S3Ep12 - The World of OWASP with Sam Stepanyan
12/04/23 • 47 min
DSO Overflow S3EP12
The world of OWASP
with
Sam Stepanyan
In this month's episode, Steve and Glenn speak with Sam Stepanyan who was recently voted onto the OWASP board. Sam tells us about his involvement with OWASP, the origins of OWASP, and what the future hold for OWASP.
Sam is an OWASP London Chapter Leader, elected OWASP board member and an Independent Application Security Consultant with over 20 years of experience in the IT industry with a background in software engineering and web application development. Sam has worked for various financial services institutions in the City of London specialising in Application Security consulting, Secure Software Development Lifecycle (SDLC), developer training, source code reviews and vulnerability management. Sam holds a Master’s degree in Software Engineering and a CISSP certification.
Resources mentioned in this podcast:
- Sam's LinkedIn Profile
- Sam's X (formerly Twitter)
- OWASP Projects
- OWASP Application Security Verification Standard (ASVS)
- OWASP Mobile Application Security
- OWASP Low-Code/No-Code Top 10
- OWASP AI Exchange
- OWASP Top 10 for LLMs
- OWASP CheatSheet series
- OWASP Membership
DSO Overflow is a DevSecOps London Gathering production. Find the audio version on all good podcast sources like Spotify, Apple Podcast and Buzzsprout.
This podcast is brought to you by our sponsors: Prisma Cloud, Apiiro, and Sysdig
Your Hosts
Steve Giguere linkedin.com/in/stevegiguere
Glenn Wilson linkedin.com/in/glennwilson
Jessica Cregg linkedin.com/in/jessicacregg
DevSecOps - London Gathering
Keep in touch with our events associated with this podcast via our website.
For more about DevSecOps - London Gathering check out https://dsolg.com
DSO Overflow S3EP12
The world of OWASP
with
Sam Stepanyan
In this month's episode, Steve and Glenn speak with Sam Stepanyan who was recently voted onto the OWASP board. Sam tells us about his involvement with OWASP, the origins of OWASP, and what the future hold for OWASP.
Sam is an OWASP London Chapter Leader, elected OWASP board member and an Independent Application Security Consultant with over 20 years of experience in the IT industry with a background in software engineering and web application development. Sam has worked for various financial services institutions in the City of London specialising in Application Security consulting, Secure Software Development Lifecycle (SDLC), developer training, source code reviews and vulnerability management. Sam holds a Master’s degree in Software Engineering and a CISSP certification.
Resources mentioned in this podcast:
- Sam's LinkedIn Profile
- Sam's X (formerly Twitter)
- OWASP Projects
- OWASP Application Security Verification Standard (ASVS)
- OWASP Mobile Application Security
- OWASP Low-Code/No-Code Top 10
- OWASP AI Exchange
- OWASP Top 10 for LLMs
- OWASP CheatSheet series
- OWASP Membership
DSO Overflow is a DevSecOps London Gathering production. Find the audio version on all good podcast sources like Spotify, Apple Podcast and Buzzsprout.
This podcast is brought to you by our sponsors: Prisma Cloud, Apiiro, and Sysdig
Your Hosts
Steve Giguere linkedin.com/in/stevegiguere
Glenn Wilson linkedin.com/in/glennwilson
Jessica Cregg linkedin.com/in/jessicacregg
DevSecOps - London Gathering
Keep in touch with our events associated with this podcast via our website.
For more about DevSecOps - London Gathering check out https://dsolg.com
Previous Episode
S3Ep11 - Storing secrets with Mackenzie Jackson
DSO Overflow S3EP11
Storing secrets
with
Mackenze Jackson
In this month's episode, Steve, Jess and Glenn speak with Mackenzie Jackson to talk about managing secrets and digital authentication credentials in distributed architectures. In particular, Mackenzie digs into the concepts of secrets sprawl, and how we can keep secrets safe.
Mackenzie is currently the developer advocate at GitGuardian, a developer-first cybersecurity company based in Paris that is focused on helping keep secrets and credentials out of source code.
Mackenzie is passionate about technology and building a community of engaged developers to shape future tools and systems. As the co-founder and former CTO of startup Conpago, Mackenze understands the importance of solid operational and security foundations in any tech team and the importance of in-depth security processes and policies.
Resources mentioned in this podcast:
DSO Overflow is a DevSecOps London Gathering production. Find the audio version on all good podcast sources like Spotify, Apple Podcast and Buzzsprout.
This podcast is brought to you by our sponsors: Prisma Cloud, Apiiro, and Sysdig
Your Hosts
Steve Giguere linkedin.com/in/stevegiguere
Glenn Wilson linkedin.com/in/glennwilson
Jessica Cregg linkedin.com/in/jessicacregg
DevSecOps - London Gathering
Keep in touch with our events associated with this podcast via our website.
For more about DevSecOps - London Gathering check out https://dsolg.com
Next Episode
S4Ep1 - Contract First Development with Holly Cummins
DSO Overflow S4EP1
Contract First Development
with
Holly Cummins
In this month's episode, Steve, Jess and Glenn speak with Holly Cummins to talk about how to API contracts and Contract First Development.
Holly Cummins is a Senior Principal Software Engineer on the Red Hat Quarkus team and a Java Champion. Over her career, Holly has been a full-stack javascript developer, a WebSphere Liberty build architect, a client-facing consultant, a JVM performance engineer, and an innovation leader. Holly has used the power of cloud to understand climate risks, count fish, help a blind athlete run ultra-marathons in the desert solo, and invent stories (although not at all the same time). She gets worked up about sustainability, technical empathy, extreme programming, the importance of proper testing, and automating all the things. You can find her at http://hollycummins.com, or follow her on socials at @holly_cummins(@hachyderm.io)
Resources mentioned in this podcast:
- Pact
- Microcks
- More on Quarkus' Pact support (and contract testing in general)
- A nice introduction to ‘contract-first’ app development, with a deeper discussion of an ‘ideal’ lifecycle
- Sam Newman's book (Building Microservices)
Holly's coordinates:
- Mastodon: https://hachyderm.io/@holly_cummins
- LinkedIn: https://www.linkedin.com/in/holly-k-cummins/
- X/Twitter: https://twitter.com/holly_cummins
- Holly’s site: https:// hollycummins.com
DSO Overflow is a DevSecOps London Gathering production. Find the audio version on all good podcast sources like Spotify, Apple Podcast and Buzzsprout.
This podcast is brought to you by our sponsors: Prisma Cloud, Apiiro, and Sysdig
Your Hosts
Steve Giguere linkedin.com/in/stevegiguere
Glenn Wilson linkedin.com/in/glennwilson
Jessica Cregg linkedin.com/in/jessicacregg
DevSecOps - London Gathering
Keep in touch with our events associated with this podcast via our website.
For more about DevSecOps - London Gathering check out https://dsolg.com
If you like this episode you’ll love
Episode Comments
Generate a badge
Get a badge for your website that links back to this episode
<a href="https://goodpods.com/podcasts/dso-overflow-241759/s3ep12-the-world-of-owasp-with-sam-stepanyan-38609065"> <img src="https://storage.googleapis.com/goodpods-images-bucket/badges/generic-badge-1.svg" alt="listen to s3ep12 - the world of owasp with sam stepanyan on goodpods" style="width: 225px" /> </a>
Copy