Tim Brown - SolarWinds CISO and the Elegance of Code
04/20/23 • 50 min
Tim Brown is the CISO of SolarWinds, responsible for overseeing the company's internal IT security, product security, and security strategy. With over 25 years of experience and 18 issued patents on security-related topics, Tim is a trusted advisor for business executives, AppSec leaders, and the White House.
Tim joins to discuss the concept of elegant code and the impact elegant coding can have on an organization's security.
- Welcome to The Security Champions Podcast [0:10]
- Takeaways from the SolarWinds Breach [7:00]
- The Structure of Elegant Code [15:45]
- When to Implement Elegant Code [21:40]
- Prioritization of Mitigating Vulnerabilities [34:00]
- Unifying Security and Development [44:15]
Episode Resources:
- Mastering Elegant Code Part 1: Advantages and Security Benefits of Elegant Code
- Mastering Elegant Code Part 2: 6 Techniques for Writing Elegant Code
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Podcast sponsored by Security Journey, Secure Coding Training for Developers and Everyone in the SDLC. Learn more at securityjourney.com.
FOLLOW US to stay up-to-date with new content!
- LinkedIn (linkedin.com/company/security-journey)
- Instagram (https://www.instagram.com/securityjourney)
- YouTube (youtube.com/c/securityjourney)
- Twitter (twitter.com/SecurityJourney)
- Online (securityjourney.com)
- CONTACT: [email protected]
Tim Brown is the CISO of SolarWinds, responsible for overseeing the company's internal IT security, product security, and security strategy. With over 25 years of experience and 18 issued patents on security-related topics, Tim is a trusted advisor for business executives, AppSec leaders, and the White House.
Tim joins to discuss the concept of elegant code and the impact elegant coding can have on an organization's security.
- Welcome to The Security Champions Podcast [0:10]
- Takeaways from the SolarWinds Breach [7:00]
- The Structure of Elegant Code [15:45]
- When to Implement Elegant Code [21:40]
- Prioritization of Mitigating Vulnerabilities [34:00]
- Unifying Security and Development [44:15]
Episode Resources:
- Mastering Elegant Code Part 1: Advantages and Security Benefits of Elegant Code
- Mastering Elegant Code Part 2: 6 Techniques for Writing Elegant Code
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Podcast sponsored by Security Journey, Secure Coding Training for Developers and Everyone in the SDLC. Learn more at securityjourney.com.
FOLLOW US to stay up-to-date with new content!
- LinkedIn (linkedin.com/company/security-journey)
- Instagram (https://www.instagram.com/securityjourney)
- YouTube (youtube.com/c/securityjourney)
- Twitter (twitter.com/SecurityJourney)
- Online (securityjourney.com)
- CONTACT: [email protected]
Previous Episode
Chris Romeo - The Security Champions Framework
Chris Romeo, AppSec expert and CEO of Kerr Ventures, joins to talk about The Security Champions Framework and the biggest mistake organizations make with security champion programs.
- Welcome to The Security Champions Podcast [0:10]
- Starting Cisco’s Security Champions Program [10:00]
- The Year of Security Champions [13:00]
- The Security Champions Framework [15:23]
- Biggest Security Champion Program Mistakes [26:00]
- Growing a Program from Day 1 [35:00]
Episode Resources:
- The Security Champions Framework (hosted on GitHub)
- Using the Security Champions Framework to Optimize Your Security Program
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Podcast sponsored by Security Journey, Secure Coding Training for Developers and Everyone in the SDLC. Learn more at securityjourney.com.
FOLLOW US to stay up-to-date with new content!
- LinkedIn (linkedin.com/company/security-journey)
- Instagram (https://www.instagram.com/securityjourney)
- YouTube (youtube.com/c/securityjourney)
- Twitter (twitter.com/SecurityJourney)
- Online (securityjourney.com)
- CONTACT: [email protected]
Next Episode
Ken Buckler - The Human Side of Secure Coding
Kenneth Buckler, CASP, is a research analyst of information security/risk and compliance management for Enterprise Management Associates, a technology industry analyst and consulting firm. With over 15 years of experience, Ken is an author on cybersecurity topics and has spent several years working for federal contractors in cybersecurity practitioner roles.
Ken joins to discuss the human side of secure coding, the important elements of secure coding practices, and how to teach a security mindset.
· Welcome to The Security Champions Podcast [0:10]
· Secure Coding Training Research [8:45]
· The Struggles with Shifting Left [13:10]
· Communicating the Importance of Secure Coding [17:20]
· Security Champions Role in Secure Coding [25:30]
Episode Resources:
· Secure Coding Practices – Growing Success or Zero-Day Epidemic? January 2023 EMA Research Report
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Podcast sponsored by Security Journey, Secure Coding Training for Developers and Everyone in the SDLC. Learn more at securityjourney.com.
FOLLOW US to stay up-to-date with new content!
- LinkedIn (linkedin.com/company/security-journey)
- Instagram (https://www.instagram.com/securityjourney)
- YouTube (youtube.com/c/securityjourney)
- Twitter (twitter.com/SecurityJourney)
- Online (securityjourney.com)
- CONTACT: [email protected]
If you like this episode you’ll love
Episode Comments
Generate a badge
Get a badge for your website that links back to this episode
<a href="https://goodpods.com/podcasts/the-security-champions-podcast-306873/tim-brown-solarwinds-ciso-and-the-elegance-of-code-44062271"> <img src="https://storage.googleapis.com/goodpods-images-bucket/badges/generic-badge-1.svg" alt="listen to tim brown - solarwinds ciso and the elegance of code on goodpods" style="width: 225px" /> </a>
Copy