It's 2023 and security still needs to earn some respect if they want to slide their Sec between Dev and Ops. Their tooling slows down deployment pipelines, typically finding more false positives than real bugs, usually in code written years ago, and often harming development velocity. To their credit, security teams will occasionally make concessions, like pulling long-running rules out of static analysis engines, but that means that the bugs those tools would otherwise find get caught months later in bug bounties, penetration tests, or security incidents. Bug reports for code you didn't...
Eran Medan
Chief Technology Officer
Arnica
Eran Medan serves as the Chief Technology Officer at arnica.io, a real-time application security startup. Previously, he was a Senior Software Development Manager at Amazon Web Services, where he led the team behind the AWS Jam service. Eran holds a Master of Science in Computer Science from the Georgia Institute of Technology and lives in Alpharetta, GA.