Security Chaos Engineering with Kelly Shortridge

What is security chaos engineering?  You may remember Kelly Shortridge, our very first guest, who came on the show to talk about behavioral economics and cybersecurity.  Well Kelly is back to talk about her new book, "Security Chaos Engineering: Sustaining Resilience in Software and Systems".

Security chaos engineering is derived from chaos engineering, a relatively new discipline in software development that seeks to test distributed computing systems to ensure that they withstand unexpected disruptions.  It's all about resilience, in other words.  Security chaos engineering seeks to do the same for the security of such software systems.

Kelly breaks down her book during a lively conversation featuring an opinion or two her cat, Link (yes, a Zelda reference!):

• Who should read this book?
• Resilience in software and systems
• Systems-oriented security
• Architecting and designing
• Building and delivering
• Operating and observing (Allan's favorite chapter as it intersects with one of his Zero Trust tenets)
• Responding and recovering
• Platform resilience engineering
• Security chaos experiments (a very fun chapter!)
• Case studies

Note that the book is peppered with references and quotes from other disciplines.  We would expect no less from Kelly.

Sponsored by our good friends at Dazz:

Dazz takes the pain out of the cloud remediation process using automation and intelligence to discover, reduce, and fix security issues—lightning fast. Visit Dazz.io/demo and see for yourself.