In this episode of the “DevSec for Scale” podcast, Jeremy Hess interviews Eran Bibi, co-founder and Chief Product Officer at Firefly, about “policy as code” and its role in enhancing security for growing companies. They discuss how policy as code allows developers to define and enforce policies using code, integrating these policies within the CI/CD […]
In this episode of the “DevSec for Scale” podcast, Jeremy Hess interviews Josh Grossman, CTO at Bounce Security and an OWASP Israel board member, about integrating security into development processes. They discuss the limitations of traditional methods like penetration testing and the necessity of embedding security within normal development workflows. Josh emphasizes that continuously breaking […]
In this episode of the “DevSec for Scale” podcast, Jeremy Hess interviews Yoav Turgeman Levi, a Senior DevOps Engineer at Harmonya. Yoav shares his insights on the challenges of securing developer access in modern tech environments, emphasizing the balance needed between granting necessary permissions and maintaining security. Developers often seek high-level access to avoid workflow […]
In this episode of the “DevSec for Scale” podcast, Jeremy Hess interviews Anton Weiss, a software delivery futurist and founder of Otomato Software. Anton shares insights on the importance of securing developer access and documenting build procedures to enhance security. He emphasizes that collaboration and proper documentation are essential in identifying and mitigating security risks […]
In this episode of the “DevSec for Scale” podcast, Jeremy Hess interviews Hila Fish, a senior DevOps engineer at Wix. Hila emphasizes the importance of cultivating a security mindset in DevOps from the start. She believes that consistently practicing security measures as part of daily routines can embed this mindset into regular workflows, making security […]
In this episode of the “DevSec for Scale” podcast, Jeremy Hess interviews Nick DiPasquale, a security professional with a background in system administration, systems engineering, and DevOps. Nick emphasizes that people remain the most common attack vector in security breaches, a challenge that persists despite technological advancements. He highlights the need for both technical and […]
In this episode of the “DevSec for Scale” podcast, Jeremy Hess interviews Yuval Yogev, Chief Architect at Sygnia, a cybersecurity company specializing in incident response and threat hunting. Yuval highlights the different types of authentication and authorization use cases that growing startups often encounter, including user logins, machine-to-machine communication, and external API interactions. He emphasizes […]
In this episode of the “DevSec for Scale” podcast, host Jeremy Hess welcomes Liran Tal, the Director of Developer Advocacy at Snyk. Liran and Jeremy dive into the topic of open source security, emphasizing the increasing threat from attackers who exploit open source ecosystems like PyPI, RubyGems, and npm. Liran explains how easy it is […]
In this episode of the “DevSec for Scale” podcast, host Jeremy Hess welcomes Ashish Rajan, the CISO at PageUp People and host of the Cloud Security Podcast. Ashish discusses his journey in cyber advocacy and highlights the parallels between the rise of DevOps and the current evolution of cyber advocacy. He emphasizes the need for […]
In this episode of the “DevSec for Scale” podcast, host Jeremy Hess welcomes Dan Moore, Head of Developer Relations at FusionAuth, to discuss the intricacies of authentication (auth) and its evolution in modern computing. Dan breaks down the three main components of auth: authentication (identifying who you are), authorization (determining what you can do), and […]
In this episode of the “DevSec for Scale” podcast, host Jeremy Hess is joined by Conor Mancone, Principal Application Security Engineer at Cimpress. Conor discusses the crucial topic of credential rotation and the challenges associated with managing access credentials within application environments. He highlights a common dilemma teams face: how to change passwords without disrupting […]
In this episode of the “DevSec for Scale” podcast, host Jeremy Hess welcomes Zan Markan, Senior Developer Advocate at CircleCI. Zan provides a deep dive into best practices for CI/CD pipeline security, particularly for early-stage companies. He underscores the importance of automating pipelines from the outset, enabling smaller teams to compete effectively with larger organizations […]
Discover how Akeyless simplifies secrets management, reduces sprawl, minimizes risk, and saves time.
Take a self-guided tour of our top features.
See the platform
Learn what Akeyless can do for your team.
Talk to an expert
