# Why Basic Security Practices Still Work - Rob Allen - ASW #382

Page: https://stenobird.com/podcast/application-security-weekly-audio-436682/why-basic-security-practices-still-work-rob-allen-asw-382
Text version: https://stenobird.com/podcast/application-security-weekly-audio-436682/why-basic-security-practices-still-work-rob-allen-asw-382.md
Podcast: [Application Security Weekly (Audio)](https://stenobird.com/podcast/application-security-weekly-audio-436682)
Published: 2026-05-12T09:00:00+00:00
Episode link: https://aswaudio.libsyn.com/why-basic-security-practices-still-work-rob-allen-asw-382
Audio file: https://dts.podtrac.com/redirect.mp3/traffic.libsyn.com/secure/aswaudio/ASW_382_1--0607d16c-744a-4074-8b49-626778dc1cc8--audio-converted--cd868376-73bc-4c3e-86f0-ad244b4b12e6.mp3?dest-id=626765
Processing state: not_requested
JSON: https://stenobird.com/v1/public/podcasts/application-security-weekly-audio-436682/episodes/why-basic-security-practices-still-work-rob-allen-asw-382
Duration seconds: 4313

## Resource

If you have to ditch your entire appsec strategy because you expect 2026 to bring more vulns more quickly, then you probably didn't have a good strategy in the first place. Rob Allen shares how the mentality of "assume breach" doesn't have to be a defeatist attitude and can instead be a way to change a catastrophic breach into a more contained one. We also talk about proactive security and what an "avoid breach" attitude could look like, including how to apply the macro lessons of default deny and network isolation to writing secure code. Resources https://www.threatlocker.com/blog/the-claude-mythos-preview-proves-now-is-the-time-for-zero-trust?utm source=cyber risk alliance&amp;utm medium=sponsor&amp;utm campaign=claude mythos asw q2 26&amp;utm content=claude mythos asw-&amp;utm_term=podcast https://www.threatlocker.com/capabilities/zero-trust-network-access?utm source=cyber risk alliance&amp;utm medium=sponsor&amp;utm campaign=ztna q2 26&amp;utm content=ztna-&amp;utm_term=podcast https://www.threatlocker.com/capabilities/zero-trust-cloud-access?utm source=cyber risk alliance&amp;utm medium=sponsor&amp;utm campaign=ztca q2 26&amp;utm content=ztca-&amp;utm_term=podcast This segment is sponsored by ThreatLocker. Visit https://securityweekly.com/threatlocker to learn more about them! Visit https://www.securityweekly.com/asw for all the latest episodes! Show Notes: https://securityweekly.com/asw-382

## Actions

- request_transcript: `POST https://stenobird.com/v1/public/podcasts/application-security-weekly-audio-436682/episodes/why-basic-security-practices-still-work-rob-allen-asw-382/transcription-requests` — Idempotently request low-priority transcript generation for this episode.
- read_markdown: `GET https://stenobird.com/podcast/application-security-weekly-audio-436682/why-basic-security-practices-still-work-rob-allen-asw-382.md` — Read the agent-friendly Markdown representation of this episode resource.

A page view does not enqueue transcription. Agents should invoke `request_transcript` explicitly when they need this episode processed.

## Transcript

Full transcripts are not published on public pages unless there is a clear rights basis.