EP 56 — Aruneesh Salhotra on Why Security is Everyone’s Job

In this episode of the Future of Application Security, Harshil speaks with Aruneesh Salhotra, CEO and Fractional CISO, SNM Consulting Inc. They discuss the unique challenges and opportunities of application security in the financial sector, including how the "necessary evil" of regulations is increasing accountability around security efforts. They also talk about the need for more vigilant software supply chain security, two better approaches to vulnerability management, and how AI can create self-sufficiency among developers.

Topics discussed:

• The "necessary evil" of regulations and how they're increasing accountability around data storage, pen testing, and more.
• Two approaches security teams can take to better manage application vulnerabilities: a call graph and runtime SCA.
• What your attack surface is and how to effectively manage it.
• The increasing importance of software supply chain security and the value of establishing an open source program office.
• Why security should be everyone's job and how adopting security today will bear fruit tomorrow.
• How AI can increase developer self-sufficiency by giving feedback and insights on security actions.