EP 37 — Choosing AppSec Priorities: Software Supply Chain, Code-to-Cloud Business Context and Metrics

Tanya Janca, Founder of We Hack Purple, and Eric Sheridan, Chief Innovation Officer at Tromzo, join us for a special episode of the Future of Application Security Podcast. This episode was originally recorded as a LinkedIn Live on June 25, 2023. 

Tanya and Eric discuss how understanding the context in which applications operate is crucial for effective AppSec prioritization. You don't want to miss this insightful session to uncover how to choose AppSec priorities based on software supply chain security, code-to-cloud business context, and metrics. Let's empower organizations to strengthen their Application, Product, and Cloud Security practices and stay ahead of emerging threats.

Topics discussed: 

• The significance of software supply chain security and the importance of preventive controls that integrate security policies throughout the SDLC. 
• How code to cloud business context emphasizes the need to consider various business models, ownership structures, and how they influence security requirements. 
• Where leveraging metrics effectively can enhance an organization's AppSec posture and mitigate risks.