Johannes Wiklund of Jotform
In this episode of Modern Cyber, host Jeremy sits down with Johannes Wiklund, the Head of Information Security at JotForm. Johannes shares his extensive expertise in the field of information security, detailing how he balances a wide range of responsibilities from application security to compliance functions, including HIPAA, SOC2, and FedRAMP. Learn about JotForm's approach to product security, the integration of bug bounty programs, and the implementation of static code analysis tools like Semgrep. Johannes also discusses the challenges of maintaining a secure SaaS platform used by millions, including major corporations, and shares his thoughts about Black Hat, B-Sides and DEF CON happening in Vegas this week. This episode is a must-listen for anyone interested in the intersection of cybersecurity and product management in the SaaS industry.About Johannes WiklundJohannes Wiklund is the Head of Information Security at JotForm, a leading SaaS application for creating online forms. With close to three years at JotForm, Johannes has been instrumental in shaping the company's information security strategy and implementation. He oversees multiple teams, including AppSec, cloud infrastructure, incident response, and governance and compliance. Johannes brings a wealth of experience in leveling up security programs for late-stage startups and has a comprehensive background in managing compliance functions such as HIPAA, SOC2, and FedRAMP/StateRAMP. His approach to security includes integrating tools like Semgrep for static code analysis and running an invitation-only bug bounty program through HackerOne. Johannes is also known for his proactive stance on data security and his ability to guide product security decisions, making him a pivotal figure in the cybersecurity landscape.