David Spark
π€ SpeakerVoice Profile Active
This person's voice can be automatically recognized across podcast episodes using AI voice matching.
Appearances Over Time
Podcast Appearances
And if instead you say, no, no, no, I will have flat roads.
I go pave them every day.
And so the moment there's a deviation, you just fix it.
Like it completely changes the experience for everybody else because they're not trying to work around potholes or road crews.
I would love to see that world, but I don't think we're headed for that.
I think we've got a different disaster on the horizon.
And that is?
Walking the show floor, the most vendors at RSA are in application security.
The number of vendors trying to tackle this problem with 18 different ways.
The problem has never been our ability to find vulnerabilities.
Has never been the ability to create patches for those vulnerabilities.
And it has always been the inability of security teams to get development teams to actually integrate those fixes for a lot of reasons.
Like SDLCs are really complicated.
They do not self-heal.
Lots of issues in there.
Right.
We'll connect and we'll make it easier for you to issue tickets to a team that's going to ignore them.
function that's wrong like we had an entire industry space that was sore security operations and automated response didn't really go anywhere why because at the other end of it we nobody trusts security to issue a change and just let that change go out it has to go through change management that everybody's going to fight so until we get to ai managed code bases
Like, we're not going to see a massive change here.
What is fascinating, and I was very glad to see when Cloud Code did this, when it was like, oh, let's go actually find vulnerabilities in open source.