Episode cover
Security Done Right: Ben Gittins on the Case for Generalists and Long-Term Solutions
August 28, 2024 · 47 min
Summary

Ben Gittins is the Principal Security Engineer at Bugcrowd, one of the world's best bug bounty platforms. Ben has previously worked as a Senior DevSecOps Engineer at Canva, as well as DevSecOps Lead at SecureStack. 

In this conversation with Cole Cornford, Ben shares his belief that cybersecurity needs more generalists, how coding and AppSec have changed over time, whether cybersecurity qualifications are overrated, and plenty more.

Timestamps

3:50 - Why is Aus cybersecurity lagging behind? 

9:50 - Over-reliance on purchasing cybersecurity products 

14:40 - We ask too much of our AppSec professionals 

19:00 - How App development & cybersecurity have changed over time 

24:00 - "Greenfield projects" are often not realistic 

28:20 - How to bring new people into the AppSec industry 

32:00 - Importance of communication skills 

38:20 - Cybersecurity qualifications are overrated

43:00 - Rapid fire questions  

Mentioned in this episode:

Call for Feedback

This podcast uses the following third-party services for analysis: Spotify Ad Analytics - https://www.spotify.com/us/legal/ad-analytics-privacy-policy/