Purple Book Podcast

著者: The Purple Book Community
  • サマリー

  • In an increasingly digital world that we live in, building secure software is important for us all. Just as personal safety and security are fundamental needs, we at the Purple Book Community believe digital security is a fundamental need as well. Welcome to The Purple Book Podcast. This podcast is part of the Purple Book Community, a community of some of the world’s leading security leaders. Our vision is to build a purpose driven, trusted, and safe community that equips people with the expertise to embrace secure development practices, connect with other practitioners to solve the ever-evolving challenges, and ultimately democratize software security.


    In this podcast we host thought leaders and security practitioners to tackle the monumental challenge of building secure software and making the digital world safer and more secure.

    Our goal is to bring informative and insightful discussions about securing software, sharing challenges in doing so, and promoting best practices that will inspire you to take action.

    Members of the Purple Book Community host the podcast, more than 30 practitioners who truly understand the ins and outs of DevOps and have been on the frontlines of this digital challenge. They are made up of the best chief information security officers and software developers from all the leading organizations and companies right now. You can rest assured you are acquiring the best software security advice through their vast expertise and experience on the subject.


    To make every discussion interesting, engaging, and unpredictable, the episodes of The Purple Book Podcast feature a mix of these 30 amazing individuals. Some conversations may only have two people diving deep into a complex topic, while others may highlight an entire group immersed in an in-depth collaboration and brainstorming. With this unique delivery that does not stick to a single format, listeners could treat themselves to a wide variety of data presentation and strategy building.

    Ultimately, The Purple Book Podcast aims to build a vibrant free resource community around it, connecting practitioners and thought leaders. More practical solutions would be developed by creating awareness about heightening software security and ushering a collective work for it.


    With the advent of Agile development methodologies and DevOps, the pace of software development has accelerated dramatically, going from once a year release to releases every month, week or even hourly in some cases. This certainly has made it more challenging to secure that software.

    So, leaders from the Purple Book Community are also writing a “Purple book of Software Security”. This will be a “how to” handbook for anybody looking to build secure applications and products with insights from top security practitioners. This book looks at software security from the lens of many of its avatars, application security, product security, DevSecOps, and SecDevOps. Following contains the table of contents of this book.

    1. Introduction
    2. Why Software Security
    3. People/Culture/Organization
    4. Process
    5. Technology
    6. Compliance, Governance and Risk Framework
    7. Securing Software Supply Chain
    8. Building Business Case for Software Security Program
    9. Capability Maturity Model, KPIs, and Security Metrics
    10. Key Takeaways, Next Steps, and Conclusion

    This book looks at case studies and best practices from startups to Fortune 10 corporations. So, no matter the size and maturity of your organization, this book will provide something for you.

    This book will be released in the third quarter of 2021 and will be offered free of charge to all. You can find out more about it at thepurplebook.club. We invite you to come join us to be part of this community.

    Copyright 2023 The Purple Book Community | All Rights Reserved | thepurplebook.club
    続きを読む 一部表示

あらすじ・解説

In an increasingly digital world that we live in, building secure software is important for us all. Just as personal safety and security are fundamental needs, we at the Purple Book Community believe digital security is a fundamental need as well. Welcome to The Purple Book Podcast. This podcast is part of the Purple Book Community, a community of some of the world’s leading security leaders. Our vision is to build a purpose driven, trusted, and safe community that equips people with the expertise to embrace secure development practices, connect with other practitioners to solve the ever-evolving challenges, and ultimately democratize software security.


In this podcast we host thought leaders and security practitioners to tackle the monumental challenge of building secure software and making the digital world safer and more secure.

Our goal is to bring informative and insightful discussions about securing software, sharing challenges in doing so, and promoting best practices that will inspire you to take action.

Members of the Purple Book Community host the podcast, more than 30 practitioners who truly understand the ins and outs of DevOps and have been on the frontlines of this digital challenge. They are made up of the best chief information security officers and software developers from all the leading organizations and companies right now. You can rest assured you are acquiring the best software security advice through their vast expertise and experience on the subject.


To make every discussion interesting, engaging, and unpredictable, the episodes of The Purple Book Podcast feature a mix of these 30 amazing individuals. Some conversations may only have two people diving deep into a complex topic, while others may highlight an entire group immersed in an in-depth collaboration and brainstorming. With this unique delivery that does not stick to a single format, listeners could treat themselves to a wide variety of data presentation and strategy building.

Ultimately, The Purple Book Podcast aims to build a vibrant free resource community around it, connecting practitioners and thought leaders. More practical solutions would be developed by creating awareness about heightening software security and ushering a collective work for it.


With the advent of Agile development methodologies and DevOps, the pace of software development has accelerated dramatically, going from once a year release to releases every month, week or even hourly in some cases. This certainly has made it more challenging to secure that software.

So, leaders from the Purple Book Community are also writing a “Purple book of Software Security”. This will be a “how to” handbook for anybody looking to build secure applications and products with insights from top security practitioners. This book looks at software security from the lens of many of its avatars, application security, product security, DevSecOps, and SecDevOps. Following contains the table of contents of this book.

  1. Introduction
  2. Why Software Security
  3. People/Culture/Organization
  4. Process
  5. Technology
  6. Compliance, Governance and Risk Framework
  7. Securing Software Supply Chain
  8. Building Business Case for Software Security Program
  9. Capability Maturity Model, KPIs, and Security Metrics
  10. Key Takeaways, Next Steps, and Conclusion

This book looks at case studies and best practices from startups to Fortune 10 corporations. So, no matter the size and maturity of your organization, this book will provide something for you.

This book will be released in the third quarter of 2021 and will be offered free of charge to all. You can find out more about it at thepurplebook.club. We invite you to come join us to be part of this community.

Copyright 2023 The Purple Book Community | All Rights Reserved | thepurplebook.club
エピソード
  • Understanding The Influence Of Security Champions Program With Chitra Dharmarajan
    2022/09/28

    Security champions are integral in running a smooth business and scaling up successfully. Chitra Dharmarajan stresses why setting up a security champions program within the organization can drastically improve working relationships and keep information well-protected. She joins Nitin Raina to discuss the best time to start your own program and the right strategies to make it effective. Chitra also calls for a methodical approach to develop training and realign expectations that will help improve the skills and capabilities of security champions.

    続きを読む 一部表示
    28 分
  • The Powerful Role Of Security Champions With Bob Zinga
    2022/09/21

    Security experts are often seen as blockers in an organization, disconnected and distant from the rest of the departments. It is up to security champions like Bob Zinga to influence people to see them as partners in the most crucial situations. Bob joins Nitin Raina to share his role in raising security awareness to improve interconnectedness among different departments. He explains why security must be a major concern throughout the year, as well as how to train people to adapt this mindset to design highly functional cultures that are safe at all levels.

    続きを読む 一部表示
    23 分
  • Community Perspectives With Robert Rodriguez And Nikhil Gupta
    2022/09/14

    Companies come and go, but the good ones tend to stay. What makes for that market differentiator is the ability of companies to make a connection, earn trust, and build a community around them. This is what our guest, Robert Rodriguez, has long known and helped him build SINET. In this episode, he sits down with Nikhil Gupta to share his passion for building communities and why he thinks it is important for software security. Robert sheds light on the importance of community perspectives because even in technology, we need to bring people together to solve the problem. Join this conversation and learn the value of building a sustainable community in your business.

    続きを読む 一部表示
    19 分

Purple Book Podcastに寄せられたリスナーの声

カスタマーレビュー:以下のタブを選択することで、他のサイトのレビューをご覧になれます。