The book is here! Read it now

Welcome to
The Purple Book Community

Where the World's Top Software security Thought leaders come To sharpen their saw

Our Vision

To build a purpose driven, trusted, and safe community that equips people with the expertise to embrace secure development practices, connect with other practitioners to solve the ever-evolving challenges, and ultimately democratize software security.
Hello,

Software Security Leaders & Practitioners

You are invited
Securing software in a world moving at the speed of DevOps is a monumental challenge. To take this challenge head-on, we brought 25+ innovative security leaders together to build a community and write a modern reference book to address the State-of-Software-Security.

Our book and the vibrant community supporting it have set out to create awareness, share challenges, and promote best practices that inspire secure development.

We're sharing The Purple Book as a free resource so that people and organizations everywhere can work towards simplifying security, while staying protected and compliant. To power it, we need dynamic insights from leaders across the field. Join us and be a part of software security's ever-evolving dialogue.

Coauthors of the Purple Book

The Purple Book Community Leaders

Shannon Lietz
DevSecOps, Founder, DevSecOps Foundation
Suchindran Ramachandran
VP / Cyber Security, Mphasis
Sumit Johar
CIO, Automation Anywhere
Todd Dekkinga
CISO, Airgap Networks
Leon Ravenna
CISO, Kar Global
Gopi Ramamoorthy
Leader of Security Compliance, Cloud for Life Sciences
Sujeet Bambawale
CISO,
7-11
Ratinder Ahuja
CTO / VP,
PureStorage
Prabhath Karanth
Director, Security, Compliance & Assurance,
Trip Actions
Mel Reyes
Head of IT Security,
Getaround
Sangram Dash
Sr. Director - Security GRC and IAM at CDK Global
Dustin Lehr
Director, Application Security, Fivetran
Paul Griffiths
CISO, S&P Global
Mark Merkow
Application Security Architect, HealthEquity
Michael Michado
CISO,
Shippo
Zeid Zumot
IT and Enterprise Security
Matthew Sharp
CISO, Logicworks
Sundar Vincent
Information / AppSec-Architect / Strategist, PayPal
Natarajan K V
AVP / CyberSecurity, FAB
David Scott
Head of Digital Security and Data Privacy, Natus Medical
John McCormick
CTO / CISO / Privacy Leader, TIAA Gresham Investment Fund
Shamyo Chatterjee
Chief Information and Technology Officer, Satellite Healthcare / WellBound
Srini Cherukuri
Head, Cloud & DevOps Engineering, Pacific Gas and Electric Company
Rohit Parchuri
VP, CISO, Yext
Daniel Hooper
CISO, Varo Bank
Tejas Shroff
Sr. Director / Managed Security Services, NTT DATA Services
Timothy Walsh
Principal Information Security Analyst, Mayo Clinic
Vinodh Kumar Allam
Practice Partner, Wipro Technologies
Michael Piscatello
Solution Architect, EY
Selim Aissi
CISO on Sabbatical, Board Director, Board Advisor, Angel Investor, Ex-CISO of EllieMae
Shaq Khan
Founder and CEO,
Fortifire
Aarushi Goel
Software Dev. Manager - AppSec,
GoDaddy
Nick Shevelyov
CSO,
Silicon Valley Bank
Oleg Gryb
Head of Platform Security Architecture,
LinkedIn
Patrick Benoit
VP/Global Cyber Governance,
CBRE
Reza Nazeman
CEO,
CIO Ventures
Raghav Srinivasan
Engineering Manager,
Dropbox

The Security Visionary Checklist:

Do you think today’s software, application, and product security are too complicated and prone to vulnerabilities?
Are you looking to share your expertise in software, application, or product security?
Is networking with and learning from other security thought leaders a personal goal?
If you answered “Yes” to any of these,
Purple might be your new color.
CISOs, CTOs,
and CIOs
Software
Security Influencers
The Purple
Book of Software Security
MSSP
and Security Partners
Analysts
and Academics

One Book, Many Goals

Spread Challenge Awareness
Further knowledge of the biggest roadblocks to software, application, and product security
Create a Valuable Resource
Produce an evolving book of insights and best practices that professionals can put to daily use
Power Networking
Provide a platform for practitioners, thought leaders, and influencers to connect and exchange ideas
Amplify Recognition
Give AppSec evangelists and DevSecOps champions their time in the spotlight, and celebrate their achievements

Testimonials

I am pretty stoked for the launch of The Purple Book & Community. It has been a few months in the making and it was great to exchange insights and experiences with solid security folks. Thank you, team!
Poornaprajna Udupi
CTO, Good Money, ex-Netflix Security
The Purple Book is a useful guide and community of practitioners focused on accelerating software delivery while ensuring it’s secure, enabling digital transformation, and increasing business value.
Shaun Khalfan
SVP, CISO, Discover Financials