Tag

I had the opportunity to speak at OWASP Global AppSec 2025 on the topic of Metrics That Matter: Driving AppSec Success with Data-Driven Insights.

Abstract

“What gets...

You’ve made the decision to create a product security program, congratulations! Here are five recommendations to help you on your journey:

Leadership commitment

Leadership commitment is crucial. Building a product security program will require changes in ways of working,...

“It’s always DNS” is a saying that most people who have been part of solving outages are familiar with. And sure, DNS should not work, given its complexity.

I mean, whenever you’re trying to look up an address, what happens...

You’ve made the decision to create a product security program, congratulations! Here are five recommendations to help you on your journey:

Leadership commitment

Leadership commitment is crucial. Building a product security program will require changes in ways of working,...

“It’s always DNS” is a saying that most people who have been part of solving outages are familiar with. And sure, DNS should not work, given its complexity.

I mean, whenever you’re trying to look up an address, what happens...

Imagine it’s a Monday morning. Your developers are barely past the login screen, and an AI agent has already drafted a feature, written the tests, opened a pull request, and flagged a dependency that needs updating. By the time standup...

You’ve made the decision to create a product security program, congratulations! Here are five recommendations to help you on your journey:

Leadership commitment

Leadership commitment is crucial. Building a product security program will require changes in ways of working,...

Imagine it’s a Monday morning. Your developers are barely past the login screen, and an AI agent has already drafted a feature, written the tests, opened a pull request, and flagged a dependency that needs updating. By the time standup...

I had the opportunity to speak at OWASP Global AppSec 2025 on the topic of Metrics That Matter: Driving AppSec Success with Data-Driven Insights.

Abstract

“What gets...

You’ve made the decision to create a product security program, congratulations! Here are five recommendations to help you on your journey:

Leadership commitment

Leadership commitment is crucial. Building a product security program will require changes in ways of working,...

You’ve made the decision to create a product security program, congratulations! Here are five recommendations to help you on your journey:

Leadership commitment

Leadership commitment is crucial. Building a product security program will require changes in ways of working,...

I had the opportunity to speak at GrafanaCON 2026 in Barcelona, together with Nick Moore, Principal Security Engineer at Grafana Labs, on the topic of Lessons from that security incident when everything went wrong (but ended up right).