بهترین پادکست های DevSecOps Podcast Series (2024)

1
EP33: Stay relevant in the Dev Career: Enhance your Profile and Reputation 40:10

2h ago40:10

40:10

In this episode of Cloud Commute, Java evangelist Bruno Souza shares insights on adapting to cloud and AI trends, navigating the hidden job market, and building career visibility. He emphasizes hands-on learning and applying new technologies in real projects. Souza also introduces his Mentorship Hub, aimed at helping developers advance their career…

1
EP 32: Observability with OpenTelemetry and Dash0 | Michele Mancioppi 30:22

7d ago30:22

30:22

In this episode of Cloud Commute, Michele Mancioppi, Head of Product at Dash0, discusses how Dash0 enhances Kubernetes-native observability using OpenTelemetry. He and Chris Engelbert explore the importance of context in telemetry data and how standardization simplifies observability. Mancioppi also touches on balancing product management with tech…

1
3 Key Elements for Designing Secure Systems 36:28

9d ago36:28

36:28

To make secure software by design a reality, engineers must intentionally build security throughout the software development lifecycle. In this podcast from the Carnegie Mellon University Software Engineering Institute (SEI), Timothy A. Chick, technical manager of the Applied Systems Group in the SEI’s CERT Division, discusses building, designing, …

1
EP 31: Event Streaming Beyond Kafka | Christina Lin 29:16

14d ago29:16

29:16

In this episode of Cloud Commute, Christina Lin from Redpanda Data discusses how Redpanda simplifies data streaming as an alternative to Kafka. She and Chris Engelbert explore its ease of use, cloud compatibility, and innovations like the BYOC service as a seamless Kafka alternative. In this episode of Cloud Commute, Chris and Christina discuss: Wh…

1
ep2024-09 Threat Modeling with Takaharu 36:19

16d ago36:19

36:19

What happens when you get interested in Threat Modeling and you want to share. For some, that means you do one work shop, then another, then another. What happens when you start down this path. Takaharu Ogasa tells us what it's been like to become a threat modeling evangelist in Japan, what he's learned and what he's got planned next. It's a great …

1
A Brief History of Simplyblock | Michael Schmidt 30:10

21d ago30:10

30:10

In this episode of Cloud Commute, Michael Schmidt, co-founder & CTO of simplyblock, joins us to discuss the innovation behind simplyblock. Michael shares his journey from consulting and leading major retail IT operations to the creation of simplyblock. In this episode of Cloud Commute, Chris and Michael discuss: What is software-defined storage? Wh…

1
Using Role-Playing Scenarios to Identify Bias in LLMs 45:07

25d ago45:07

45:07

Harmful biases in large language models (LLMs) make AI less trustworthy and secure. Auditing for biases can help identify potential solutions and develop better guardrails to make AI safer. In this podcast from the Carnegie Mellon University Software Engineering Institute (SEI), Katie Robinson and Violet Turri, researchers in the SEI’s AI Division,…

1
Timeplus: Streaming Analytics for Realtime Data | Jove Zhong 29:40

28d ago29:40

29:40

Event-driven processing and real-time stream analytics are common design elements of modern, scalable architectures. Jove Zhon from Timeplus talks about how and why you want to use these architectural patterns and why Timeplus. In this episode of Cloud Commute, Chris and Jove discuss: What is Streaming Analytics? Why do people prefer Timeplus? What…

1
Best Practices and Lessons Learned in Standing Up an AISIRT 38:29

1M ago38:29

38:29

In the wake of widespread adoption of artificial intelligence (AI) in critical infrastructure, education, government, and national security entities, adversaries are working to disrupt these systems and attack AI-enabled assets. With nearly four decades in vulnerability management, the Carnegie Mellon University Software Engineering Institute (SEI)…

1
Integration Tests Done Right: Testcontainers | Oleg Šelajev 30:46

1M ago30:46

30:46

Writing good integration tests is hard. Databases and other services need to be started up, the test has to be run, and everything needs to be shut down again. In this episode of Cloud Commute Oleg Šelajev from Docker talks about how Testcontainers makes our lives better. In this episode of Cloud Commute, Chris and Oleg discuss: Test containers and…

1
From Teaching to Tech: The Forefront of the Kubernetes Community - Bart Farrell 27:51

1M ago27:51

27:51

In this very special episode of Cloud Commute we try something else. Joined by guest Bart Farrell, well known in the Kubernetes ecosystem for his work in the Data on Kubernetes community, as well as Kube.FM. Bart talks about his past, teaching children English after he moved from the USA to Spain, and how this shaped his view on teaching tech topic…

1
ep2024-08 OWASP Projects Roundup 36:19

1M ago36:19

36:19

The August episode is a review of projects from a recent OWASP project showcase. We talk to the leaders of the OWASP pytm, OWASP Developer Guide, OWASP State of AppSec Survey Project. Get up on the latest news and update on these OWASP projects.OWASP pytm:- https://owasp.org/www-project-pytm/- https://github.com/izar/pytmOWASP Develper Guide:- http…

1
Building AI Agents with Java and Semantic Kernel 30:18

2M ago30:18

30:18

In this episode of Simplyblock's Cloud Commute Podcast, Bruno Borges, Principal Product Manager at Microsoft, discusses millions of Java instances at Microsoft and the role of the Microsoft Java team. He introduces Semantic Kernel, a Java library for integrating AI into business applications, using large language models. Tune in to learn how Micros…

1
3 API Security Risks (and How to Protect Against Them) 19:28

2M ago19:28

19:28

The exposed and public nature of application programming interfaces (APIs) come with risks including the increased network attack surface. Zero trust principles are helpful for mitigating these risks and making APIs more secure. In this podcast from the Carnegie Mellon University Software Engineering Institute (SEI), McKinley Sconiers-Hasan, a solu…

1
How to Build a Serverless Postgres? ft Gwen Shapira 28:36

2M ago28:36

28:36

In this episode, our guest Gwen Shapira talks about her co-founded database startup Nile, a serverless Postgres database. She explains how they implemented the multi-tenant features, made sure that customers are probably isolated, how scalability works, and what the future holds. Gwen has years and years of experience using technologies as Oracle d…

1
A Time-Series Database in Postgres - WHY? 29:22

2M ago29:22

29:22

In this episode of Simplyblock's Cloud Commute Podcast, host Chris Engelbert talks with Mike Freedman, co-founder and CTO of Timescale. Timescale enhances Postgres for handling time series data, analytics, and AI efficiently. The discussion covers Timescale's use of Kubernetes for scalable, decoupled compute and storage, ensuring high availability …

1
Introduction to Side Channel Attacks using CacheWarp 31:43

2M ago31:43

31:43

In this week's episode we have a very special guest, Michael Schwarz from CISPA. A security researcher specialized in CPU side-channel attacks. He explains how side-channel attacks work in general, but most specifically with the example of his team's most recent find: #CacheWarp. He was also involved in the finding of #Meltdown and #Spectre. In thi…

1
Automatically secure your application with your personal Application Firewall 25:21

3M ago25:21

25:21

In this week's episode of the Cloud Commute podcast by simplyblock, host Chris Engelbert talks to Hannes Ullman from bifrost security, a company building an automatic application firewall. Bifrost is built upon AppArmor, using a training phase to learn the application's network behavior, necessary system calls, and more. Using the data acquired dur…

1
Evaluating Large Language Models for Cybersecurity Tasks: Challenges and Best Practices 43:05

3M ago43:05

43:05

How can we effectively use large language models (LLMs) for cybersecurity tasks? In this Carnegie Mellon University Software Engineering Institute podcast, Jeff Gennari and Sam Perl discuss applications for LLMs in cybersecurity, potential challenges, and recommendations for evaluating LLMs.

1
How to connect millions of devices every day 29:04

3M ago29:04

29:04

In this episode of the Cloud Commute Podcast, Chris Engelbert talks with Dominik Obermaier, CTO and co-founder of HiveMQ. They delve into the technical aspects of MQTT, a lightweight communication protocol designed for the Internet of Things (IoT), and much more. In this episode of Cloud Commute, Chris and Dominik discuss: Introduction to HiveMQ an…

1
Capability-based Planning for Early-Stage Software Development 33:55

3M ago33:55

33:55

Capability-Based Planning (CBP) defines a framework that has an all-encompassing view of existing abilities and future needs for strategically deciding what is needed and how to effectively achieve it. Both business and government acquisition domains use CBP for financial success or to design a well-balanced defense system. The definitions understa…

1
Getting Started with Graph Databases with Jennifer Reif from Neo4j 26:43

3M ago26:43

26:43

In this week's episode of simplyblock's Cloud Commute podcast, host Chris Engelbert sits down with Jennifer Reif, a developer advocate at Neo4j. Jennifer dives into the fascinating world of graph databases, explaining how Neo4j stores data as entities and relationships, making it perfect for complex queries involving networks, social structures, su…

1
ep2024-07 Safety belts for AppSec with Lisa Plaggemier 32:04

3M ago32:04

32:04

After a long and unplanned pause, the OWASP podast is back with a home run of an episode. We have Lisa Plaggemier as our guest who reprises her eloquent keynote topic from AppSec DC. All hope isn't lost, we are making progress - just look at safety in the auto industry to understand where we are and where we're going.Links:Lisa's keynote from AppSe…

1
End-to-end testing of mobile and web-applications with Paloma Oliveira from Saucelabs 26:45

3M ago26:45

26:45

In this week's episode of simplyblock's Cloud Commute podcast, host Chris Engelbert welcomes Paloma Oliveira, a Brazilian growth engineer at Sauce Labs and active member of the Python Software Verband and PyLadies Berlin. In this episode of Cloud Commute, Chris and Paloma discuss: The role of Sauce Labs in end-to-end testing for software and device…

1
Safeguarding Against Recent Vulnerabilities Related to Rust 26:25

3M ago26:25

26:25

What can the recently discovered vulnerabilities related to Rust tell us about the security of the language? In this podcast from the Carnegie Mellon University Software Engineering Institute, David Svoboda discusses two vulnerabilities, their sources, and how to mitigate them.

1
Machine Learning driven Database Optimization with Luigi Nardi from DBtune 25:57

4M ago25:57

25:57

In this week's episode of Simplyblock's Cloud Commute podcast, host Chris Engelbert interviews Luigi Nardi, founder and CEO of DBtune. Luigi provides insights into the complexities of database optimization and the significant role of machine learning in improving system efficiency. In this episode of Cloud Commute, Chris and Luigi discuss: Introduc…

1
Developing a Global Network of Computer Security Incident Response Teams (CSIRTs) 30:51

4M ago30:51

30:51

Cybersecurity risks aren’t just a national concern. In this podcast from the Carnegie Mellon University Software Engineering Institute (SEI), the CERT division’s Tracy Bills, senior cybersecurity operations researcher and team lead, and James Lord, security operations technical manager, discuss the SEI’s work developing Computer Security Incident R…

1
How I designed PostgreSQL High Availability with Shaun Thomas from Tembo 28:31

4M ago28:31

28:31

Welcome to this week's episode of Simplyblock's Cloud Commute podcast! Host Chris Engelbert sits down with Shaun Thomas, affectionately known as "Mr. High Availability" in the Postgres community, to discuss his journey from a standard DBA to a leading expert in high availability solutions for Postgres databases. In this episode of Cloud Commute, Ch…

1
Simplify Developer Namespaces with Multi-tenant Kubernetes with Alessandro Vozza from Kubespaces 25:21

4M ago25:21

25:21

In this episode of simplyblock's Cloud Commute podcast, host Chris Engelbert welcomes Alessandro Vozza, a prominent figure in the Kubernetes and cloud-native community. Alessandro shares his journey from his early days in open-source advocacy to his pivotal role in organizing the DevOps and Kubernetes meetups in Amsterdam. In this episode of Cloud …

1
Access Policy Management at Cloud-Scale with Anders Eknert from Styra 24:54

4M ago24:54

24:54

The podcast episode of simplyblock's Cloud Commute features Chris Engelbert interviewing Anders Eknert. They discuss Anders' background and current role at Styra, the company behind the Open Policy Agent (OPA) project. Anders lives and works in Stockholm, Sweden, and has been involved with Styra for about three and a half years. He shares how his p…

1
Automated Repair of Static Analysis Alerts 27:05

4M ago27:05

27:05

Developers know that static analysis helps make code more secure. However, static analysis tools often produce a large number of false positives, hindering their usefulness. In this podcast from the Carnegie Mellon University Software Engineering Institute (SEI), David Svoboda, a software security engineer in the SEI’s CERT Division, discusses Rede…

1
Your CI/CD Pipeline is a Production system with Stefan Prodan from ControlPlane 28:59

4M ago28:59

28:59

Using CI/CD pipelines to build and deploy your applications is common sense. Many use combined tools though. Stefan Prodan, from ControlPlane, talks about the importance of recognizing that a deployment pipeline is basically a cluster admin and needs to be handled securely as a production system. If you have questions to Stefan, you can reach her h…

1
Cyber Career Pathways and Opportunities 31:23

5M ago31:23

31:23

Not all paths to cybersecurity careers look the same. In this podcast from the Carnegie Mellon University Software Engineering Institute (SEI), Randy Trzeciak, deputy director of cyber risk and resilience in the SEI’s CERT division, discusses his career journey, resources for pursuing a career in cybersecurity, and the importance of building a dive…

1
Continuous vulnerability scanning in production - Oshrat Nir from ARMO 24:32

5M ago24:32

24:32

Running vulnerability scanners during development and in your build pipeline is great, but not enough. Newly emerging CVEs, and other application behavior anomalies need to be caught in production. Oshrat Nir, from ARMO, talks about the importance of runtime vulnerability scanning. If you have questions to Oshrat, you can reach her here: LinkedIn: …

1
How Oracle transforms its operation into a cloud business - Gerald Venzl from Oracle 24:37

5M ago24:37

24:37

Gerald Venzl, lead product manager for Oracle databases, talks about the shift of focus away from on-premise databases towards the cloud. It's a big change for a company like Oracle, but a necessary one. Learn more about the challenges and why Oracle believes multi-cloud is the future. If you have questions to Gerald, you can reach him here: Linked…

1
Automated Vulnerability Detection throughout your Pipeline - Brian Vermeer from Synk 24:50

5M ago24:50

24:50

Brian Vermeer from Snyk, a cybersecurity company providing tooling to detect common code issues and vulnerabilities throughout your development and deployment pipeline, talks about the necessity of multi checks, the commonly found threads, and how important it is to rebuild images for every deployment, even if the code hasn’t changed. If you have q…

1
PostgreSQL mistakes and how to avoid them - Jimmy Angelakos 21:37

5M ago21:37

21:37

Jimmy Angelakos, a freelance consultant, talks about his experiences with customers running PostgreSQL on bare-metal, in the cloud, and on Kubernetes. He also talks about his new book "PostgreSQL Mistakes and How to Avoid Them" (discount link below). If you have questions to Jimmy, you can reach him here: LinkedIn: https://www.linkedin.com/in/vyrus…

1
Change Data Capture and Stream Processing in the Cloud - Gunnar Morling from Decodable 23:24

6M ago23:24

23:24

Gunnar Morling, from Decodable, a company simplifying the use of Apache Flink, talks about how to extract modifications from a database using change data capture tools, such as Debezium, and how to use Apache Flink or Decodable to run your real-time analytics or queries in a stream processing fashion. If you have questions to Gunnar, you can reach …

1
My Story in Computing with Sam Procter 37:15

6M ago37:15

37:15

Sam Procter started out studying computer science at the University of Nebraska, but he didn’t love it. It wasn’t until he took his first software engineering course that he knew he’d found his career path. In this podcast from the Carnegie Mellon University Software Engineering Institute, Sam Procter discusses the early influences that shaped his …

1
How API Gateways help to improve your security - Nicolas Fränkel from API7.ai 27:16

6M ago27:16

27:16

Nicolas Fränkel from API7.ai, the major company behind the Apache APISIX API gateway, talks about how APISIX helps you implement rate limiting, customer-specific behavior, and how API gateways in general help secure your APIs. Editor's note: Sorry for the bad audio quality. The recording got messed up. For questions, you can reach Nicolas at: Linke…

1
Building a Time Series Database in the Cloud - Steven Sklar from QuestDB 23:39

6M ago23:39

23:39

Steven Sklar from QuestDB, a company producing a time series database for large IoT, metrics, observability and other time-component data sets, talks about how they implemented their database offering, from building their own operator to how storage is handled. For questions, you can reach Steven at: LinkedIn: https://www.linkedin.com/in/steven-skl…

1
Building and operating a production-grade PostgreSQL in Kubernetes - Álvaro Hernández Tortosa from OnGres 24:44

6M ago24:44

24:44

Álvaro Hernández Tortosa from OnGres, a company providing the necessary tooling to run a production-grade PostgreSQL in Kubernetes. Álvaro talks about the issues with the many-solutions-to-a-problem situation in Postgres and how it can be overwhelming and alarming to newcomers. For questions, you can reach Álvaro at: LinkedIn: https://www.linkedin.…

1
Developing and Using a Software Bill of Materials Framework 37:37

6M ago37:37

37:37

With the increasing complexity of software systems, the use of third-party components has become a widespread practice. Cyber disruptions, such as SolarWinds and Log4j, demonstrate the harm that can occur when organizations fail to manage third-party components in their software systems. In this podcast from the Carnegie Mellon University Software …

1
How to automatically save money with AWS EC2 spot instances - Cristian Magherusan-Stanciu from AutoSpotting 24:05

7M ago24:05

24:05

Cristian Magherusan-Stanciu from AutoSpotting, a company helping to cost-optimize their AWS EC2 spent by automatically supplying matching workloads with spot instances. For questions, you can reach Cristian at: LinkedIn: https://www.linkedin.com/in/cristimagherusan/ Twitter: https://twitter.com/magheru_san You can learn more about AutoSpotting at: …

1
Kubernetes is the platform to build platforms, like Cloud Run or Fargate - Abdelfettah Sghiouar from Google 24:41

7M ago24:41

24:41

In this episode of Cloud Commute, host Chris Engelbert welcomes Abdel Sghiouar, a Kubernetes expert from Google, to discuss various aspects of cloud technology, with a focus on Kubernetes and cloud-native solutions. Abdel, who has been with Google for a decade and specializes in Kubernetes networking, security, and storage, shares insights into the…

1
The Importance of Diversity in Cybersecurity: Carol Ware 26:37

7M ago26:37

26:37

In this podcast from the Carnegie Mellon University Software Engineering Institute, Carol Ware, a senior cybersecurity engineer in the SEI’s CERT Division, discusses her career path, the value of mentorship, and the importance of diversity in cybersecurity.توسط Carol Ware

1
The Importance of Diversity in Software Engineering: Suzanne Miller 29:02

7M ago29:02

29:02

In this podcast from the Carnegie Mellon University Software Engineering Institute (SEI), Suzanne Miller, a principal researcher in the SEI’s Software Solutions Division, discusses her career path, the value of mentorship, and the importance of diversity in software engineering.توسط Suzanne Miller

پادکست هایی که ارزش شنیدن دارند

DevSecOps Podcast Series

پادکست هایی که ارزش شنیدن دارند

راهنمای مرجع سریع