Welcome to the Elephant in AppSec, the podcast to explore, challenge, and boldly face the AppSec Elephants in the room.
Today, I’m super excited to have Ariel Shin on the podcast! Ariel started as a pentester, moved into appsec, and now she’s a Security Engineering Manager at Datadog. Before that, she led the Product Security team at Twilio, where she led an effort to democratize vulnerability management across the company, which had a significant impact on reducing risk.
She’s also a regular speaker at conferences, and I actually got to meet her in person for the first time at BSides San Francisco this year, where she led an impressive panel on scaling security.
In this episode, I learned from Ariel why cultural transformation is challenging but necessary for successful product security initiatives and how Democratizing vulnerability management involves shifting the responsibility of risk from security compliance to engineering.
And much more! If you’re interested in practical ways to ease the cognitive load on engineers, find allies in security, and start creating a real shift in culture, this episode is for you.
Dive right in!