GitLab’s CISO Josh Lemos on the pros and cons of making security practices public

In this episode of The Future of Security Operations podcast, Josh Lemos, the Chief Information Security Officer (CISO) at GitLab, discusses his extensive experience in security and leadership, focusing on AI-driven strategies, offensive security, and automation. With a background in companies like ServiceNow, Cylance, and Square, Josh shares insights on managing a transparent security function and aligning a remote, global team. He emphasizes the importance of building a culture of trust and connection, particularly in remote settings, and offers advice on networking, hiring, and mentoring future security leaders. The conversation also touches on the evolution of AI, particularly its impact on security, and the significance of intentional transparency at GitLab. Josh highlights GitLab's use of automation and orchestration to enhance security processes, and he expresses optimism about the future of security operations, advocating for risk management, governance, and the potential of self-funded security initiatives.