DevSecOps Days Podcast
1) ep2024-12 Tanya Janca: Happy Holidays are Secure Code
Some production issues caused this one to slip to December so the intro is a bit off but this is still a great episode. So, learn some lessons on creating secure code from one of my favorite guests: T...Show More
2) ep2024-10 Don't be Scared, It's just a Pen Test with Brad Causey
There's no reason to be scared about a pen test - especially when it's run by a professional like Brad Causey. I catch up with Brad in this episode to discuss what's recently changed in pen testing in...Show More
3) ep2024-09 Threat Modeling with Takaharu
What happens when you get interested in Threat Modeling and you want to share. For some, that means you do one work shop, then another, then another. What happens when you start down this path. Takaha...Show More
4) ep2024-08 OWASP Projects Roundup
The August episode is a review of projects from a recent OWASP project showcase. We talk to the leaders of the OWASP pytm, OWASP Developer Guide, OWASP State of AppSec Survey Project. Get up on the la...Show More
5) ep2024-07 Safety belts for AppSec with Lisa Plaggemier
After a long and unplanned pause, the OWASP podast is back with a home run of an episode. We have Lisa Plaggemier as our guest who reprises her eloquent keynote topic from AppSec DC. All hope isn't lo...Show More
6) ep2023-09 Vulnerable Data Gathering for AI with Arturo Buanzo Busleiman
After getting a ping from an old friend about a potential new OWASP project, I had to bring him on as a guest. He's got an interesting idea around potential vulnerabilities in web crawlers which just ...Show More
7) ep2023-08 Finding Next Gen Cybersecurity Professionals with Brad Causey
For years we've heard talk about a shortage of cybersecurity professionals so what can be done about that? In this episode, I speak to Brad Causey who has taken one approach he's found successful. We ...Show More
8) ep2023-07 What's Audit got to do with IT
In this episode we talk with Zain Haq and take a leap and bound over the first and second line to discover more about the third line - internal audit. We discover answers to a number of questions: Wha...Show More
9) SBOMS, CycloneDX and Dependency Track: Automation for Survival with Steve Springett
Software supply chain seems to be front and center for technologists, cybersecurity and many governments. One of the early pioneers in this space was Steve Springett with two highly successful project...Show More
SBOMS, CycloneDX and Dependency Track: Automation for Survival with Steve Springett
29:32 | Jun 27th, 2023
10) AppSec at 40,000 feet
In this episode I speak with Jerry Hoff who provides some very interesting perspective on application security especially at scale and from a high level view like that of a CISO. Even if you're not in...Show More