Guests: 


Kim Wuyts, Manager Cyber & Privacy, PwC Belgium [@PwC_Belgium ([ Ссылка ]) ]


On LinkedIn | [ Ссылка ]


On Twitter | [ Ссылка ]


On Mastodon | [ Ссылка ]


Avi Douglen, CEO / Board of Directors, Bounce Security & OWASP


On LinkedIn | [ Ссылка ]


On Twitter | [ Ссылка ]


____________________________


Hosts: 


Sean Martin, Co-Founder at ITSPmagazine [@ITSPmagazine ([ Ссылка ]) ] and Host of Redefining CyberSecurity Podcast [@RedefiningCyber ([ Ссылка ]) ]


On ITSPmagazine | [ Ссылка ]


Marco Ciappelli, Co-Founder at ITSPmagazine [@ITSPmagazine ([ Ссылка ]) ] and Host of Redefining Society Podcast


On ITSPmagazine | [ Ссылка ]


____________________________


Episode Notes


In this episode of On Location with Sean and Marco, host Sean Martin offers a deep dive into the OWASP AppSec Lisbon event, engaging in a meaningful conversation with Kim Wuyts and Avi Douglen. Sean starts by setting the stage for an insightful discussion focused on privacy, security, and the integration of both in modern application development.


Kim Wuyts, a Cyber and Privacy Manager at PwC Belgium, shares her journey from a security researcher to a privacy engineering expert, emphasizing the importance of privacy threat modeling and the intricate balance between security and privacy. She explains how privacy not only strengthens security but also involves complex considerations like legal, ethical, and technological aspects. Kim highlights the need for companies to adopt privacy by design, ensuring data is used with care and transparency, rather than merely being collected and stored.


Avi Douglen, Lead Consultant at Bounce Security, brings his experience in threat modeling to the conversation, recounting his learning curve in understanding the depths of privacy beyond mere confidentiality. He speaks about the importance of educating security engineers on privacy considerations and using value-driven security to protect stakeholders' interests. Avi stresses that privacy and security should be integrated from the beginning of the application development process to avoid clashes and ensure robust, privacy-respecting systems.


Throughout the discussion, the guests delve into various privacy engineering practices, including data minimization, the handling of meta-information, and the potential conflicts between security requirements and privacy needs. They touch on real-world scenarios where privacy can enhance overall security posture and how privacy engineering aligns with compliance requirements such as GDPR.


Sean, Kim, and Avi also explore the concept of architectural data mapping and selecting the right components for privacy. They discuss the evolving skill set required for privacy engineering and how integrating privacy with existing security practices can add significant value to any organization.


The episode concludes with a look at the upcoming training session at the OWASP AppSec event in Lisbon, emphasizing the need for a diverse audience, including security engineers, privacy professionals, and developers. This session aims to foster a collaborative environment where participants can expand their knowledge and apply practical privacy by design principles in their work.


Be sure to follow our Coverage Journey and subscribe to our podcasts!


____________________________


Follow our OWASP AppSec Global Lisbon 2024 coverage: [ Ссылка ]


On YouTube: 📺 [ Ссылка ]


Be sure to share and subscribe!


____________________________


Resources


Training: [ Ссылка ]


Threat modeling manifesto: [ Ссылка ]


Learn more about OWASP AppSec Global Lisbon 2024: [ Ссылка ]


____________________________


Catch all of our event coverage: [ Ссылка ]


To see and hear more Redefining CyberSecurity content on ITSPmagazine, visit: [ Ссылка ]


To see and hear more Redefining Society stories on ITSPmagazine, visit:
[ Ссылка ]


Are you interested in sponsoring our event coverage with an ad placement in the podcast?


Learn More 👉 [ Ссылка ]


Want to tell your Brand Story as part of our event coverage?


Learn More 👉 [ Ссылка ]

свернуть