Let's Talk Security Testing

by Ben Armstrong, Thomas Ballin

Your hosts, cyber tech founders Ben Armstrong and Thomas Ballin, have been increasingly frustrated with security testing's archaic approach. So they set about solving the problems they encountered themselves and created the Cytix platform.In the same spirit, they're bottling these thoughts, experien...

Insights from recent episode analysis

Audience Interest

Estimated Reach: 10K to 30K

Listeners across platforms

Podcast Focus

Categories: technology

Publishing Consistency

Frequency: ~3-4 / Week

34 episodes since 2023

Platform Reach

Insights are generated by CastFox AI using publicly available data, episode content, and proprietary models.

Most discussed topics

security testing

pentesting

application security

automation

pen testing

pen testing as a service

Brands & references

AI3

PTaaS1

Anthropic1

NCC Group1

Agentic AI1

AppSec1

AI Pentesting1

DAST1

Generic platforms filtered out.

Low Confidence

Total monthly reach

10K to 30K

Estimated from 1 chart position in 1 market.

By chart position

🇻🇳
VN · Technology
#34
10K to 30K

Per-Episode Audience
Est. listeners per new episode within ~30 days
5K to 15K
🎙 ~2x weekly·34 episodes·Last published 2mo ago
Monthly Reach
Unique listeners across all episodes (30 days)
10K to 30K
🇻🇳100%
Active Followers
Loyal subscribers who consistently listen
4K to 12K

Market Insights

This ShowCategory Avg

No category insights available.

📡

Platform Distribution

Reach across major podcast platforms, updated hourly

Total Followers

—

Total Plays

—

Total Reviews

—

YouTube

Subscribers

—

Views

—

Videos

—

Castbox

Followers

—

Plays

—

Reviews

—

Podcast App

Followers

—

Plays

—

Reviews

—

Podcast Republic

Followers

—

Plays

—

Reviews

—

TuneIn

Followers

—

Plays

—

Reviews

—

* Data sourced directly from platform APIs and aggregated hourly across all major podcast directories.

On the show

From 10 eps

Hosts

Ben Armstrong

10 eps

Thomas Ballin

10 eps

Recent guests

1 across last 10 eps

NCC Group

1 ep

Recent episodes

What the hell happened to PTaaS?

Mar 30, 2026

17m 18s

Did Anthropic Just Solve AppSec?

Mar 16, 2026

35m 27s

The AppSec Reality Check with NCC Group

Mar 2, 2026

39m 13s

The Reality of Agentic Application Security

Feb 16, 2026

33m 49s

Is AI Pentesting Just DAST in Disguise?

Feb 2, 2026

32m 39s

🔗

Social Links & Contact

Official channels & resources

🌐

Official Website

📡

RSS Feed

Episodes

monthly

Avg length

23m 45s

12m 49s – 39m 13s

Range

Dec 2023 – Mar 2026

Topics

security testing, pentesting +44

Guests

NCC Group · last 10 eps

25 of 25

Date	Episode	Topics	Guests	Brands	Places	Keywords	Sponsor	Length
3/30/26	What the hell happened to PTaaS?✨	Pen Testing as a Servicesecurity testing+4	—	PTaaS	—	PTaaSPen Testing+5	—	17m 18s
3/16/26	Did Anthropic Just Solve AppSec?✨	application securitycode analysis+3	—	Anthropic	—	AnthropicAppSec+5	—	35m 27s
3/2/26	The AppSec Reality Check with NCC Group✨	AppSecAI in software development+3	NCC Group	NCC Group	—	AppSecAI+5	—	39m 13s
2/16/26	The Reality of Agentic Application Security✨	application securityagentic AI+3	—	Agentic AIAppSec+1	—	agentic application securityAI-driven security+3	—	33m 49s
2/2/26	Is AI Pentesting Just DAST in Disguise?✨	AI in security testingpentesting+4	—	AI PentestingDAST+1	—	AI PentestingDAST+6	—	32m 39s
7/9/25	Does CAB Still Belong in Modern DevSecOps?✨	Change Advisory BoardDevSecOps+4	—	Change Advisory BoardDevSecOps+1	—	Change Advisory BoardDevSecOps+4	—	24m 12s
6/16/25	Is Vibe Coding a Developer Superpower or a Security Risk?✨	vibe codingweb app development+3	—	—	—	vibe codingweb app+3	—	27m 01s
4/30/25	Who Wins at Threat Modelling: AI or a Real Hacker?✨	threat modelingAI vs human+4	—	AI toolCytix	—	threat modelingAI+5	—	18m 40s
3/31/25	Can AI Replace Pentesters?✨	AIpentesting+3	—	AICan AI Replace Pentesters?	—	AIpentesters+3	—	21m 25s
3/10/25	Hack it or Track it: The Hunt for Cyber Vulnerabilities✨	cyber vulnerabilitiesdetection methods+4	—	Hack it or Track it	—	cybersecurityvulnerabilities+4	—	20m 00s
Want analysis for the episodes below?Free for Pro Submit a request, we'll have your selected episodes analyzed within an hour. Free, at no cost to you, for Pro users.
2/24/25	Micro Pen-Testing: When Less is More in Cybersecurity	In episode 4 season 2, explore the innovative world of Micro Pen-Tests - a targeted, bite-sized approach to security testing that stems from threat modelling and development changes.Subscribe to keep up to date with all new episodes - released every 2 weeks!						16m 06s
2/9/25	Breaking Down Threat Modelling in Security Testing: A New Cybersecurity Essential	In episode 3 season 2, explore the power of Threat Modelling in security testing and how it helps organisations predict, identify, and mitigate cyber risks before they become real threats.Subscribe to keep up to date with all new episodes - released every 2 weeks!						19m 27s
1/27/25	What Security Can Learn From Quality Control	In episode 2, season 2 of Let's Talk Security Testing, we continue the conversation on the widely debated topic of 'what can security learn from quality control'. Subscribe to keep up to date with all new episodes - released every 2 weeks!						27m 47s
1/13/25	Enhancing Pentesting Effectiveness with Jira Tickets	In episode 1 of season 2, explore techniques for using Jira tickets to enhance the effectiveness of your pentesting efforts. Meaning you can threat model your change tickets and prioritise your testing strategy.Subscribe to keep up to date with all new episodes - released every 2 weeks!						12m 49s
12/2/24	Vulnerability Deep Dive: Access Control Issues	In the second of the Let's Talk Security Testing vulnerability deep dive episodes, Ben and Tom explore access control issues. They explore:What are access control issues & practical examplesHow to identify access control issuesHow to prevent, find and fix them						16m 54s
11/18/24	Depth vs Coverage in Security Testing	Has the cyber security industry been ... lying to us? Do scanners provide the coverage whilst penetration tests provide the depth? Ben and Tom peel back the lid on this narrative to see if this is really the case...						15m 22s
11/4/24	Vulnerability Deep Dive: Business Logic Flaws	In this first-of-its-type episode of Let's Talk Security Testing, Ben and Tom exclusively dive into the vulnerability, business logic flaws.They discuss:How business logic flaws are createdWhere they're typically foundWhy they're uniqueWays to optimise testing processes to find them more easily						24m 12s
10/21/24	How to Build an Internal Security Testing Team	Tom and Ben discuss:Determining the need for an internal pentesting teamSetting up the teamKey processes that lead to success						17m 51s
10/7/24	Where Do Vulnerabilities Come From?	Ben and Tom discuss:The 3 primary sources of vulnerability creationA comparison of defensive cyber security approachesChallenges of route cause analysis						25m 12s
9/23/24	Why Context Matters In Security Testing	Join Ben and Tom in discussing:What do we mean by context in security testing?The reality of context in security testingBarriers to achieving context in security testing and how to overcome them						17m 25s
9/9/24	How to Run an Enterprise Security Testing Programme	Ben and Tom share strategy options, how this translates to operations and resourcing, and what output to expect from an enterprise testing programme.						25m 49s
8/26/24	A Cyber Security Engineer and a Vendor Meet in A Podcast Studio...	In episode 6 of Let's Talk Security Testing, we welcome our first guest to the studio, Senior Security Engineer, Christine Smoley. Tom and Christine have an honest conversation on the cyber security vendor landscape, how vendors can make things easier in the buying process, and shared experiences in dealing with challenges of coordinating a security testing team.						26m 32s
8/9/24	The Role of LLMs in Security Testing	In this episode of Let's Talk Security Testing we cover: - Why LLMs are popular across working teams in general - How this can be applied for security testing - Myth busting LLM capabilities and security concerns						25m 06s
7/29/24	How To Scale A Security Testing Programme	Tom and Ben break down what scalable really means, the practicalities this equates to, common challenges and tips & experiences on how to apply this yourself.						25m 26s
7/15/24	Getting the Full Value Out of Human Security Testers	Penetration tests are expensive and hugely important to a companies cyber security. We discuss ways to make sure tests are set up for success in the most effective and efficient way.						27m 55s