Security often feels like a roadblock to developers, but what if it could be seamlessly integrated into the development process? As software delivery becomes increasingly automated and self-service, the traditional approach to security needs a major overhaul.
Danny Allan, CTO at Snyk, shares practical insights on transforming security from a bottleneck into an enabler of developer productivity. Drawing from his extensive experience at IBM, VMware, and Veeam, Allan discusses how security teams can shift left effectively without creating friction.
Key topics covered:
- Building successful security champions programs that cultivate curiosity rather than relying solely on senior developers
- Practical approaches to embedding security controls into development pipelines, from IDE integration to PR checks
- Strategies for measuring security team success beyond just vulnerability counts
- The role of pre-hardened containers and infrastructure-as-code scanning in platform security
- How AI is transforming both code generation and security tooling, including Snyk's approach to vulnerability detection
Love the show? Subscribe, rate, review, & share! http://platformengineeringpod.com/
Popular Podcasts
United States of Kennedy
United States of Kennedy is a podcast about our cultural fascination with the Kennedy dynasty. Every week, hosts Lyra Smith and George Civeris go into one aspect of the Kennedy story.
Stuff You Should Know
If you've ever wanted to know about champagne, satanism, the Stonewall Uprising, chaos theory, LSD, El Nino, true crime and Rosa Parks, then look no further. Josh and Chuck have you covered.
Dateline NBC
Current and classic episodes, featuring compelling true-crime mysteries, powerful documentaries and in-depth investigations. Follow now to get the latest episodes of Dateline NBC completely free, or subscribe to Dateline Premium for ad-free listening and exclusive bonus content: DatelinePremium.com