Goodpods logo
Goodpods

Log in

goodpods headphones icon

To access all our features

Open the Goodpods app
Close icon
headphones
The Security Champions Podcast

The Security Champions Podcast

Mike Burch

Automation, Generative AI, Shift Left - the world of application security is evolving fast! Security Journey introduces the newest go-to AppSec resource, The Security Champions Podcast, hosted by Director of Application Security Michael Burch.Gain exclusive insight from software development leaders and security experts – from recounting their security champion journey to diving into the latest headlines in the AppSec world. Learn how to build, maintain and scale a successful software security program through expert guidance and real-world experiences.New episodes are available every other week, along with more application security content at securityjourney.com. Always remember: Security is a Journey, not a Destination.~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~FOLLOW US to stay up-to-date!Twitter (twitter.com/SecurityJourney)LinkedIn (linkedin.com/company/security-journey)YouTube (youtube.com/c/securityjourney)Online (wwwsecurityjourney.com)CONTACT: [email protected]
Share icon

All episodes

Best episodes

Seasons

Top 10 The Security Champions Podcast Episodes

Goodpods has curated a list of the 10 best The Security Champions Podcast episodes, ranked by the number of listens and likes each episode have garnered from our listeners. If you are listening to The Security Champions Podcast for the first time, there's no better place to start than with one of these standout episodes. If you are a fan of the show, vote for your favorite The Security Champions Podcast episode by adding your comments to the episode page.

The Security Champions Podcast - Ken Buckler - The Human Side of Secure Coding

Ken Buckler - The Human Side of Secure Coding

The Security Champions Podcast

play

05/18/23 • 30 min

Kenneth Buckler, CASP, is a research analyst of information security/risk and compliance management for Enterprise Management Associates, a technology industry analyst and consulting firm. With over 15 years of experience, Ken is an author on cybersecurity topics and has spent several years working for federal contractors in cybersecurity practitioner roles.

Ken joins to discuss the human side of secure coding, the important elements of secure coding practices, and how to teach a security mindset.

· Welcome to The Security Champions Podcast [0:10]

· Secure Coding Training Research [8:45]

· The Struggles with Shifting Left [13:10]

· Communicating the Importance of Secure Coding [17:20]

· Security Champions Role in Secure Coding [25:30]

Episode Resources:

· Secure Coding Practices – Growing Success or Zero-Day Epidemic? January 2023 EMA Research Report

~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~

Podcast sponsored by Security Journey, Secure Coding Training for Developers and Everyone in the SDLC. Learn more at securityjourney.com.

FOLLOW US to stay up-to-date with new content!

bookmark
plus icon
share episode
The Security Champions Podcast - Tim Brown - SolarWinds CISO and the Elegance of Code

Tim Brown - SolarWinds CISO and the Elegance of Code

The Security Champions Podcast

play

04/20/23 • 50 min

Tim Brown is the CISO of SolarWinds, responsible for overseeing the company's internal IT security, product security, and security strategy. With over 25 years of experience and 18 issued patents on security-related topics, Tim is a trusted advisor for business executives, AppSec leaders, and the White House.

Tim joins to discuss the concept of elegant code and the impact elegant coding can have on an organization's security.

  • Welcome to The Security Champions Podcast [0:10]
  • Takeaways from the SolarWinds Breach [7:00]
  • The Structure of Elegant Code [15:45]
  • When to Implement Elegant Code [21:40]
  • Prioritization of Mitigating Vulnerabilities [34:00]
  • Unifying Security and Development [44:15]

Episode Resources:

~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~

Podcast sponsored by Security Journey, Secure Coding Training for Developers and Everyone in the SDLC. Learn more at securityjourney.com.

FOLLOW US to stay up-to-date with new content!

bookmark
plus icon
share episode
The Security Champions Podcast - Chris Romeo - The Security Champions Framework

Chris Romeo - The Security Champions Framework

The Security Champions Podcast

play

03/30/23 • 44 min

Chris Romeo, AppSec expert and CEO of Kerr Ventures, joins to talk about The Security Champions Framework and the biggest mistake organizations make with security champion programs.

  • Welcome to The Security Champions Podcast [0:10]
  • Starting Cisco’s Security Champions Program [10:00]
  • The Year of Security Champions [13:00]
  • The Security Champions Framework [15:23]
  • Biggest Security Champion Program Mistakes [26:00]
  • Growing a Program from Day 1 [35:00]

Episode Resources:

~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~

Podcast sponsored by Security Journey, Secure Coding Training for Developers and Everyone in the SDLC. Learn more at securityjourney.com.

FOLLOW US to stay up-to-date with new content!

bookmark
plus icon
share episode
The Security Champions Podcast - The Security Champions Podcast - COMING SOON

The Security Champions Podcast - COMING SOON

The Security Champions Podcast

play

03/15/23 • 0 min

Tune into our NEW show, The Security Champions Podcast, to hear conversations between appsec expert Mike Burch and leading software development and security professionals.

Episodes will explore the latest news, trends, best practices, and technologies. The experts will share valuable insight and practical advice on building, maintaining, and scaling successful software security programs based on real-world guidance and experience.

Stay tuned for our first episode with Chris Romeo, founder of Security Journey and leading voice in application security, threat modeling, and security champions.

Remember: Security is a Journey, not a Destination.

~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~

Podcast sponsored by Security Journey, Secure Coding Training for Developers and Everyone in the SDLC. Learn more at securityjourney.com.

FOLLOW US to stay up-to-date with new content!

bookmark
plus icon
share episode
The Security Champions Podcast - Ahmad Sadeddin - Rewards and Risks of Using AI in Product Security

Ahmad Sadeddin - Rewards and Risks of Using AI in Product Security

The Security Champions Podcast

play

02/20/24 • 43 min

Ahmad is an entrepreneur with three successful ventures who is currently the CEO at Corgea. He led various products at Coupa after they acquired his previous venture, Riskopy. He built his current company due to frustration with the manual and inefficient processes companies take around security.
Ahmad joined the podcast to discuss the use of AI in product security, offering insight into its positive and negative implications.

~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~

Podcast sponsored by Security Journey, Secure Coding Training for Developers and Everyone in the SDLC. Learn more at securityjourney.com.

FOLLOW US to stay up-to-date with new content!

bookmark
plus icon
share episode
The Security Champions Podcast - The Year in Review - 2023 Highlights

The Year in Review - 2023 Highlights

The Security Champions Podcast

play

12/07/23 • 63 min

Join Micheal Burch, host of The Security Champions Podcast, as he reminisces about the standout moments from this season's conversations, from unraveling the intricacies of elegant code to exploring the human side of coding.

  • Welcome to The Security Champions Podcast [0:15]
  • Clip 1 - What Can We Do For Our Security Champions? [18:30]
  • Clip 2 - Elegant Code Leads to Better Security [26:25]
  • Clip 3 - The Human Side of Security [31:22]
  • Clip 4 - Gamification of Champions Programs [33:53]
  • Clip 5 - Don't be 'The House of No' [39:25]
  • Clip 6 - Baking Security into the Company Culture [46:09]
  • Clip 7 - How to Keep Your Security Champions [51:35]
  • Clip 8 - Bridging the Gap Between Security and Development [55:28]

~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~

Podcast sponsored by Security Journey, Secure Coding Training for Developers and Everyone in the SDLC. Learn more at securityjourney.com.

FOLLOW US to stay up-to-date with new content!

bookmark
plus icon
share episode
The Security Champions Podcast - Dustin Lehr - Fivetran Security Champions

Dustin Lehr - Fivetran Security Champions

The Security Champions Podcast

play

06/29/23 • 52 min

Dustin Lehr is the Sr. Director of Platform Security at Fivetran & the Co-founder and Chief Solutions Officer at Katilyst Security. Before shifting into cybersecurity leadership, Dustin spent 13 years as a software engineer and application architect in various industries.

He joins us to discuss The Security Champion Program Success Guide and the inner workings of Fivetran's security champion program.

  • Welcome to The Security Champions Podcast [0:35]
  • The Security Champion Program Success Guide [12:38]
  • Gamification for Learning [22:01]
  • Insights from Fivetran's Program [33:10]
  • What is a Security Champion? [40:30]
  • Proving the ROI of Security Champions [46:11]
  • Bridging the Security and Development Divide [50:02]

Episode Resources:

~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~

Podcast sponsored by Security Journey, Secure Coding Training for Developers and Everyone in the SDLC. Learn more at securityjourney.com.

FOLLOW US to stay up-to-date with new content!

bookmark
plus icon
share episode
The Security Champions Podcast - Irfaan Santoe - Security Champion Program Guide

Irfaan Santoe - Security Champion Program Guide

The Security Champions Podcast

play

10/14/24 • 47 min

Irfaan Santoe is the leader of the OWASP Netherlands chapter and the creator of the OWASP Security Champions Guide. He is passionate about scaling security in AppDev, DevOps, and Cloud and has helped numerous multinationals solve information security challenges.

In this episode of The Security Champions Podcast, Irfaan walks through the Security Champion Program Guide. He shares the motivation behind the project, what makes this guide different, how security champions can affect real change, and more!

[0:05] Welcome to The Security Champions Podcast
[14:13] The Motivation Behind the OWASP Security Champions Guide
[18:02] How To Get Buy-In for a New OWASP Project
[21:28] Why the Champions Guide is Different
[28:26] How To Make Everyone a Security Champion
[32:49] Engineers are Part of the Security Team
[37:52] Facilitating Behavioral Change
[41:02] How Security Champions Bring the Community Together
Episode Resources:

  • OWASP Security Champions Guide - https://owasp.org/www-project-security-champions-guidebook/

~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~

Podcast sponsored by Security Journey, Secure Coding Training for Developers and Everyone in the SDLC. Learn more at securityjourney.com.

FOLLOW US to stay up-to-date with new content!

bookmark
plus icon
share episode
The Security Champions Podcast - Phillip Maddux - Deception Technology

Phillip Maddux - Deception Technology

The Security Champions Podcast

play

12/09/24 • 42 min

Phillip Maddux is the founder of Deception Logic and a Staff Engineer on the Detection Engineering and Response Automation team at Compass. With close to two decades of experience in information and application security, Phillip's passion for honeypots led him to develop HoneyDB.io and his company, Deception Logic.
In this episode of The Security Champions Podcast, Phillip explained the world of deception technology and its evolving role in cybersecurity. From high-fidelity honeypots to detecting insider threats, the conversation dives into how these tools can mislead attackers while protecting critical systems.
Podcast Chapters:
0:05 Welcome to the Security Champions Podcast
10:30 What is Deception Technology?
15:12 High-Fidelity Honeypots
21:07 Detecting Insider Threats
28:13 The Ethics of 'Poison'
32:30 AI's Space in Deception Technology
36:15 Deception in 5 Years

~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~

Podcast sponsored by Security Journey, Secure Coding Training for Developers and Everyone in the SDLC. Learn more at securityjourney.com.

FOLLOW US to stay up-to-date with new content!

bookmark
plus icon
share episode
The Security Champions Podcast - Adam Bruehl - Secure Code in Medicine

Adam Bruehl - Secure Code in Medicine

The Security Champions Podcast

play

02/20/25 • 62 min

Adam Bruehl, a Senior DevOps Engineer at Security Journey, has a unique blend of expertise ranging from biology to technology.

In this episode, Adam dives into the intersection of cybersecurity and medical devices, pharmaceutical research, and patient data. Hear first-hand accounts of security incidents, ethical dilemmas, and the constant battle to balance cutting-edge technology with outdated protocols in an industry where the stakes are life and death.

~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~

Podcast sponsored by Security Journey, Secure Coding Training for Developers and Everyone in the SDLC. Learn more at securityjourney.com.

FOLLOW US to stay up-to-date with new content!

bookmark
plus icon
share episode

Show more best episodes

Toggle view more icon

FAQ

How many episodes does The Security Champions Podcast have?

The Security Champions Podcast currently has 18 episodes available.

What topics does The Security Champions Podcast cover?

The podcast is about News, Security, Infosec, Tech News, Software Development, Podcasts and Technology.

What is the most popular episode on The Security Champions Podcast?

The episode title 'The Year in Review - 2023 Highlights' is the most popular.

What is the average episode length on The Security Champions Podcast?

The average episode length on The Security Champions Podcast is 48 minutes.

How often are episodes of The Security Champions Podcast released?

Episodes of The Security Champions Podcast are typically released every 35 days.

When was the first episode of The Security Champions Podcast?

The first episode of The Security Champions Podcast was released on Mar 15, 2023.

Show more FAQ

Toggle view more icon

Comments