Security often feels like a roadblock to developers, but what if it could be seamlessly integrated into the development process? As software delivery becomes increasingly automated and self-service, the traditional approach to security needs a major overhaul.
Danny Allan, CTO at Snyk, shares practical insights on transforming security from a bottleneck into an enabler of developer productivity. Drawing from his extensive experience at IBM, VMware, and Veeam, Allan discusses how security teams can shift left effectively without creating friction.
Key topics covered:
- Building successful security champions programs that cultivate curiosity rather than relying solely on senior developers
- Practical approaches to embedding security controls into development pipelines, from IDE integration to PR checks
- Strategies for measuring security team success beyond just vulnerability counts
- The role of pre-hardened containers and infrastructure-as-code scanning in platform security
- How AI is transforming both code generation and security tooling, including Snyk's approach to vulnerability detection
Love the show? Subscribe, rate, review, & share! http://platformengineeringpod.com/
Popular Podcasts
Dateline NBC
Current and classic episodes, featuring compelling true-crime mysteries, powerful documentaries and in-depth investigations. Follow now to get the latest episodes of Dateline NBC completely free, or subscribe to Dateline Premium for ad-free listening and exclusive bonus content: DatelinePremium.com
24/7 News: The Latest
The latest news in 4 minutes updated every hour, every day.
Therapy Gecko
An unlicensed lizard psychologist travels the universe talking to strangers about absolutely nothing. TO CALL THE GECKO: follow me on https://www.twitch.tv/lyleforever to get a notification for when I am taking calls. I am usually live Mondays, Wednesdays, and Fridays but lately a lot of other times too. I am a gecko.