Behind the Book: Threat-Driven Software Development
Show notes
In this episode of the Microsoft Threat Intelligence Podcast, host Sherrod DeGrippo is joined by co-authors Michael Howard, Lee Holmes, and Shawn Hernan for a discussion on their new book, Threat-Driven Software Development: Defending Online Services from Modern Threat Actors.
Together, they explore how security teams and software developers can build more resilient systems by understanding how real-world threat actors operate. From threat modeling and operational security to the evolving role of AI in both cyber defense and cybercrime, the conversation examines lessons learned from major security incidents and why secure design must be a priority from the earliest stages of software development.
In this episode you’ll learn:
Why security should be driven by real-world threat actor behavior
How developers can reduce risk through better design and operational practices
The role of threat modeling in modern software development
Some questions we ask:
How did the idea for Threat-Driven Software Development come about?
Why is operational security just as important as application security?
What do you hope readers take away from this book?
Resources:
View Michael Howard on LinkedIn
View Sherrod DeGrippo on LinkedIn
Related Microsoft Podcasts:
Discover and follow other Microsoft podcasts at microsoft.com/podcasts
Get the latest threat intelligence insights and guidance at Microsoft Security Insider
The Microsoft Threat Intelligence Podcast is produced by Microsoft, Hangar Studios and distributed as part of N2K media network.