Podcasts by O
All episodes
Rich Smith on redefining success for security teams and managing security culture from 2017-12-06T11:50
The O’Reilly Security Podcast: The objectives of agile application security and the vital need for organizations to build functional security culture.
In this episode of the...
ListenChristie Terrill on building a high-caliber security program in 90 days from 2017-11-22T13:15
The O’Reilly Security Podcast: Aligning security objectives with business objectives, and how to approach evaluation and development of a security program.
In this episode of the<...
ListenSusan Sons on building security from first principles from 2017-11-08T11:55
The O’Reilly Security Podcast: Recruiting and building future open source maintainers, how speed and security aren’t mutually exclusive, and identifying and defining first principles for sec...
ListenCharles Givre on the impetus for training all security teams in basic data science from 2017-10-25T13:30
The O’Reilly Security Podcast: The growing role of data science in security, data literacy outside the technical realm, and practical applications of machine learning.
In this epi...
ListenAndrea Limbago on the effects of security’s branding problem from 2017-10-12T14:24
The O’Reilly Security Podcast: The multidiscliplinary nature of defense, making security accessible, and how the current perception of security professionals hinders innovation and hiring. Listen
Window Snyder on the indispensable human element in securing your environment from 2017-09-28T15:14
The O’Reilly Security Podcast: Why tools aren’t always the answer to security problems and the oft overlooked impact of user frustration and fatigue.
In this episode of the Listen
Chris Wysopal on a shared responsibility model for developers and defenders from 2017-09-13T17:00
The O’Reilly Security Podcast: Shifting secure code responsibility to developers, building secure software quickly, and the importance of changing processes.
In this episode of th...
ListenScott Roberts on intelligence-driven incident response from 2017-08-30T11:00
The O’Reilly Security Podcast: The open-ended nature of incident response, and how threat intelligence and incident response are two pieces of one process.
In this episode of the<...
ListenJack Daniel on building community and historical context in InfoSec from 2017-08-17T11:55
The O'Reilly Security Podcast: The role of community, the proliferation of BSides and other InfoSec community events, and celebrating our heroes and heroines.
In this episode of t...
ListenJay Jacobs on data analytics and security from 2017-08-02T11:05
The O’Reilly Security Podcast: The prevalence of convenient data, first steps toward a security data analytics program, and effective data visualization.
In this episode of the Listen
Katie Moussouris on how organizations should and shouldn’t respond to reported vulnerabilities from 2017-07-19T13:45
The O’Reilly Security Podcast: Why legal responses to bug reports are an unhealthy reflex, thinking through first steps for a vulnerability disclosure policy, and the value of learning by do...
ListenAlex Pinto on the intersection of threat hunting and automation from 2017-07-05T14:40
The O’Reilly Security Podcast: Threat hunting’s role in improving security posture, measuring threat hunting success, and the potential for automating threat hunting for the sake of efficien...
ListenAmanda Berlin on defensive security fundamentals from 2017-06-21T14:10
The O’Reilly Security Podcast: How to approach asset management, improve user education, and strengthen your organization’s defensive security with limited time and resources.
In ...
ListenKimber Dowsett on developing and maturing a vulnerability disclosure program from 2017-06-07T10:35
The O’Reilly Security Podcast: Key preparation before implementing a vulnerability disclosure policy, the crucial role of setting scope, and the benefits of collaborative relationships....
ListenKelly Shortridge on overcoming common missteps affecting security decision-making from 2017-05-24T10:35
The O’Reilly Security Podcast: How adversarial posture affects decision-making, how decision trees can build more dynamic defenses, and the imperative role of UX in security.
In t...
ListenDave Lewis on the tenacity of solvable security problems from 2017-05-10T12:00
The O’Reilly Security Podcast: Compounding security technical debt, the importance of security hygiene, and how the speed of innovation reintroduces vulnerabilities.
In this episo...
ListenParvez Ahammad on applying machine learning to security from 2017-04-26T11:55
The O’Reilly Security Podcast: Scaling machine learning for security, the evolving nature of security data, and how adversaries can use machine learning against us.
In this specia...
ListenKatie Moussouris on procuring and processing bug reports from 2017-04-12T17:45
The O’Reilly Security Podcast: The five stages of vulnerability disclosure grief, hacking the government, and the pros and cons of bug bounty programs.
In this episode, I talk wit...
ListenAllison Miller on making security better and easier for everyone from 2017-03-29T12:15
The O’Reilly Security Podcast: Focusing on defense, making security better for everyone, and how it takes a village.
In this episode, I talk withListen
Scout Brody on crafting usable and secure technologies from 2017-03-15T11:19
The O’Reilly Security Podcast: Building systems that help humans, designing better tools through user studies, and balancing the demands of shipping software with security.
In thi...
ListenJessy Irwin on making security understandable for everyone from 2017-03-01T14:50
The O’Reilly Security Podcast: Speaking other people’s language, security for small businesses, and how shame is a terrible motivator.
In this episode, I talk withListen
Doug Barth and Evan Gilman on Zero Trust networks from 2017-02-15T11:00
The O’Reilly Security Podcast: The problem with perimeter security, rethinking trust in a networked world, and automation as an enabler.
In this episode, I talk withListen
Susan Sons on maintaining and securing the internet’s infrastructure from 2017-02-01T12:15
The O’Reilly Security Podcast: Saving the Network Time Protocol, recruiting and building future open source maintainers, and how speed and security aren’t at odds with each other.
Steven Shorrock on the myth of human error from 2017-01-18T12:20
The O’Reilly Security Podcast: Human error is not a root cause, studying success along with failure, and how humans make systems more resilient.
In this episode, I talk with Listen
Fang Yu on machine learning and the evolving nature of fraud from 2017-01-04T11:00
The O’Reilly Security Podcast: Sniffing out fraudulent sleeper cells, incubation in money transfer fraud, and adopting a more proactive stance.
In this episode, O’Reilly’s Jenn We...
ListenCory Doctorow on the real-life dangers of DRM from 2016-12-21T16:50
The O’Reilly Security Podcast: DRM in unexpected places, artistic and research hindrances, and ill-anticipated consequences.
In this best of 2016 episode, I revisit a conversation...
ListenAme Elliot on designing for usable security and privacy from 2016-12-07T12:20
The O’Reilly Security Podcast: Designing for security and privacy, noteworthy tools, and the real-world consequences of design.
In this episode, O’Reilly’sListen
Richard Moulds on harnessing entropy for a more secure world from 2016-11-23T12:45
The O’Reilly Security Podcast: Randomness, our dependence on entropy for security and privacy, and rating entropy sources for more effective encryption.
In this episode, I talk wi...
ListenGilad Rosner on privacy in the age of the Internet of Things from 2016-11-23T12:20
The O’Reilly Hardware Podcast: Safeguarding against new privacy risks.
In this episode of theO’Reilly Hardware Po...
ListenEfrain Ortiz on digital disease control from 2016-11-09T11:00
The O’Reilly Security Podcast: Thinking like an epidemiologist, using data and patterns, and escaping reactive tendencies.
In this episode, I talk with security architectListen
Brendan O’Connor on security as a monoculture from 2016-10-26T15:50
The O’Reilly Security Podcast: Building cathedrals, empowering the watchers, and breaking out of the security monoculture.
In this episode, I talk with Brendan O’Connor, a securit...
ListenDan Kaminsky on creating an NIH for the security industry from 2016-10-12T11:35
The O’Reilly Security Podcast: Coarse-grained security, embracing the ephemeral, and empathy for everyone.
In this episode, I talk withDan Kam...
ListenJosh Corman on the challenges of securing safety-critical health care systems from 2016-09-28T13:15
The O’Reilly Security Podcast: Where bits and bytes meet flesh, misaligned incentives, and hacking the security industry itself.
In this episode, I talk withListen
Kyle Rankin on modern server hardening for the cloud from 2016-09-14T11:50
The O’Reilly Security Podcast: Modern server hardening, institutional inertia, and new approaches to desktop security.
In this episode, I talk withListen
Meredith Patterson on using language to build trustworthy systems from 2016-08-31T11:00
The O’Reilly Security Podcast: The origins of LangSec, rigidity vs. robustness, and using game theory to make security better for everyone.
In this episode, I talk with Meredith P...
ListenCory Doctorow on legally disabling DRM (for good) from 2016-08-17T14:20
The O’Reilly Security Podcast: The chilling effects of DRM, nascent pro-security industries, and the narrative power of machines.
In this episode, I talk with Cory Doctorow, a jou...
ListenChris Eng on the challenges of improved application security from 2016-08-03T11:30
The O’Reilly Security Podcast: Vulnerabilities in assembled software and the need for immediate developer feedback.
In this episode, I talk with Chris Eng, vice president of resea...
ListenGuy Podjarny on making open source more secure from 2016-07-20T11:00
The O’Reilly Security podcast: DevOps, risk reduction, and vulnerabilities in open source.
In this episode, I talk withGuy Podjarny, found...
ListenEleanor Saitta on security as a product of shared human outcomes from 2016-07-06T11:15
The O’Reilly Security Podcast: Systems, design, and emergent social structures.
In this episode, I talk withEleanor Saitta, a security a...
ListenJay Jacobs on the importance of statistical literacy in security from 2016-06-22T15:00
The O’Reilly Security Podcast: Statistical literacy, machine learning, and data visualization.
In this episode of the Security Podcast, I talk withListen
Jack Whitsitt on the need to band together to make security better for everyone from 2016-06-08T11:00
The O’Reilly Security Podcast: Language as a uniter (or divider), the illusion of control, and how security is made of people.
In this episode, I talk withListen
Allison Miller on the need for defenders to step out of the shadows and share their stories from 2016-05-26T11:50
The O’Reilly Security Podcast: Risk as an emergent property of complex systems, the downsides of security by obscurity, and the new O’Reilly Security Conference.
In this inaugural...
ListenAri Gesher and Kipp Bradford on security and the Internet of Things from 2015-12-03T00:00
The O’Reilly Hardware Podcast: Evolving expectations for privacy.
In this episode of our newly renamed Hardware Podcast, I talk withListen