Application Security Trends & Challenges with Tanya Janca

In episode 306, noteworthy guest Tanya Janca returns to discuss her recent ventures and her vision for the future of AppSec. She reflects on the significant changes she has observed since her career at Microsoft, before discussing her new role at Semgrep that recently acquired WeHackPurple. Tanya sheds light on her decision to partner with Semgrep, a company that aligns with her vision of providing free resources in the AppSec community. Despite facing a failed acquisition process the previous year, WeHackPurple received multiple acquisition offers, leading to a bidding war.

In addition, Tanya shares her optimism about the maturity of AppSec programs, presents her concerns about consolidation in the industry, and highlights the importance of role-based, tailored training. She also reveals her ongoing work on the sequel to her book titled 'Alice and Bob Learn Secure Coding' and hints at the launch of the Semgrep Academy.

For our Patreon supporters, don't miss our bonus episode where Tanya shares her biggest career accomplishment and failure, offering invaluable lessons for all! Become a supporter today: https://patreon.com/sharedsecurity

00:00 Introduction and Welcome 00:30 Tanya's Career Journey and Recent Adventures 01:08 The Acquisition of WeHackPurple by Semgrep 01:52 The Vision and Mission of Semgrep 05:46 The Evolution of Application Security 07:27 The State of Cybersecurity Jobs 09:21 The Future of AppSec and Cybersecurity 11:30 Improving Enterprise Application Security Training 21:00 Upcoming Projects and Future Plans 24:39 Conclusion and Contact Information

Show notes: https://sharedsecurity.net/2023/12/04/application-security-trends-challenges-with-tanya-janca/

#podcast #cybersecurity #appsec #sharedsecuritypodcast ... https://www.youtube.com/watch?v=wUrcs1-p8XQ