Application Security PodCast Podcast Episodes Online

Loading podcasts

Fetching podcast shows and categories...

Loading page

Opening Radio and Podcast...

Ready2SERAustralia · College Radio, World Music

Live--:--

Application Security PodCast Podcast Episodes Online | Radio and Podcast

Episodes

50 of 299 episodes

Tanya Janca - Secure Vibe Coding

AI isn’t just helping developers anymore; it’s writing the code, and that changes everything. In this episode, Tanya Janca breaks down “vibe...

47:57Apr 30, 2026

Caroline Wong--The AI Cybersecurity Handbook

Caroline Wong, author of The AI Cybersecurity Handbook and Chief Strategy Officer at Axari, is back! Caroline shares how AI is rapidly chang...

44:53Apr 21, 2026

Steve Wilson--OpenClaw and Advanced AI Agents

In this episode of the Application Security Podcast, Chris Romeo and Robert Hurlbut welcome back Steve Wilson, a global leader in AI securit...

49:30Apr 15, 2026

Brad Geesaman - Redefining AppSec with AI: Shrinking Toil, Expanding Impact - How LLMs are able to reduce toil in triage-heavy AppSec workflows

Brad Geesaman, Principal Security Engineer at Ghost, joins the podcast today to explore how AI and large language models are transforming th...

42:19Oct 28, 2025

OWASP Candidate Debate - 2025 Edition

In this special episode of the Application Security Podcast we meet nine of the OWASP Board of Directors candidates. Each candidate discusse...

68:09Oct 15, 2025

Francesco Cipollone - Agentic AI Manifesto

Francesco Cipollone, the CEO of Phoenix Security, shares his extensive experience in AI and security, discussing the crucial difference betw...

33:19Sep 23, 2025

Simon Gibbs & Devika Gibbs -- Building Bridges with Games

Simon and Devika Gibbs, the innovative minds behind Cybersec Games , join us on the episode today. Discover how the Gibbs duo are revolution...

36:03Sep 16, 2025

Akansha Shukla - Modern AppSec: Securing APIs with Threat Modeling and DevSecOps

Our guest today is Akansha Shukla, an information security professional with over 10 years of experience in application security, DevSecOps,...

35:35Sep 2, 2025

Getting Ready for the EU CRA

The European Union's Cyber Resilience Act is set to revolutionize how we approach product security worldwide. In this episode, we sit d...

40:46Aug 20, 2025

Marisa Fagan - Measuring Security Culture

Marisa Fagan, Head of Product at Katilyst and veteran security culture expert joins us today to share practical strategies for building and...

50:05Aug 5, 2025

Aram Hovsepyan -- Your Security Dashboard is Lying to You: The Science of Metrics

Aram Hovsepyan joins the podcast today to chat about the misconceptions behind common security metrics. Aram tells us how total vulnerabilit...

40:52Jul 22, 2025

Sean Varga -- OWASP Top 10 for AppSec Sales

We’re discussing the intersections of application security (AppSec) and sales strategy with our guest, Sean Varga. Sean shares the unique ch...

47:13Jul 15, 2025

Sarah-Jane Madden -- What AI means for AppSec

Sarah Jane Madden joins us to discuss the evolving role of AI in software development. We reflect on the changes and challenges posed by AI,...

37:59Jul 9, 2025

Dag Flachet -- Kaizen for your Appsec Program

Dag Flachet joins us to discuss the concept of Kaizen and its application in improving application security. Dag shares his journey into the...

35:54Jun 17, 2025

Javan Rasokat and Andra Lezza -- When Chatbots Go Rogue - Lessons Learned from Building and Defending LLM Applications

Andra Lezza and Javan Rasokat discuss the complexities of securing AI and LLM applications. With years of experience in Application Security...

47:31Mar 18, 2025

Jim Routh -- The CISO Transition to the rest of life

Former CISO Jim Routh discusses his perspective on retirement and career fulfillment in cybersecurity. Rather than viewing retirement as sim...

49:36Mar 11, 2025

Henrik Plate -- OWASP Top 10 Open Source Risks

Henrik Plate joins us to discuss the OWASP Top 10 Open Source Risks, a guide highlighting critical security and operational challenges in us...

38:26Mar 4, 2025

Tanya Janca -- A Secure SDLC from a Developer's Perspective

Security expert Tanya Janca discusses her new book "Alice and Bob Learn Secure Coding" and shares insights on making security accessible to...

48:54Feb 26, 2025

Mehran Koushkebaghi -- Security as a Systemic Concern: How to develop Anti-Requirements

Mehran Koushkebaghi, a seasoned engineering expert, delves into the intricacies of systemic security. He draws parallels between civil engin...

45:08Feb 11, 2025

Kalyani Pawar -- Shaping AppSec at Startups

Kalyani Pawar shares critical strategies for integrating security early and effectively in AppSec for startups. She recommends that startups...

39:52Feb 4, 2025

Milan Williams -- AppSec Metrics

Milan Williams discusses the importance of application security metrics and how to make them both meaningful and actionable. She explains th...

36:16Jan 14, 2025

MO Sadek -- Building an AppSec Program from Scratch

Mo Sadek shares his unique journey of building an Application Security program from scratch at Roblox. Mo discusses his unconventional path,...

48:50Jan 8, 2025

Brett Crawley -- Threat Modeling Gameplay with EoP

Brett Crawley discusses the Elevation of Privilege (EoP) card game, a powerful tool for threat modeling in software development. The discuss...

45:28Dec 10, 2024

Matin Mavaddat - Understanding Security as a Systemic Concern: The Role of Anti-Requirements

Matin Mavaddat discusses his perspective on security as a systemic concern, developed from his background in requirements engineering and sy...

50:20Nov 12, 2024

Kayra Otaner -- DevSecOps

Kayra Otaner joins the podcast today to discuss DevSecOps and answer the question, is it dead? Kayra is the Director of DevSecOps at Roche a...

32:46Oct 29, 2024

François Proulx - Arbitrary Code Execution 0-day in Build Pipeline of Popular Open Source Packages

François Proulx shares his discovery of security vulnerabilities in build pipelines. Francois has found that attackers can exploit this ofte...

45:31Oct 22, 2024

Steve Wilson -- The Developer's Playbook for Large Language Model Security: Building Secure AI Applications

Steve Wilson, the author of 'The Developer's Playbook for Large Language Model Security’ is back to dive into topics from his book...

36:32Oct 1, 2024

Jeff Williams -- Application Detection & Response (ADR)

Jeff Williams, a renowned pioneer in the field of application security is with us to discuss Application Detection and Response (ADR), detai...

51:28Sep 24, 2024

Phillip Wylie -- Pen Testing from Somebody who Knows about Pen Testing

Philip Wiley shares his unique journey from professional wrestling to being a renowned pen tester. We define pen testing and the role of soc...

52:08Sep 17, 2024

Steve Springett -- Software and System Transparency

Steve Springett, an expert in secure software development and a key figure in several OWASP projects is back. Steve unpacks CycloneDX and th...

48:13Aug 29, 2024

Irfaan Santoe -- The Power of Strategy in AppSec

Irfaan Santoe joins us for an in-depth discussion on the power of strategy in Application Security. We delve into measuring AppSec maturity,...

40:14Jul 31, 2024

Andrew Van Der Stock -- The New OWASP Top Ten

Andrew Van Der Stok, a leading web application security specialist and executive director at OWASP joins us for this episode. We discuss the...

51:51Jul 23, 2024

Derek Fisher -- Hiring in Cyber/AppSec

Derek Fisher, an expert in hardware, software, and cybersecurity with over 25 years of experience is back on the podcast. Derek shares his a...

61:45Jul 16, 2024

Tanya Janca -- Secure Guardrails

Tanya Janka, also known as SheHacksPurple, discusses secure guardrails, the difference between guardrails and paved roads, and how to implem...

64:50Jul 9, 2024

Jahanzeb Farooq -- Launching and executing an AppSec program

Jahanzeb Farooq discusses his journey in cybersecurity and the challenges of building AppSec programs from scratch. Jahanzeb shares his expe...

49:44Jul 2, 2024

David Quisenberry -- Building Security, People, and Programs

David Quisenberry shares about his journey into the security world, insights on building AppSec programs in small to mid-sized companies, an...

56:54Jun 18, 2024

Matt Rose -- Software Supply Chain Security Means Many Different Things to Different People

Matt Rose, an experienced technical AppSec testing leader discusses his career journey and significant contributions in AppSec. The conversa...

46:14Jun 11, 2024

James Berthoty -- Is DAST Dead? And the future of API security

James Berthoty, a cloud security engineer with a diverse IT background, discusses his journey into application and product security. James h...

44:56May 31, 2024

Mark Curphey and Simon Bennetts -- Riding the Coat Tails of ZAP, without Open Source Funding

Mark Curphey and Simon Bennetts, join Chris on the podcast to discuss the challenges of funding and sustaining major open source security pr...

42:32May 21, 2024

Devin Rudnicki -- Expanding AppSec

Devon Rudnicki, the Chief Information Security Officer at Fitch Group, shares her journey of developing an application security program from...

35:57May 14, 2024

Dustin Lehr -- Culture Change through Champions and Gamification

Dustin Lehr, Senior Director of Platform Security/Deputy CISO at Fivetran and Chief Solutions Officer at Katilyst Security, joins Robert and...

45:10Apr 16, 2024

Francesco Cipollone -- Application Security Posture Management and the Power of Working with the Business

Francesco Cipollone, CEO of Phoenix Security, joins Chris and Robert to discuss security and explain Application Security Posture Management...

38:11Apr 9, 2024

Mukund Sarma -- Developer Tools that Solve Security Problems

Mukund Sarma, the Senior Director for Product Security at Chime, talks with Chris about his career path from being a software engineer to be...

46:32Apr 2, 2024

Meghan Jacquot -- Assumed Breach Red Team Engagements for AppSec

AppSec specialist Megan Jacquot joins Chris and Robert for a compelling conversation about community, career paths, and productive red team...

40:55Mar 20, 2024

Bill Sempf -- Development, Security, and Teaching the Next Generation

Robert is joined by Bill Sempf, an application security architect with over 20 years of experience in software development and security. Bil...

39:44Mar 12, 2024

Hendrik Ewerlin -- Threat Modeling of Threat Modeling

Robert and Chris talk with Hendrik Ewerlin, a threat modeling advocate and trainer. Hendrik believes you can threat model anything, and he r...

33:50Mar 5, 2024

Jason Nelson -- Three Pillars of Threat Modeling Success: Consistency, Repeatability, and Efficacy

Jason Nelson, an accomplished expert in information security management, joins Chris to share insights on establishing successful threat mod...

53:52Feb 27, 2024

Erik Cabetas -- Cracking Codes on Screen and in Contests: An Expert's View on Hacking, Vulnerabilities, and the Evolution of Cybersecurity Language

Erik Cabetas joins Robert and Chris for a thought-provoking discussion about modern software security. They talk about the current state of...

51:12Feb 17, 2024

Justin Collins -- Enabling the Business to Move Faster, Securely

Justin Collins of Gusto joins Robert and Chris for a practical conversation about running security teams in an engineering-minded organizati...

47:19Feb 6, 2024

Kyle Kelly -- The Dumpster Fire of Software Supply Chain Security

Kyle Kelly joins Chris to explore the wild west of software supply chain security. Kyle, author of the CramHacks newsletter, sheds light on...

41:17Jan 30, 2024