Application Security PodCast

Mark Loveless -- Threat modeling in a DevSecOps environment.

August 13, 2021 Chris Romeo and Robert Hurlbut
Application Security PodCast
Mark Loveless -- Threat modeling in a DevSecOps environment.
Show Notes

Mark Loveless - aka Simple Nomad - is a security researcher and hacker. He's spoken at numerous security and hacker conferences worldwide, including Blackhat, DEF CON, ShmooCon, and RSA. He's been quoted in the press including CNN, Washington Post, and the New York Times. Mark joins us to discuss his series of blog posts on Threat Modeling at GitLab. We discuss his philosophical approach, framework choice (spoiler alert, it's a pared down version of PASTA), and success stories / best practices he's seen for threat modeling success. We hope you enjoy this conversation with...Mark Loveless.