I recently had the chance to join Guy Podjarny of Snyk to record an episode of The Secure Developer podcast. We spoke about my time at Intercom and my winding journey into security engineering starting from the product side. You can find a link to the recording and a full transcript of the episode here.

Guy and I spoke about what I see as the big overlaps between product and security engineering, and the role that empathy plays when you’re developing security tools for an internal engineering audience. I also had a chance to share details of some anti-XSS and authorization engineering projects that I worked on while at Intercom to give examples of how this all works in practice. I had a fun time talking with Guy, and I really hope you’ll enjoy listening to our conversation.