The New Stack Makers

In this, The New Stack Makers Livestream podcast, hosted by Alex Williams, founder and publisher of The New Stack, the security challenges associated with moving to a public cloud is the central theme. Issues such as what are the different ways that attackers can attack an enterprise that is using public cloud infrastructure and how the enterprises can defend themselves from such attacks are discussed. The guests are Ankur Shah, vice president of products, Prisma Cloud, Alok Tongaonkar, director, data science, Palo Alto Networks and Gaspar Modelo-Howard, principal data scientist at Palo Alto Networks.

In this episode, co-hosts Alex Williams, founder, and publisher of The New Stack, and Randall Degges, head of developer advocacy at security services provider Okta, speak with guest Ev Kontsevoy, co-founder and CEO of Teleport, which offers organizations instant access to computing resources. An organization’s cloud security processes often cover several different cloud providers, while oftentimes hundred, if not thousands, of developers all have multiple cloud accounts. Since each account typically adheres to different security systems and policies, managing it all represents yet another security challenge DevOps teams face. Web security is the theme of the latest episode in our new series “Security @ Scale” on The New Stack Makers with Okta. The series explores security in modern environments with stories from the trenches including security horror stories and fantastic failures.

In this episode, co-hosts Alex Williams, founder and publisher of The New Stack, and Randall Degges, head of developer advocacy at security services provider Okta, discuss the challenges associated with building a security-minded culture and what works and what does not work. Culture is a cornerstone of sound security policy. However, at many — if not most — organizations, cultural changes are warranted in a number of ways, not least of which for security and policy. How to build a security-minded culture is the theme of the latest episode in our new series “Security @ Scale” on The New Stack Makers with Okta. The series explores security in modern environments with stories from the trenches including security horror stories and fantastic failures.

In this, The New Stack Makers podcast, hosted by Alex Williams, founder, and publisher of The New Stack, Joe Vaccaro, head of products, ThousandEyes, discussed today’s digital supply chain for the modern app experience and managing backend interdependencies. The days are long gone when users accessed data mainly through local area network (LAN) connections and ran applications stored on centralized servers in the data center. Conversely, in today’s highly distributed network experience, the user’s access to applications is through a vast contingent of network connections, supported by microservices and in multicloud environments. Application performance is also highly dependent on DNS and other network connections for which organizations often lack visibility into the complete digital supply chain. In many cases, for example, it is thus difficult to determine whether sub-par application performance is due to network connectivity or bad code in the stack.

This episode of The New Stack Makers series with Okta, on all topics related to development and security at scale, features the development requirements for securing mobile apps. They are explored from two points of view: the database and authentication. Guests Ian Ward, senior product manager, mobile, for MongoDB discusses synchronizing mobile data with backend databases and his related work on Realm, a mobile database, and Aaron Parecki, senior security architect, for Okta, describes authentication, and OAuth, for which he is the spec editor and member of the OAuth working group. Alex Williams, founder and publisher of The New Stack hosts with co-host Randall Degges, head of developer advocacy at API security firm at Okta.

“Black women are the moral compass of this country,” Kim Crayton said, referring to the United States in this episode of The New Stack Makers. But it’s exhausting work. And repetitive, to continue to offer the same basics to white people of what’s wrong with a country, an economy, and a tech industry that’s systemically built on anti-Blackness. “Tech always thinks in binaries, which gets on my nerves. People of color, people from marginalized communities, we survive living in the gray. There is no right, wrong, good, bad because it changes situationally. So you have people who want to flip the tables. And then folks act like the only alternative is to prepare marginalized communities to go into spaces and work in places where they’re going to be harmed,” Crayton said.

In this edition of The New Stack Analysts podcast, host Alex Williams, founder and publisher of The New Stack and co-host Cheryl Hung, vice president of ecosystem at CNCF Cloud Native Computing Foundation (CNCF), discuss why secrets management is essential for DevOps teams, what the tool landscape is like and why Vault was selected as the top alternative. CNCF Tech Radar contributors and featured guests were Steve Nolen, site reliability engineer, RStudio — which creates open source software for data science, scientific research and technical communication — and Andrea Galbusera, engineering and co-founder, AuthKeys, a SaaS platform provider for managing and auditing servers authorizations and logins.

In this episode, co-hosts Alex Williams, founder and publisher of The New Stack, and Randall Degges, head of developer advocacy at security services provider Okta, speak with guest Dustin Rogers, staff application security engineer, Netlify, about all things related to static Web security management. Netlify is a popular static website hosting platform for Jamstack used by over a million web developers. But while Netlify is popular, thanks to its simplicity for uploading code to the platform from GitHub and managing Web applications once uploaded, the security it offers for the static environments is of interest as well. Using Netlify as a case example, static websites’ security layers and related security practices are the themes of the latest episode in our new series “Security @ Scale” on The New Stack Makers with Okta. The series explores security in modern environments with stories from the trenches including security horror stories and fantastic failures.

In this The New Stack Makers podcast, hosted by Alex Williams, founder and publisher of The New Stack, Vaibhav Kamra, chief technology officer, Kasten by Veeam, discussed the changes he has observed, and ultimately, the lessons learned during the past year. During this time, Kasten has provided the necessary platforms for application and data management that organizations rely on to scale across Kubernetes applications.

Okta sponsored this podcast. This episode of The New Stack Makers series with Okta on all topics related to development and security at scale features guest Anant Jhingran, CEO, StepZen. Jhingran’s deep well of experience, including long stints at IBM, Apigee, Google, and, currently, CEO of StepZen certainly qualifies him as a leading expert on APIs and their role in today’s DevOps environments. Co-hosted by Alex Williams, founder and publisher of The New Stack, and Randall Degges, head of developer advocacy at Okta, Jhingran offers his take on how APIs have evolved, their potential for the developer community and how their success accounts, in part, for their exposure to vulnerabilities.

In this The New Stack Makers podcast, Varun Badhwar, senior vice president, product, Palo Alto Networks, puts today’s multicloud security challenges into perspective. He also describes how Prisma Cloud 2.0 offers a single and comprehensive security alternative for cloud native applications across different cloud platforms.

Welcome to our new series ‘Security @ Scale’ on The New Stack Makers with Okta exploring security in modern environments with stories from the trenches including security horror stories and fantastic failures. In this episode, co-hosts Alex Williams, founder and publisher of The New Stack, and Randall Degges, head of developer advocacy at Okta, speak with guest Marc Rogers, vice president, cybersecurity, Okta, and co-founder of the CTI League, to discuss the anatomy of what will likely be considered to be one of the most disruptive hacks in the history of Wall Street. It could also change how institutional and individual investors buy, sell — and short — stocks in the future that are traded on U.S. exchanges.

This The New Stack Makers podcast series features a number of guests who speak during Palo Alto Networks’ Cloud Native Security Virtual Event. In this segment, Alex Williams, founder and publisher of The New Stack, hosts a roundtable with Palo Alto Networks customers who share their experiences and insights about cloud native security and other related topics. The guests are Brian Cababe, director of cyber security, architecture and governance, Cognizant; Tyler Warren, director of IoT security, Prologis and Alex Jones, infosec manager, Cobalt.io. A key talking point is how legacy on-premises practices and processes cannot be directly transferred to work for cloud native security and management. Jones noted, for example, that when moving to the cloud, the first question for threat modeling is “what are we doing?”

This edition of The New Stack Makers podcast features a number of guests who speak during Palo Alto Networks’ Cloud Native Security Virtual Event. It kicks off with none other than Seth Meyers, an Emmy Award-winning comedian of “Late Night with Seth Meyers” and “Saturday Night Live (SNL)” fame. Meyers’ interview with Palo Alto Networks founder and CTO Nir Zuk is followed by a customer roundtable hosted by Alex Williams, founder and publisher of The New Stack, with guests Brian Cababe, director of cyber security, architecture and governance, Cognizant; Tyler Warren, director of IoT security, Prologis and Alex Jones, infosec manager, Cobalt.io. Meanwhile, the event concludes with a talk on Prisma Cloud 2.0, given by Varun Bradhwar, senior vice president, product, Palo Alto Networks. Meyers began the session by declaring that “much like Nir Zuk, I am a cyber security luminary.” He also said he didn’t want to “brag too much” about his accomplishments, but said using your mother’s maiden name to recover passwords

Prisma Cloud from Palo Alto Networks sponsored this podcast. Security teams need a higher appetite for risk. While accepting, and even embracing risk is widely accepted outside the sphere of IT, risk also often plays a role in DevOps operations, developer and SRE team culture. However, security teams typically have yet to accept and manage risk in this way. In this edition of The New Stack Makers podcast, hosted by Alex Williams, founder and publisher of The New Stack, how and why security teams need to rethink risk, with the aim of improving resiliency and achieving other benefits that thus far have remained elusive for many organizations, is discussed. The guests were Matt Chiodi, chief security officer of Public Cloud at Palo Alto Networks, Meera Rao, senior director of product management, Synopsys and Tal Klein, chief marketing officer, Rezilion.

Prisma Cloud by Palo Alto Networks sponsored this podcast. Palo Alto Networks John Morello, vice president of product, has for a long time talked about the basics that come with cloud native security. In this edition of The New Stack Makers, hosted by Alex Williams, founder and publisher of The New Stack, Morello discusses how APIs are less the weakest link and are more so better known due to the widespread use of APIs, especially in the past five years. There are more people developing APIs, there are more people consuming APIS and there are more attackers who are exploiting APIs — and that makes the basics more important than ever both now and as more applications go online.

Harness sponsored this podcast. The growing pains continue: As organizations push ahead, shifting to Kubernetes and cloud native environments at scale, the complexities of managing Kubernetes clusters increase as well. The associated challenges of adoption, and then managing these highly distributed containerized environments, remain daunting. For many DevOps teams, the advent of “Kubernetes complexity fatigue” has become a concern. In this episode of The New Stack Makers podcast, hosted by TNS founder and Publisher Alex Williams, Kubernetes complexity fatigue, and more importantly, what can be done about it, are discussed. The guests were Ravi Lachhman, evangelist at Harness, and Frank Moley, senior technical engineering manager at DataStax.

Prisma Cloud by Palo Alto Networks sponsored this podcast. This edition of The New Stack Makers podcast featured a news announcement: Palo Alto Networks is providing a new approach to protecting APIs with the release of its WAAS (web application and API security). As BotNets become more sophisticated, Palo Alto’s WAAS bot-defense platform offers API security, runtime protection, and other security features for today’s cloud native environments. Hosted by Alex Williams, founder, and publisher of The New Stack, guest Ory Segal, senior distinguished research engineer, Palo Alto Networks, discussed how the company’s WAAS offers apps end-to-end protection for loosely coupled services in declarative environments and a range of other capabilities.

In this, The New Stack Makers podcast hosted by TNS founder and publisher Alex Williams; guest Nanda Vijaydev, distinguished technologist and lead data scientist, HPE, discusses how the concepts of loosely coupled architectures are now playing a part in data-centric applications on Kubernetes. It’s an evolution that has been taking shape, preceded by the use of Kubernetes for microservices development — as opposed to data-centric approaches that have historically been developed on tightly coupled, monolithic architectures.

In my 2021 web development predictions, I identified 2 key trends heading into this year: serverless expanding into a more full-featured platform (for example, stateful apps becoming a reality on serverless), and the continued growth of JavaScript (and especially React). Jamstack is another growth area, although that’s at a much earlier stage. To discuss these and other frontend trends, I spoke to David Cramer, co-founder, and CTO of Sentry, an application monitoring platform. You can hear the full discussion on The New Stack Makers podcast, but in this article, I’ll review the main talking points.