DSO Overflow

In this episode, I speak to Emily Young who has embarked on the Certified DevSeOps Professional online course and the gruelling twelve hour exam.
Emily's details:
https://www.linkedin.com/in/emily-young-a3a77255/
@Ra1nb0wAn4lyst

### DevSecOps - London Gathering ###
https://www.meetup.com/DevSecOps-London-Gathering/
Also follow us on Twitter: @DevSecOps_LG

DSO Overflow S3EP12
The world of OWASP
with
Sam Stepanyan
In this month's episode, Steve and Glenn speak with Sam Stepanyan who was recently voted onto the OWASP board. Sam tells us about his involvement with OWASP, the origins of OWASP, and what the future hold for OWASP.
Sam is an OWASP London Chapter Leader, elected OWASP board member and an Independent Application Security Consultant with over 20 years of experience in the IT industry with a background in software engineering and web application development. Sam has worked for various financial services institutions in the City of London specialising in Application Security consulting, Secure Software Development Lifecycle (SDLC), developer training, source code reviews and vulnerability management. Sam holds a Master’s degree in Software Engineering and a CISSP certification.
Resources mentioned in this podcast:

• Sam's LinkedIn Profile
• Sam's X (formerly Twitter)
• OWASP Projects
• OWASP Application Security Verification Standard (ASVS)
• OWASP Mobile Application Security
• OWASP Low-Code/No-Code Top 10
• OWASP AI Exchange
• OWASP Top 10 for LLMs
• OWASP CheatSheet series
• OWASP Membership

DSO Overflow is a DevSecOps London Gathering production. Find the audio version on all good podcast sources like Spotify, Apple Podcast and Buzzsprout.
This podcast is brought to you by our sponsors: Prisma Cloud, Apiiro, and Sysdig
Your Hosts
Steve Giguere linkedin.com/in/stevegiguere
Glenn Wilson linkedin.com/in/glennwilson
Jessica Cregg linkedin.com/in/jessicacregg
DevSecOps - London Gathering
Keep in touch with our events associated with this podcast via our website.
For more about DevSecOps - London Gathering check out https://dsolg.com

DSO Overflow S4EP8
Cloud Native and Kubernetes
with
Steve Wade and Michael Foster
In this month's episode, Steve met with Steve Wade and Michael Foster to talk about the Cloud Native Club and new and future developments in Kubernetes.
Steve Wade founded The Cloud Native Club, a global community for cloud-native enthusiasts. He is also a maintainer of the Flux Terraform Provider. As an experienced conference speaker, independent cloud-native consultant, and trainer, Steve shares his expertise worldwide. He has held platform leadership roles across various industries, including real estate, gaming, fintech, and the UK Parliament. With a BSc in Computer Science, Steve is passionate about cloud-native software development and distributed computing.
Michael Foster regards himself as a passionate tech enthusiast and open-source advocate with a multidisciplinary background. Understands the importance of community and being a good communicator. Great problem solver, quick thinker, constant learner, and someone who is process-orientated. Able to conceptualize, coordinate, and implement by paying attention to detail while seeing the big picture. I am continually working to bridge the gap between tech and business.
In this episode, Steve Wade introduces his new community called the Cloud Native Club while Steve Giguere and special guest host Michael Foster (Red Hat) introduces The State of Kubernetes Security report as an anchor to pick Steve Wade’s brain on everything from how we secure cloud native to AI’s influence on Kubernetes now and in the future.
Cloud Native Club:
The Cloud Native Club is a global community I founded in July 2024, dedicated to connecting cloud-native enthusiasts from all walks of life, no matter where they are in the world. Inspired by my journey transitioning from a football career to the tech industry, I quickly realised the immense value of community in fostering growth and success. However, I also saw that many people, especially those in remote areas, lacked access to the supportive networks that can be crucial for learning and development. The Cloud Native Club was created to bridge that gap. It’s a place where anyone—from beginners to seasoned professionals—can come together to learn, share, and grow in the cloud-native space. Through our forum, weekly hangouts, and YouTube series like "My Journey" and "Project Spotlight," we aim to make cutting-edge cloud-native knowledge accessible to everyone while fostering a strong, supportive, and inclusive community.

Resources mentioned in this podcast:

• Steve Wade's LinkedIn profile
• Steve Wade's Twitter profile
• The Cloud Native Club on LinkedIn
• The Cloud Native Club on Twitter
• The Cloud Native Club on YouTube
• Michael Foster's LinkedIn Profile

DSO Overflow is a DevSecOps London Gathering production. Find the audio version on all good podcast sources like Spotify, Apple Podcast and Buzzsprout.
This podcast is brought to you by our sponsors: Prisma Cloud, Tigera and Apiiro
Your Hosts
Steve Giguere linkedin.com/in/stevegiguere
Glenn Wilson linkedin.com/in/glennwilson
Jessica Cregg linkedin.com/in/jessicacregg
Dev

DSO/Overflow S2EP4
Cloud Security at Large
with
Ashish Rajan and Shilpi Bhattacharjee from the Cloud Security Podcast
https://cloudsecuritypodcast.tv/
https://twitter.com/cloudsecpod?lang=en
https://www.youtube.com/c/CloudSecurityPodcast?sub_confirmation=1
Watch on YouTube: https://youtu.be/HV6iJReLoXE
In the episode, Jessica Cregg sits with Ashish and Shilpi and breaks the 4th wall about their mega successful Cloud Security Podcast, what advocacy means, and the state of Cloud Security at large.
DSO/Overflow is a DevSecOps London Gathering production. Find the audio version on all good podcast sources like Spotify, Apple Podcast and Buzzsprout
https://open.spotify.com/show/0XVk0AKg26yLTCMMwkIA7m
This podcast is brought to you by our sponsors: Prisma Cloud and Sysdig
Your Hosts
Steve Giguere: linkedin.com/in/stevegiguere
Glenn Wilson: linkedin.com/in/glennwilson
Jessica Cregg linkedin.com/in/jessicacregg
DevSecOps - London Gathering
Keep in touch with our events associated with this podcast via our website
For more about DevSecOps London Gathering check out
https://dsolg.com

DSO Overflow S3EP5
Security Differently
with
Mario Platt from LastPass
In this episode Glenn Wilson and Steve Giguere sit down with Mario Platt to discuss how the current paradigm of doing security is not working. Taking lessons from how safety is managed within a physically demanding role, Mario examens why compliance is failing and how we need to build a new model based on resilience.
Resources mentioned in this podcast:

• Mario's presentation given at DSO LG in May 2022
• Rasmussen paper Rasmussen, J. (1997). Risk management in a dynamic society: A modelling problem. Safety Science, 27(2-3), 183-213
• Dekker, S. (2015)”Safety Differently - Human Factors for a new era”, Ashgate Publishing
• Decluttering your security management system
• Rasmussen's Systemic Risk Modelling and Cyber Security
• Why our security policies are a business liability and what to do about it

DSO Overflow is a DevSecOps London Gathering production. Find the audio version on all good podcast sources like Spotify, Apple Podcast and Buzzsprout.
This podcast is brought to you by our sponsors: Prisma Cloud and Sysdig
Your Hosts
Steve Giguere linkedin.com/in/stevegiguere
Glenn Wilson linkedin.com/in/glennwilson
Jessica Cregg linkedin.com/in/jessicacregg
DevSecOps - London Gathering
Keep in touch with our events associated with this podcast via our website.
For more about DevSecOps - London Gathering check out https://dsolg.com