Android Backstage, a podcast by and for Android developers. Hosted by developers from the Android engineering team, this show covers topics of interest to Android programmers, with in-depth discussions and interviews with engineers on the Android team at Google. Subscribe to Android Developers YouTube → https://goo.gle/AndroidDevs
…
continue reading
Nội dung được cung cấp bởi Debra J. Farber (Shifting Privacy Left). Tất cả nội dung podcast bao gồm các tập, đồ họa và mô tả podcast đều được Debra J. Farber (Shifting Privacy Left) hoặc đối tác nền tảng podcast của họ tải lên và cung cấp trực tiếp. Nếu bạn cho rằng ai đó đang sử dụng tác phẩm có bản quyền của bạn mà không có sự cho phép của bạn, bạn có thể làm theo quy trình được nêu ở đây https://vi.player.fm/legal.
Tương tự như The Shifting Privacy Left Podcast
The Fragmented Podcast is the leading Android developer podcast started by Kaushik Gopal & Donn Felker. Our goal is to help you become a better Android Developer through conversation & to capture the zeitgeist of Android development. We chat about topics such as Testing, Dependency Injection, Patterns and Practices, useful libraries, and much more. We will also be interviewing some of the top developers out there. Subscribe now and join us on the journey of becoming a better Android Developer.
…
continue reading
Show notes are at https://stevelitchfield.com/sshow/chat.html
…
continue reading
1
Defensive Security Podcast - Malware, Hacking, Cyber Security & Infosec
Jerry Bell and Andrew Kalat
Defensive Security is a weekly information security podcast which reviews recent high profile cyber security breaches, data breaches, malware infections and intrusions to identify lessons that we can learn and apply to the organizations we protect.
…
continue reading
Every Friday and Sunday, Slate’s popular daily news podcast What Next brings you TBD, a clear-eyed look into the future. From fake news to fake meat, algorithms to augmented reality, Lizzie O’Leary is your guide to the tech industry and the world it’s creating for us to live in.
…
continue reading
The American healthcare system is one of the most innovative in the world. But it’s also riddled with complex challenges, such as access to affordable medications, inefficiency and administrative burdens, and communication barriers between providers. There’s clearly a better way—and at Surescripts, we have a unique sightline into what that may be. In this series, host Melanie Marcus, Chief Marketing Officer of Surescripts, sits down with today’s most inspiring and innovative leaders in healt ...
…
continue reading
"web3 with a16z" is a show about the next generation of the internet, and about how builders and users -- whether artists, coders, creators, developers, companies, organizations, or communities -- now have the ability to not just "read" (web1) + "write" (web2) but "own" (web3) pieces of the internet, unlocking a new wave of creativity and entrepreneurship. Brought to you by a16z crypto, this show is the definitive resource for understanding and going deeper on all things crypto and web3. Fro ...
…
continue reading
Investor Shayle Kann is asking big questions about how to decarbonize the planet: How cheap can clean energy get? Will artificial intelligence speed up climate solutions? Where is the smart money going into climate technologies? Every week on Catalyst, Shayle explains the world of climate tech with prominent experts, investors, researchers, and executives. Produced by Latitude Media.
…
continue reading
From smart phones to smart homes, the Android Police Podcast gives you exactly what you need from a tech podcast - no more, no less. Every week, each of our hosts curate topics to talk about. It could be tracking through your newsfeed or a passion project or two. We're centered on Android, but go far and wide, so if you're looking for good talk that won't waste your time, listen and subscribe.
…
continue reading
Best Business Podcast (Gold), British Podcast Awards 2023 How do you build a fully electric motorcycle with no compromises on performance? How can we truly experience what the virtual world feels like? What does it take to design the first commercially available flying car? And how do you build a lightsaber? These are some of the questions this podcast answers as we share the moments where digital transforms physical, and meet the brilliant minds behind some of the most innovative products a ...
…
continue reading
Player FM - Ứng dụng Podcast
Chuyển sang chế độ ngoại tuyến với ứng dụng Player FM !
Chuyển sang chế độ ngoại tuyến với ứng dụng Player FM !
))
S2E32: "Privacy Red Teams, Protecting People & 23andme's Data Leak" with Rebecca Balebako (Balebako Privacy Engineer)
Manage episode 380696145 series 3407760
Nội dung được cung cấp bởi Debra J. Farber (Shifting Privacy Left). Tất cả nội dung podcast bao gồm các tập, đồ họa và mô tả podcast đều được Debra J. Farber (Shifting Privacy Left) hoặc đối tác nền tảng podcast của họ tải lên và cung cấp trực tiếp. Nếu bạn cho rằng ai đó đang sử dụng tác phẩm có bản quyền của bạn mà không có sự cho phép của bạn, bạn có thể làm theo quy trình được nêu ở đây https://vi.player.fm/legal.
This week’s guest is Rebecca Balebako, Founder and Principal Consultant at Balebako Privacy Engineer, where she enables data-driven organizations to build the privacy features that their customers love. In our conversation, we discuss all things privacy red teaming, including: how to disambiguate adversarial privacy tests from other software development tests; the importance of privacy-by-infrastructure; why privacy maturity influences the benefits received from investing in privacy red teaming; and why any database that identifies vulnerable populations should consider adversarial privacy as a form of protection.
We also discuss the 23andMe security incident that took place in October 2023 and affected over 1 mil Ashkenazi Jews (a genealogical ethnic group). Rebecca brings to light how Privacy Red Teaming and privacy threat modeling may have prevented this incident. As we wrap up the episode, Rebecca gives her advice to Engineering Managers looking to set up a Privacy Red Team and shares key resources.
Topics Covered:
- How Rebecca switched from software development to a focus on privacy & adversarial privacy testing
- What motivated Debra to shift left from her legal training to privacy engineering
- What 'adversarial privacy tests' are; why they're important; and how they differ from other software development tests
- Defining 'Privacy Red Teams' (a type of adversarial privacy test) & what differentiates them from 'Security Red Teams'
- Why Privacy Red Teams are best for orgs with mature privacy programs
- The 3 steps for conducting a Privacy Red Team attack
- How a Red Team differs from other privacy tests like conducting a vulnerability analysis or managing a bug bounty program
- How 23andme's recent data leak, affecting 1 mil Ashkanazi Jews, may have been avoided via Privacy Red Team testing
- How BigTech companies are staffing up their Privacy Red Teams
- Frugal ways for small and mid-sized organizations to approach adversarial privacy testing
- The future of Privacy Red Teaming and whether we should upskill security engineers or train privacy engineers on adversarial testing
- Advice for Engineer Managers who seek to set up a Privacy Red Team for the first time
- Rebecca's Red Teaming resources for the audience
Resources Mentioned:
- Listen to: "S1E7: Privacy Engineers: The Next Generation" with Lorrie Cranor (CMU)
- Review Rebecca's Red Teaming Resources
Guest Info:
- Connect with Rebecca on LinkedIn
- Visit Balebako Privacy Engineer's website
Privado.ai
Privacy assurance at the speed of product development. Get instant visibility w/ privacy code scans.
Shifting Privacy Left Media
Where privacy engineers gather, share, & learn
Disclaimer: This post contains affiliate links. If you make a purchase, I may receive a commission at no extra cost to you.
Copyright © 2022 - 2024 Principled LLC. All rights reserved.
Chương
1. S2E32: "Privacy Red Teams, Protecting People & 23andme's Data Leak" with Rebecca Balebako (Balebako Privacy Engineer) (00:00:00)
2. Introducing Rebecca Balebako, Founder and Principal Consultant at Balebako Privacy Engineer (00:01:47)
3. How Rebecca switched from software development to a focus on privacy and adversarial privacy testing (00:03:25)
4. What motivated Debra to shift left from her legal training to privacy engineering (00:04:42)
5. What 'adversarial privacy tests' are; why they're important; and how it differs from other tests for software development (00:08:15)
6. Defining 'Privacy Red Teams,' one type of adversarial privacy test, and what differentiates them from 'Security Red Teams' (00:11:41)
7. Why Privacy Red Teams should primarily be used by organizations with mature privacy programs (00:16:49)
8. The 3 steps to conducting a Privacy Red Team attack (00:20:54)
9. How leveraging a Red Team differs from other privacy tests like conducting a vulnerability analysis or managing a bug bounty program (00:24:05)
10. How 23andme's recent data leak, affecting 1 mil Ashkanazi Jews, could have been avoided via Privacy Red Team testing (00:31:52)
11. The trend where BigTech companies are staffing up their Privacy Red Teams (00:40:44)
12. How small and mid-sized organizations with mature privacy programs can approach adversarial privacy testing (00:42:19)
13. The future of Privacy Red Teaming and whether we should upskill security engineers or train privacy engineers on adversarial testing (00:44:03)
14. Rebecca's advice for Engineer Managers who seek to set up a Privacy Red Team for the first time (00:45:10)
15. Rebecca shares information about Red Teaming resources that she put together for the audience (00:46:20)
63 tập
Chia sẻ
Manage episode 380696145 series 3407760
Nội dung được cung cấp bởi Debra J. Farber (Shifting Privacy Left). Tất cả nội dung podcast bao gồm các tập, đồ họa và mô tả podcast đều được Debra J. Farber (Shifting Privacy Left) hoặc đối tác nền tảng podcast của họ tải lên và cung cấp trực tiếp. Nếu bạn cho rằng ai đó đang sử dụng tác phẩm có bản quyền của bạn mà không có sự cho phép của bạn, bạn có thể làm theo quy trình được nêu ở đây https://vi.player.fm/legal.
This week’s guest is Rebecca Balebako, Founder and Principal Consultant at Balebako Privacy Engineer, where she enables data-driven organizations to build the privacy features that their customers love. In our conversation, we discuss all things privacy red teaming, including: how to disambiguate adversarial privacy tests from other software development tests; the importance of privacy-by-infrastructure; why privacy maturity influences the benefits received from investing in privacy red teaming; and why any database that identifies vulnerable populations should consider adversarial privacy as a form of protection.
We also discuss the 23andMe security incident that took place in October 2023 and affected over 1 mil Ashkenazi Jews (a genealogical ethnic group). Rebecca brings to light how Privacy Red Teaming and privacy threat modeling may have prevented this incident. As we wrap up the episode, Rebecca gives her advice to Engineering Managers looking to set up a Privacy Red Team and shares key resources.
Topics Covered:
- How Rebecca switched from software development to a focus on privacy & adversarial privacy testing
- What motivated Debra to shift left from her legal training to privacy engineering
- What 'adversarial privacy tests' are; why they're important; and how they differ from other software development tests
- Defining 'Privacy Red Teams' (a type of adversarial privacy test) & what differentiates them from 'Security Red Teams'
- Why Privacy Red Teams are best for orgs with mature privacy programs
- The 3 steps for conducting a Privacy Red Team attack
- How a Red Team differs from other privacy tests like conducting a vulnerability analysis or managing a bug bounty program
- How 23andme's recent data leak, affecting 1 mil Ashkanazi Jews, may have been avoided via Privacy Red Team testing
- How BigTech companies are staffing up their Privacy Red Teams
- Frugal ways for small and mid-sized organizations to approach adversarial privacy testing
- The future of Privacy Red Teaming and whether we should upskill security engineers or train privacy engineers on adversarial testing
- Advice for Engineer Managers who seek to set up a Privacy Red Team for the first time
- Rebecca's Red Teaming resources for the audience
Resources Mentioned:
- Listen to: "S1E7: Privacy Engineers: The Next Generation" with Lorrie Cranor (CMU)
- Review Rebecca's Red Teaming Resources
Guest Info:
- Connect with Rebecca on LinkedIn
- Visit Balebako Privacy Engineer's website
Privado.ai
Privacy assurance at the speed of product development. Get instant visibility w/ privacy code scans.
Shifting Privacy Left Media
Where privacy engineers gather, share, & learn
Disclaimer: This post contains affiliate links. If you make a purchase, I may receive a commission at no extra cost to you.
Copyright © 2022 - 2024 Principled LLC. All rights reserved.
Chương
1. S2E32: "Privacy Red Teams, Protecting People & 23andme's Data Leak" with Rebecca Balebako (Balebako Privacy Engineer) (00:00:00)
2. Introducing Rebecca Balebako, Founder and Principal Consultant at Balebako Privacy Engineer (00:01:47)
3. How Rebecca switched from software development to a focus on privacy and adversarial privacy testing (00:03:25)
4. What motivated Debra to shift left from her legal training to privacy engineering (00:04:42)
5. What 'adversarial privacy tests' are; why they're important; and how it differs from other tests for software development (00:08:15)
6. Defining 'Privacy Red Teams,' one type of adversarial privacy test, and what differentiates them from 'Security Red Teams' (00:11:41)
7. Why Privacy Red Teams should primarily be used by organizations with mature privacy programs (00:16:49)
8. The 3 steps to conducting a Privacy Red Team attack (00:20:54)
9. How leveraging a Red Team differs from other privacy tests like conducting a vulnerability analysis or managing a bug bounty program (00:24:05)
10. How 23andme's recent data leak, affecting 1 mil Ashkanazi Jews, could have been avoided via Privacy Red Team testing (00:31:52)
11. The trend where BigTech companies are staffing up their Privacy Red Teams (00:40:44)
12. How small and mid-sized organizations with mature privacy programs can approach adversarial privacy testing (00:42:19)
13. The future of Privacy Red Teaming and whether we should upskill security engineers or train privacy engineers on adversarial testing (00:44:03)
14. Rebecca's advice for Engineer Managers who seek to set up a Privacy Red Team for the first time (00:45:10)
15. Rebecca shares information about Red Teaming resources that she put together for the audience (00:46:20)
63 tập
Tất cả các tập
×
Chào mừng bạn đến với Player FM!
Player FM đang quét trang web để tìm các podcast chất lượng cao cho bạn thưởng thức ngay bây giờ. Đây là ứng dụng podcast tốt nhất và hoạt động trên Android, iPhone và web. Đăng ký để đồng bộ các theo dõi trên tất cả thiết bị.
Tương tự như The Shifting Privacy Left Podcast
Android Backstage, a podcast by and for Android developers. Hosted by developers from the Android engineering team, this show covers topics of interest to Android programmers, with in-depth discussions and interviews with engineers on the Android team at Google. Subscribe to Android Developers YouTube → https://goo.gle/AndroidDevs
…
continue reading
The Fragmented Podcast is the leading Android developer podcast started by Kaushik Gopal & Donn Felker. Our goal is to help you become a better Android Developer through conversation & to capture the zeitgeist of Android development. We chat about topics such as Testing, Dependency Injection, Patterns and Practices, useful libraries, and much more. We will also be interviewing some of the top developers out there. Subscribe now and join us on the journey of becoming a better Android Developer.
…
continue reading
Show notes are at https://stevelitchfield.com/sshow/chat.html
…
continue reading
1
Defensive Security Podcast - Malware, Hacking, Cyber Security & Infosec
Jerry Bell and Andrew Kalat
Defensive Security is a weekly information security podcast which reviews recent high profile cyber security breaches, data breaches, malware infections and intrusions to identify lessons that we can learn and apply to the organizations we protect.
…
continue reading
Every Friday and Sunday, Slate’s popular daily news podcast What Next brings you TBD, a clear-eyed look into the future. From fake news to fake meat, algorithms to augmented reality, Lizzie O’Leary is your guide to the tech industry and the world it’s creating for us to live in.
…
continue reading
The American healthcare system is one of the most innovative in the world. But it’s also riddled with complex challenges, such as access to affordable medications, inefficiency and administrative burdens, and communication barriers between providers. There’s clearly a better way—and at Surescripts, we have a unique sightline into what that may be. In this series, host Melanie Marcus, Chief Marketing Officer of Surescripts, sits down with today’s most inspiring and innovative leaders in healt ...
…
continue reading
"web3 with a16z" is a show about the next generation of the internet, and about how builders and users -- whether artists, coders, creators, developers, companies, organizations, or communities -- now have the ability to not just "read" (web1) + "write" (web2) but "own" (web3) pieces of the internet, unlocking a new wave of creativity and entrepreneurship. Brought to you by a16z crypto, this show is the definitive resource for understanding and going deeper on all things crypto and web3. Fro ...
…
continue reading
Investor Shayle Kann is asking big questions about how to decarbonize the planet: How cheap can clean energy get? Will artificial intelligence speed up climate solutions? Where is the smart money going into climate technologies? Every week on Catalyst, Shayle explains the world of climate tech with prominent experts, investors, researchers, and executives. Produced by Latitude Media.
…
continue reading
From smart phones to smart homes, the Android Police Podcast gives you exactly what you need from a tech podcast - no more, no less. Every week, each of our hosts curate topics to talk about. It could be tracking through your newsfeed or a passion project or two. We're centered on Android, but go far and wide, so if you're looking for good talk that won't waste your time, listen and subscribe.
…
continue reading
Best Business Podcast (Gold), British Podcast Awards 2023 How do you build a fully electric motorcycle with no compromises on performance? How can we truly experience what the virtual world feels like? What does it take to design the first commercially available flying car? And how do you build a lightsaber? These are some of the questions this podcast answers as we share the moments where digital transforms physical, and meet the brilliant minds behind some of the most innovative products a ...
…
continue reading
Player FM - Ứng dụng Podcast
Chuyển sang chế độ ngoại tuyến với ứng dụng Player FM !
Chuyển sang chế độ ngoại tuyến với ứng dụng Player FM !
