PodParley PodParley
PodParley PodParley
Log in

Modernizing Security With Tim Crothers

In episode 105 of The Secure Developer, Guy Podjarny chats to Tim Crothers, Senior Vice President and Chief Security Officer at Mandiant about how to modernize security in DevSecOp. As someone who has been in the world of IT since the 80s, Tim explains how he has seen DevSecOps evolve over time, how security has changed its approach over the years, and what DevSecOps means to him. They discuss the differences between controls and guardrails, how often developers are allowed to override guardrails, and to what degree these are left to the decisions of development teams.

Episode 105 of the The Secure Developer podcast, hosted by Tim Crothers, Guy Podjarny, titled "Modernizing Security With Tim Crothers" was published on December 13, 2021 and runs 46 minutes.

December 13, 2021 ·46m · The Secure Developer

0:00 / 0:00

Summary

In episode 105 of The Secure Developer, Guy Podjarny chats to Tim Crothers, Senior Vice President and Chief Security Officer at Mandiant about how to modernize security in DevSecOp. As someone who has been in the world of IT since the 80s, Tim explains how he has seen DevSecOps evolve over time, how security has changed its approach over the years, and what DevSecOps means to him. They discuss the differences between controls and guardrails, how often developers are allowed to override guardrails, and to what degree these are left to the decisions of development teams.

Episode Description

Today on The Secure Developer, we look at how to modernize security in DevSecOps. To guide us through this, we are joined by Tim Crothers, Senior Vice President and Chief Security Officer at Mandiant. Tim is a seasoned security leader with over 20 years of experience building and running information security programs, large and complex incident response engagements, and threat and vulnerability assessments. He has a wealth of experience in cyber threat intelligence, reverse engineering, and computer forensics. He has authored 17 books to date and presents regular training and speaking engagements at information security conferences. As someone who has been in the world of IT since the 80s, Tim explains how he has seen DevSecOps evolve over time, how security has changed its approach over the years, and what DevSecOps means to him. We discuss the differences between controls and guardrails, how often developers are allowed to override guardrails, and to what degree these are left to the decisions of development teams. To find out what Tim considers to be the optimal setup for the split of responsibility between development teams and security teams, what he looks for when hiring new people into his product security team, and what his top three KPIs are, tune in today!

Follow Us

Share this episode

Similar Episodes

Chapter I - Doña Luisa

Apr 11, 2026 ·13m

Chapter II - In Which a Gentleman Pays His Debt

Apr 11, 2026 ·26m

Chapter III - The Message

Apr 11, 2026 ·23m

Chapter IV - A Footstep in the Lane

Apr 11, 2026 ·14m

Chapter V - The Girl in the Smoke-Room

Apr 11, 2026 ·25m

Chapter VI - I Receive an Invitation

Apr 11, 2026 ·13m

Similar Podcasts

The Secure World Foundation Podcast Secure World Foundation This podcast features content produced by the Secure World Foundation (SWF), an endowed, private operating foundation that promotes cooperative solutions for space sustainability and the peaceful uses of outer space. The Foundation acts as a research body, convener and facilitator to promote key space security, and other related topics, and to examine their influence on governance and international development. The Secure Woman Podcast Your Lifestylist Im your Lifestylist,Welcome to the Secure Woman podcast. Where I talk about the tools to elevating your thinking, move pass past trauma and we talk about healing is a journey. Our conversations are geared towards help women master their emotions and manifest their dream life, we are moving full throttle pass the pain. This podcast is for those looking to WIN past the pain. Support this podcast: https://podcasters.spotify.com/pod/show/yourlifestylist/support Secure the Future Dave Maasland Secure the Future is een maandelijkse podcast over digitale beveiliging. Met CISO’s, voor CISO’s. Over hoe we vandaag beschermen om morgen veiliger te zijn.Ik ben Dave Maasland en in de Secure the Future podcast ga ik in gesprek met vooraanstaande securityleiders in ons land. Je leert als CISO hoe vakcollega’s naar dit vak kijken, juist in deze tijd. Hoe gaan we om met de huidige ransomwarecrisis? Hoe bereiden we ons voor op dreigingen in de toekomst? Hoe begin je in het CISO-vak? En hoe zet je een sterk securityframework neer?Kortom: het is tijd om CISO’s in Nederland met elkaar te verbinden en meer kennis uit te wisselen. Natuurlijk ga ik ook met hen in gesprek over wie ze zijn als mens en hoe ze hier zijn gekomen.Luister daarom elke maand naar de Secure the Future podcast dé podcast over digitale beveiliging met CISO’s, voor CISO’s. The Reezy London Podcast The Reezy London Podcast Diving into the mind of Reezy London on his quest to secure financial longevity, happiness, & his interests in today’s world
URL copied to clipboard!