Getting Started with Security Basics on the Way to Finding a Specialization - ASW #339 cover art

Getting Started with Security Basics on the Way to Finding a Specialization - ASW #339

Getting Started with Security Basics on the Way to Finding a Specialization - ASW #339

Listen for free

View show details

About this listen

What are some appsec basics? There's no monolithic appsec role. Broadly speaking, appsec tends to branch into engineering or compliance paths, each with different areas of focus despite having shared vocabularies and the (hopefully!) shared goal of protecting software, data, and users.

The better question is, "What do you want to secure?"

We discuss the Cybersecurity Skills Framework put together by the OpenSSF and the Linux Foundation and how you might prepare for one of its job families. The important basics aren't about memorizing lists or technical details, but demonstrating experience in working with technologies, understanding how they can fail, and being able to express concerns, recommendations, and curiosity about their security properties.

Resources:

  • https://cybersecurityframework.io
  • https://owasp.org/www-project-cheat-sheets/
  • https://blog.cloudflare.com/rfc-8446-aka-tls-1-3/
  • https://aflplus.plus/
  • https://writings.stephenwolfram.com/2023/02/what-is-chatgpt-doing-and-why-does-it-work/

Visit https://www.securityweekly.com/asw for all the latest episodes!

Show Notes: https://securityweekly.com/asw-339
No reviews yet
In the spirit of reconciliation, Audible acknowledges the Traditional Custodians of country throughout Australia and their connections to land, sea and community. We pay our respect to their elders past and present and extend that respect to all Aboriginal and Torres Strait Islander peoples today.