The Seiso Side-Up Podcast

On this episode of the Seiso Side Up podcast, we welcome two guests - Jake Mayhew and Justin Leapline. Jake has decades of experience performing and teaching the ins and outs of penetration testing, at times performing tests for companies that handle cardholder data, and Justin is a subject matter expert in the world of PCI (Payment Card Industry) security & compliance. Join us as we dive into the gotchas of becoming PCI compliant and how to best approach penetration testing as part of the PCI compliance journey.

On this episode, CTO Jon Zeolla and Sr. Security Engineer Keith Holland discuss the inner-workings of the Seiso open source project, easy_infra.
easy_infra is a docker container that simplifies and secures Infrastructure as Code deployments by running security scans prior to running IaC tools. It supports three main use cases:
Experimentation by supporting interactive use and secure troubleshooting.
Continuous Integration as a part of Pull/Merge Request validation.
Continuous Deployment as an automated deployment tool.
https://github.com/SeisoLLC/easy_infra

Listen in as Seiso GRC Engineers discuss the evolution of the practice through a commonly known set of informations security and risk scenarios that focus on security best practices, resiliency, and the overarching guardrails to keep everything operating in harmony. 

Joe Wynn (CEO) and Jon Zeolla (CTO) tell us about how and why they started https://seisollc.com and even more about where Seiso is headed through continuous innovation, constant learning, and bringing creative, frictionless information security / risk management practices to the Seiso customers. 
Tune in to hear all about Seiso origin stories and some special segments that give you the insight into what makes Seiso a great business partner.

Senior Security Engineer Keith Holland and Lead Security Engineer Sean Cavanaugh talk about the intricacies and challenges facing application security practitioners in today's modern cloud-based software development world. The Original Rebel Scrum team was formed as Seiso adopted the Agile methodology to project management, lead by co-host Lauren Shaffer. Throughout their time at Seiso, both Sean and Keith have helped grow the DevSecOps, Web Application Pentesting, and Product Security practices.

Senior GRC Engineer Heidi Patrick and Security Consultant Justin Fearon talk all things CMMC. In this episode, we discuss the gotcha's when approaching CMMC compliance and how Seiso facilitates a process to reach CMMC readiness with creativity, allowing our customers to achieve their cybersecurity goals and eventually move towards the assessment process against CMMC requirements.

In this episode, our Seiso Side-Up co-hosts talk about what this podcast is all about, segments that we'll showcase, and a little background on our co-hosts themselves.