On this episode of Masters of Data, Adam sits down with Zoe Hawkins and David Girvin to talk AppSec programs that don’t suck. David’s hot take from his 1Password and Red Canary days? AppSec is a people problem, not a tooling problem—stop being the person devs dodge at standup. We cover the essentials: build relationships first, threat model based on actual business risk (not your anxiety), and ditch the “shift left” obsession with scanning everything. Instead, start with offensive testing that finds vulnerabilities attackers can actually exploit.
All Podcasts
Ep 23: How to bootstrap your AppSec program
Adam White
Sr. Director, Technical Marketing
David Girvin
Lead Technical Advocate
Zoe Hawkins
Director, Content Marketing
Speakers
