In this episode, Katie Norton (Research Manager at IDC) gives a primer on tech industry analysts. The conversation provides insights on how to find the right analyst firm based on company needs and the importance of asking good questions during consultations. Additionally, they address common myths about analysts being 'pay to play' and examine the impact of recent npm supply chain attacks on the industry.
00:00 Introduction: Analyst vs. Consultant
02:12 Finding the Right Analyst Firm
04:27 The Importance of Asking Good Questions
07:30 Debunking the 'Pay to Play' Myth
10:55 Current Trends in Malware and Supply Chain Security
16:17 Understanding Application Security Posture Management (ASPM)
22:32 Conclusion: Navigating the Analyst Landscape
What we should know about the security of AI-generated code, and how we can improve it.
Get an inside look at how a DevSecOps team at Adobe is using AI/ML to revolutionize their WAF rule management program. Ammar Alim (Senior Manager, DevSecOps @ Adobe) shares how they’re leveraging existing resources to dynamically create, deploy, and refine WAF rules without requiring new tools or increased budget.
