Bike, software and security things. Texas, y'all. Opinions my own.
Joined August 2015
- Tweets 309
- Following 82
- Followers 100
- Likes 58
5 Photos and videos
9 Jun 2022
Compliance is needing to be told to care about security. Great security teams don't need to be told.
Security eats compliance. Change my mind.
1
1
1 Oct 2021
If you think the simplest way to do tree based queries in sql is to not, you're right.
Jacob Salassi retweeted
14 Sep 2021
Threat Detection Maturity Framework from Haider Dost who runs the ❄️ threat detection team. link.medium.com/820ykpzNxjb
2
3
We accepted the risks
23 Aug 2021
Scare a security person in five words or less!
7
12
71
18 Mar 2021
TFW you xfer all the music you own to YouTube music and realize background play is premium only.
Jacob Salassi retweeted
20 Feb 2021
I'm getting my talk for @BSidesROC ready. It's a modern version of what I did at @shmoocon 1 year ago. Now with:
- @openpolicyagent
- @falco_org
- maybe some other ideas if there's time
Why can't I just give the same talk twice? It would be so much easier...
2
1
17
⭐ Semgrep just passed 2,000 GitHub stars, yay!
📣 Today we’re thrilled to introduce Semgrep Community and announce our Series A funding from @redpointvc and @sequoia.
🙏 Thanks to all who’ve supported us along the way. We’re grateful and humbled.
More: r2c.dev/blog/2020/introducin…
1
18
65
9 Feb 2021
My appsec spirit animal @clintgibler and I rubbed our brain cells together and wrote down some thoughts on scaling appsec at ❄️ Snowflake. Maybe you will find it useful, maybe you have better ideas. Either way, would love to hear from you.
9 Feb 2021
📈 How to Scale Threat Modeling
Many AppSec teams struggle with this
Here's how @JacobSalassi did it in a hypergrowth startup: @SnowflakeDB
Now the story of a scrappy startup on its way to IPO, and the teams who had no choice but to scale their processes, together 👇
1
1
6
Jacob Salassi retweeted
9 Feb 2021
A look inside how the @SnowflakeDB security teams have evolved their role and responsibilities as the company scaled, by @JacobSalassi. I think there are some great take-aways for any size security team.
r2c.dev/blog/2021/appsec-dev…
4
13
Jacob Salassi retweeted
16 Dec 2020
Thx to everyone who came to my winded-rant at @absoluteappsec! slides are: github.com/lojikil/sisterloj…
Also, shout outs to: @infosecdad @redshiftzero @hillelogram @bmastenbrook for ideas that went into the rant!
(this is no comment on them, they bear no responsibility for this 🤣)
4
15
Jacob Salassi retweeted
16 Dec 2020
Today @clintgibler and I are publishing tl;dr sec's Risk8s Business: Risk Analysis of Kubernetes Clusters. There's tools and guidance for helping orgs go from
"The devs did what?!"
to
"Here's how we mitigate the risk to our clusters"
tldrsec.com/guides/kubernete…
1
15
46
Jacob Salassi retweeted
25 Nov 2020
I'm super excited to be presenting at @EmpireHacking on Dec 8 🙌
@trailofbits does really solid technical work and their meet-ups are similarly high quality. Cool to be a part of it :D
25 Nov 2020
It's our last Empire Hacking of 2020, with a solid line-up you don't want to miss:
@alessandrogario will demonstrate how you can easily support multiple Linux distributions with BPF.
@clintgibler will discuss and show a live demo of Semgrep, an open-source static analysis tool.
1
4
14
29 Oct 2020
great people here, great product.
⭐ Semgrep just passed 2,000 GitHub stars, yay!
📣 Today we’re thrilled to introduce Semgrep Community and announce our Series A funding from @redpointvc and @sequoia.
🙏 Thanks to all who’ve supported us along the way. We’re grateful and humbled.
More: r2c.dev/blog/2020/introducin…
1
27 Oct 2020
Well, that happened
27 Oct 2020
@JacobSalassi is live with me and @cktricky on @absoluteappsec right now to talk about threat modeling. Join us if you can. youtube.com/watch?v=LE1E0MO5…
1
2
1 Aug 2020
Check out a thing I made to 1. help developers threat model easily, 2. produce test plans from them, and 3. set themselves (and appsec teams) up for powerful long play analysis using SQL: github.com/secmerc/materiali…
@cktricky @sethlaw
2
5
11