Irfaan Santoe - Security Champion Program Guide Artwork

The Security Champions Podcast

Automation, Generative AI, Shift Left - the world of application security is evolving fast, and so are the conversations that shape it.

Welcome to The Security Champions Podcast, the go-to resource for insights from the front lines of application security. The podcast is cohosted by Michael Burch, Director of Application Security for Security Journey, and Dustin Lehr, the Director of AppSec Advocacy. Each month, one of them shares a candid conversation with security leaders, engineering voices, and software experts.

From championing secure development practices to navigating real-world challenges in modern SDLCs, this show explores how teams are scaling appsec, strategy and culture.

New Episodes drop monthly, with even more security content at https://www.securityjourney.com/

Always remember: Security is a Journey, not a Destination.

~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~

This podcast is sponsored by Security Journey.

FOLLOW US to stay up-to-date with new content!
X (https://x.com/SecurityJourney)
LinkedIn (https://www.linkedin.com/company/7574213)
Instagram (https://www.instagram.com/securityjourney/?hl=en)
YouTube (https://www.youtube.com/@UCBVPnBCNcZqx_WAuCsV6BuA )
Online (securityjourney.com)
CONTACT: hello@securityjourney.com

All Episodes

The Security Champions Podcast

Irfaan Santoe - Security Champion Program Guide

October 14, 2024 • Mike Burch • Season 2 • Episode 4

Irfaan Santoe is the leader of the OWASP Netherlands chapter and the creator of the OWASP Security Champions Guide. He is passionate about scaling security in AppDev, DevOps, and Cloud and has helped numerous multinationals solve information security challenges.

In this episode of The Security Champions Podcast, Irfaan walks through the Security Champion Program Guide. He shares the motivation behind the project, what makes this guide different, how security champions can affect real change, and more!

[0:05] Welcome to The Security Champions Podcast
[14:13] The Motivation Behind the OWASP Security Champions Guide
[18:02] How To Get Buy-In for a New OWASP Project
[21:28] Why the Champions Guide is Different
[28:26] How To Make Everyone a Security Champion
[32:49] Engineers are Part of the Security Team
[37:52] Facilitating Behavioral Change
[41:02] How Security Champions Bring the Community Together

Episode Resources:

OWASP Security Champions Guide - https://owasp.org/www-project-security-champions-guidebook/

~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~

Podcast sponsored by Security Journey, Secure Coding Training for Developers and Everyone in the SDLC. Learn more at securityjourney.com.

LinkedIn (linkedin.com/company/security-journey)
Instagram (https://www.instagram.com/securityjourney)
YouTube (youtube.com/c/securityjourney)
Twitter (twitter.com/SecurityJourney)
Online (securityjourney.com)
CONTACT: hello@securityjourney.com