Akeyless can do for your team.
Talk to an expert
