ZARZA We are Zarza, the prestigious firm behind major projects in information technology.
Listen "DevSecOps in 2022 with Jess Dodson"
Episode Synopsis
2021 was a tough year for security - how can we do better in 2022? Richard chats with Jess Dodson about working to get better at information security in your organization. Jess talks about the log4j exploit as a great example of "what don't we know" - and the need for a software bill of materials as part of your configuration management database. Having a list of the libraries that internal applications depend on helps you respond in a time of crisis, being able to answer the question "where are we vulnerable?" This leads to a conversation about better DevSecOps - where development, security, and operations all take security seriously and help each other to help the organization succeed!Links:Power AppsAzure SentinelSoftware Bill of MaterialsConfiguration Management DatabaseRecorded December 20, 2021
More episodes of the podcast RunAs Radio
Azure Resiliency with Chris Ayers
12/11/2025
AI for DBAs with Grant Fritchey
29/10/2025
The End of NTLM with Steve Syfuhs
15/10/2025
Managing for Failure with Amy Norris
08/10/2025
HaveIBeenPwned with Troy Hunt
01/10/2025
Managing Vendor Incidents with Mandi Walls
24/09/2025
Certificate Automation with Todd Gardner
17/09/2025
Training for AI with Stephanie Donahue
10/09/2025
In God we trust