- All Products
- Software Integrity
- Semiconductor IP
- Verification
- Design
- Silicon Engineering
- Application Security Services
- Dynamic Analysis (DAST)
- Mobile Application Security
- Penetration Testing
- Managed Static Analysis
- All Services
- Software Security
- Silicon Design
- Community
- About Us
< All Products
< All Products
< All Products
< All Products
< All Products
< All Products
< overview
All Products
+ Software Integrity + Semiconductor IP + Verification + Design + Silicon Engineering + Optical Solutions< Software Integrity
< Software Integrity
Application Security Services
Dynamic Analysis (DAST) Mobile Application Security Penetration Testing Managed Static Analysis< Software Integrity
< Software Integrity
< Software Integrity
Blog
< Software Integrity
Support
< overview
Software Integrity
+ Application Security Products + Application Security Services + Resources + Training & Education Blog Support< Semiconductor IP
< Semiconductor IP
Memories & Libraries
Logic Libraries Memory Compliers Duet Packages HPC Design Kit Embedded Test & Repair Non-Volatile Memory< Semiconductor IP
< Semiconductor IP
Processor Solutions
ARC Processors Embedded Vision Processors Development Tools Operating Systems Ecosystems ASIP Tools< Semiconductor IP
< Semiconductor IP
< Semiconductor IP
< Semiconductor IP
< Semiconductor IP
< overview
< Verification
< Verification
< Verification
< Design
< Design
< Design
< overview
< Silicon Engineering
< overview
< main menu
< Solutions
< Solutions
Industry Solutions
Automotive Cloud Computing Financial Services Industrial Controls Systems Healthcare< Solutions
< overview
< All Services
< All Services
< All Services
< overview
< Software Security
< Software Security
Managed Services
< Software Security
Program Development & Design
Maturity Model (BSIMM) Maturity Action Plan (MAP) Policies & Standards Security Metrics Software Security-in-a-Box< Software Security
< Software Security
Support
< overview
Software Security
+ Software Security Services Managed Services + Program Development & Design + Training Support< Silicon Design
< Silicon Design
< Silicon Design
< Silicon Design
< main menu
< Community
< Community
< Community
< Community
Interoperability
ARC Access HAPS Connect HSPICE Integrator In-Sync System-Level Catalyst TAP-in VC Apps Access< Community
< Community
< Community
< overview
Community
+ Community + SNUG + Partners + Interoperability + Academic Programs + Company Blogs + BSIMM< About Us
< About Us
< About Us
< About Us
< About Us
Software Integrity
Silver Bullet Podcast celebrates women in cyber security
Posted by Synopsys Editorial Team on October 3, 2017
Over the past year, Synopsys’ Gary McGraw has hosted 12 women making an impact on the security industry in his monthly Silver Bullet Security Podcast. The podcast features in-depth conversations with security gurus. Past guests include technologists, academics, business leaders, and government officials.
A year ago, McGraw set out to focus his efforts on finding some of the most impactful women in security. During the so-called Year of Women, he has interviewed women in a variety of industries and roles. They all have something very powerful in common: a passion for security.
Below we’re highlighting these 12 dedicated experts to see how they’re changing the industry.
October 2016: Dr. Marie Moe
The series launched with Dr. Marie Moe, a security researcher at SINTEF and an associate professor at the Norwegian University of Science and Technology. Her most recent work focuses on public safety and security systems impacting human life. She is celebrated for her work in medical device security. Since her own life is dependent on a pacemaker, her work is near and dear to her heart—literally!
Listen as Gary and Marie discuss her research
Follow Marie Moe on Twitter
November 2016: Lesley Carhart
Next up in the series is Lesley Carhart. She is the security incident response lead at a large corporation in the Chicagoland area, where she and her team work with digital theft, misconfiguration, and hacking issues. She has 17 years of experience in IT, 8 of which have been focused on incident response and digital forensics.
Listen as Gary and Lesley discuss incident response and digital forensics
Follow Lesley Carhart on Twitter
December 2016: Kelly Lum
December’s guest was Kelly Lum, aka Aloria. She is a security engineer at Tumblr and an adjunct professor of graduate computer networking and application security at NYU. She has 13 years of experience in computer security and previously worked in both government and the financial services industry.
Listen as Gary and Kelly discuss finding bugs versus fixing bugs
Follow Kelly Lum on Twitter
January 2017: Jessy Irwin
Jessy Irwin was the first guest of 2017, introducing the topic of human-centric technology and security. She is the vice president of security and privacy at Mercury Public Affairs, where she works tirelessly to make security and privacy accessible to the average person through education and awareness. An outspoken advocate, she writes and speaks publicly about security research, strong crypto, and security education.
Listen as Gary and Jessy discuss security education and accessibility
Follow Jessy Irwin on Twitter
February 2017: Kate Pearce
February’s guest was Kate Pearce, a senior security consultant within Cisco’s Customer Solutions division. Kate approaches security from diverse perspectives encompassing defenders, builders, assessors, and attackers. Her approach blends business, academic, and assessment contexts with a clear focus on evidence-driven security approaches.
Listen as Gary and Kate discuss gender perspectives in the security space
Follow Kate on Twitter
March 2017: Chenxi Wang
Next on our list of esteemed guests is Dr. Chenxi Wang. She is the founder of the Jane Bond Project and has built an illustrious security career with experience at Forrester Research, Intel Security, CipherCloud, and Twistlock. She holds a Ph.D. in computer science from the University of Virginia.
Listen as Gary and Chenxi discuss fixing the diversity issue in tech
Follow Chenxi Wang on Twitter
April 2017: Cheryl Biswas
April’s episode welcomed Cheryl Biswas, a cyber security consultant focusing on threat intelligence at KPMG Canada. Cheryl strives to connect people within information security, with a focus on end users. She shares a passion for learning and security by blogging and speaking at conferences and through her social media presence.
Listen as Gary and Cheryl discuss work-life balance
Follow Cheryl Biswas on Twitter
May 2017: Kelly Jackson Higgins
Next up is Kelly Jackson Higgins, the executive editor at DarkReading.com. She is an award-winning veteran technology and business journalist with over 20 years of experience as a reporter and editor. Kelly’s coverage of computer (i.e., cyber) security has led her to be selected as one of the top 10 cyber security journalists in the United States.
Listen as Gary and Kelly discuss changes in security-focused journalism
Follow Kelly Jackson Higgins on Twitter
June 2017: Ksenia Dmitrieva-Peguero
June’s guest was Ksenia Dmitrieva-Peguero, a principal consultant within Synopsys Software Integrity Group. She is a subject matter expert in a variety of software security practices, including static analysis tool design and execution, customization, and deployment. She is also an expert in the areas of penetration testing and threat modeling. She speaks regularly at events around the world on topics such as HTML5, CSP, and JavaScript.
Listen as Gary and Ksenia discuss software security awareness
Follow Ksenia Dmitrieva-Peguero on Twitter
July 2017: Pavi Ramamurthy
The July episode features Pavi Ramamurthy, who manages the security ecosystem at LinkedIn as senior information security manager. The Security Ecosystem team holds much of the responsibility for software security at the firm, including software security training, awareness, bug herding, application vulnerability response, and more. Pavi has over 20 years of experience in software engineering and development and 10 years of hands-on security experience.
Listen as Gary and Pavi discuss whether a background in development makes you a better software security resource
Follow Pavi Ramamurthy on Twitter
August 2017: Wafaa Mamilli
August’s guest was Wafaa Mamilli. She is the vice president and chief information security officer (CISO) at Eli Lilly and Company, where she leads a global, enterprisewide information and product security organization. Before being named CISO, Wafaa held several international leadership responsibilities across Lilly, including a stint as information officer of their diabetes division.
Listen as Gary and Wafaa cover cultural differences in technology
Follow Wafaa Mamilli on Twitter
September 2017: Nicole Perlroth
Nicole Perlroth covers cyber security for the New York Times. Nicole is the recipient of several journalism awards for her reporting on efforts by the Chinese government to steal military and industrial trade secrets. She is currently working on a cyber security book, “This Is How They Tell Me the World Ends,” for Penguin/Portfolio (2017).
Listen as Gary and Nicole discuss life as a cyber security journalist
Follow Nicole Perlroth on Twitter
While the information security industry comprises only 11% women, these 12 snapshots of women in security are only one example of the inspiring impression that women in the industry have. How can the security industry empower and drive more women to join the security ranks? Visit the Synopsys community to tell us your thoughts.
This post is filed under Application Security.
Categories
- Agile Methodology (19)
- Application Security (214)
- Automotive Security (42)
- CI/CD (3)
- Cloud Security (15)
- Code Review (21)
- Cryptography (3)
- Data Breach (51)
- DevOps (7)
- Dynamic Analysis (DAST) (12)
- Embedded Software Testing (20)
- Ethical Hacking (6)
- Featured (3)
- Financial Services Security (16)
- Fuzz Testing (15)
- Government Security (15)
- Healthcare Security (24)
- Industrial Control System Security (8)
- Infographic (9)
- Insurance Provider Security (3)
- Interactive Application Security Testing (IAST) (2)
- Internet of Things (56)
- JavaScript Security (4)
- Maturity Model (BSIMM) (44)
- Medical Device Security (30)
- Mobile Application Security (47)
- Network Security (26)
- Open Source Security (36)
- OWASP (6)
- Penetration Testing (15)
- Red Teaming (12)
- Secure Coding Guidelines (8)
- Security Architecture (9)
- Security Conference or Event (42)
- Security Metrics (11)
- Security Risk Assessment (36)
- Security Standards and Compliance (29)
- Security Training (42)
- Smart Grid Security (3)
- Software Architecture and Design (14)
- Software Composition Analysis (8)
- Software Development Life Cycle (SDLC) (48)
- Software Quality (13)
- Software Security Program Development (42)
- Software Security Testing (207)
- Static Analysis (SAST) (43)
- Threat Intelligence (5)
- Threat Modeling (25)
- Vendor Risk Management (11)
- Vulnerability Assessment (115)
- Web Application Security (53)
Archives