196: Troy Hunt — Securing Your SaaS

Troy Hunt (of HaveIBeenPwned fame) is a cybersecurity expert who has been around long enough to be able to give actionable and pragmatic security advice without complicating things.In our conversation, we chat about best practices for securing your SaaS business, how to get your family to be more secure, what it means to vet your vendors, if you should build your own authentication and why passwords just won't die.After this conversation, you will know how to adequately secure your SaaS business without having to spend thousands of dollars.00:00:00 Troy Hunt00:00:59 The 1 thing SaaS founders get wrong00:05:14 Why you shouldn’t build your own authentication00:09:17 Library update management00:13:42 Using third-party services00:19:08 Data breaches and security expectations00:26:39 Browser extensions00:31:53 What is the right amount of security?00:37:11 Giving your customers security options00:42:13 The Have I Been Pwned + 1Password deal00:48:18 Password managersThe blog post: https://thebootstrappedfounder.com/securing-your-saas-with-troy-hunt/ The podcast episode: https://share.transistor.fm/s/d2244c65 The video: https://www.youtube.com/watch?v=oRM-UrS440s You'll find my weekly article on my blog: https://thebootstrappedfounder.comPodcast: https://thebootstrappedfounder.com/podcastNewsletter: https://thebootstrappedfounder.com/newsletterMy book Zero to Sold: https://zerotosold.com/My book The Embedded Entrepreneur: https://embeddedentrepreneur.com/My course Find your Following: https://findyourfollowing.comFind me on Twitter: https://twitter.com/arvidkahl/This interview is sponsored by Acquire.com