Insights from recent episode analysis
Audience Interest
Podcast Focus
Publishing Consistency
Platform Reach
Insights are generated by CastFox AI using publicly available data, episode content, and proprietary models.
Most discussed topics
Brands & references
Est. Listeners
Insufficient chart data. Estimates will improve as the show charts.
- Per-Episode Audience
Est. listeners per new episode within ~30 days
N/A🎙 Weekly cadence·296 episodes·Last published 1w ago - Monthly Reach
Unique listeners across all episodes (30 days)
N/A - Active Followers
Loyal subscribers who consistently listen
N/A
Market Insights
Platform Distribution
Reach across major podcast platforms, updated hourly
Total Followers
—
Total Plays
—
Total Reviews
—
* Data sourced directly from platform APIs and aggregated hourly across all major podcast directories.
On the show
From 11 epsHosts
Recent guests
Recent episodes
Michael Burch - AI-Enabled Citizen Developers
Jun 16, 2026
48m 58s
Josh Grossman--AI & SAST: Is it a match?
Jun 2, 2026
40m 29s
Dwayne McDaniel -- Secrets Sprawl and How AI is Impacting Secrets
May 14, 2026
45m 27s
Tanya Janca - Secure Vibe Coding
Apr 30, 2026
47m 57s
Caroline Wong--The AI Cybersecurity Handbook
Apr 21, 2026
44m 53s
Social Links & Contact
Official channels & resources
Official Website
Login
RSS Feed
Login
| Date | Episode | Topics | Guests | Brands | Places | Keywords | Sponsor | Length | |
|---|---|---|---|---|---|---|---|---|---|
| 6/16/26 | Michael Burch - AI-Enabled Citizen Developers | Send us Fan Mail AI adoption is accelerating faster than most organizations know how to handle it, and the gap between curiosity and confident use is where things go wrong. Michael Burch, VP of AI Enablement and Acceleration, joins to break down what it actually takes to move teams from "interested in AI" to using it responsibly and effectively in their day-to-day work. He shares why successful adoption depends less on the technology itself and more on trust, clear guidance, and making AI app... | 48m 58s | ||||||
| 6/2/26 | Josh Grossman--AI & SAST: Is it a match?✨ | AISAST+3 | Josh Grossman | Bounce SecurityAppSecPodcast | — | AI coding toolsAppSec tooling+3 | — | 40m 29s | |
| 5/14/26 | Dwayne McDaniel -- Secrets Sprawl and How AI is Impacting Secrets✨ | secrets sprawlAI impact+3 | Dwayne McDaniel | GitGuardianGitHub | — | secrets sprawlAI+3 | — | 45m 27s | |
| 4/30/26 | Tanya Janca - Secure Vibe Coding✨ | AI in developmentvibe coding+3 | Tanya Janca | SheHacksPurple | — | AIvibe coding+4 | — | 47m 57s | |
| 4/21/26 | Caroline Wong--The AI Cybersecurity Handbook✨ | AI in AppSeccode generation+3 | Caroline Wong | AxariThe AI Cybersecurity Handbook | — | AIAppSec+6 | — | 44m 53s | |
| 4/15/26 | Steve Wilson--OpenClaw and Advanced AI Agents✨ | AI securityphishing attacks+3 | Steve Wilson | ExabeamOWASP Gen AI Security Project | — | AI securityphishing+3 | — | 49m 30s | |
| 10/28/25 | Brad Geesaman - Redefining AppSec with AI: Shrinking Toil, Expanding Impact - How LLMs are able to reduce toil in triage-heavy AppSec workflows✨ | application securityAI+4 | Brad Geesaman | Ghost | — | application securityAI+5 | — | 42m 19s | |
| 10/15/25 | OWASP Candidate Debate - 2025 Edition✨ | OWASPBoard of Directors+4 | OWASP Board of Directors candidates | OWASP | — | OWASPcandidates+5 | — | 1h 08m 09s | |
| 9/23/25 | Francesco Cipollone - Agentic AI Manifesto✨ | AIsecurity+3 | Francesco Cipollone | Phoenix Security | — | AI agentschatbots+3 | — | 33m 19s | |
| 9/16/25 | Simon Gibbs & Devika Gibbs -- Building Bridges with Games✨ | gamificationcybersecurity education+3 | Simon GibbsDevika Gibbs | Cybersec GamesElevation of Privilege | — | cybersecuritygamification+5 | — | 36m 03s | |
Want analysis for the episodes below?Free for Pro Submit a request, we'll have your selected episodes analyzed within an hour. Free, at no cost to you, for Pro users. | |||||||||
| 9/2/25 | Akansha Shukla - Modern AppSec: Securing APIs with Threat Modeling and DevSecOps✨ | API securitythreat modeling+3 | Akansha Shukla | DevSecOpsAPI security+1 | — | API securitythreat modeling+3 | — | 35m 35s | |
| 8/20/25 | Getting Ready for the EU CRA✨ | EU Cyber Resilience Actproduct security+4 | Nariman Aga-Tagiyev | Cyber Resilience ActEuropean Union+2 | — | EU CRAproduct security+5 | — | 40m 46s | |
| 8/5/25 | Marisa Fagan - Measuring Security Culture | Send us Fan Mail Marisa Fagan, Head of Product at Katilyst and veteran security culture expert joins us today to share practical strategies for building and scaling security champions programs that actually work, from designing effective pilots to avoiding common pitfalls that can derail your initiatives. Learn how to motivate developers using the SAPs model (Status, Access, Power, Stuff), why getting management buy-in is crucial before launching, and discover the metrics that truly dem... | 50m 05s | ||||||
| 7/22/25 | Aram Hovsepyan -- Your Security Dashboard is Lying to You: The Science of Metrics | Send us Fan Mail Aram Hovsepyan joins the podcast today to chat about the misconceptions behind common security metrics. Aram tells us how total vulnerability counts and CVSS scores can be misleading and he introduces us to the Goal Question Metric framework, this framework is a better approach to building truly effective security dashboards. Learn about the critical qualities of good metrics and how to ensure that your metrics accurately reflect your organization's security posture and readi... | 40m 52s | ||||||
| 7/15/25 | Sean Varga -- OWASP Top 10 for AppSec Sales | Send us Fan Mail We’re discussing the intersections of application security (AppSec) and sales strategy with our guest, Sean Varga. Sean shares the unique challenges and best practices in AppSec sales, like the importance of empathy, understanding customer needs, and community participation. Learn about the OWASP top 10 for AppSec Sales and discover how to achieve success by aligning with customer goals, maintaining detailed living documents, and fostering strong partnerships. FOLLOW OU... | 47m 13s | ||||||
| 7/9/25 | Sarah-Jane Madden -- What AI means for AppSec | Send us Fan Mail Sarah Jane Madden joins us to discuss the evolving role of AI in software development. We reflect on the changes and challenges posed by AI, including the potential for over-reliance and the misconception that traditional software engineering practices like the SDLC are obsolete. The conversation explores the nuances of AI-generated code, emphasizing the importance of maintaining foundational engineering skills and a critical understanding of the tools used. Madden shares ins... | 37m 59s | ||||||
| 6/17/25 | Dag Flachet -- Kaizen for your Appsec Program | Send us Fan Mail Dag Flachet joins us to discuss the concept of Kaizen and its application in improving application security. Dag shares his journey into the world of security, emphasizing the importance of iterative, small-step improvements. The conversation delves into how organizations can effectively implement maturity models to enhance their security programs, the limitations of compliance-focused frameworks like ISO 27,000 and SOC 2, and the practical application of Kaizen principles. T... | 35m 54s | ||||||
| 3/18/25 | Javan Rasokat and Andra Lezza -- When Chatbots Go Rogue - Lessons Learned from Building and Defending LLM Applications | Send us Fan Mail Andra Lezza and Javan Rasokat discuss the complexities of securing AI and LLM applications. With years of experience in Application Security (AppSec), Andra and Javan share their journey and lessons from their DEF CON talk on building and defending LLMs. They explore critical vulnerabilities, prompt injection, hallucinations, and the importance of data security. This discussion sheds light on the evolving landscape of AI and LLM security, offering practical advice for develop... | 47m 31s | ||||||
| 3/11/25 | Jim Routh -- The CISO Transition to the rest of life | Send us Fan Mail Former CISO Jim Routh discusses his perspective on retirement and career fulfillment in cybersecurity. Rather than viewing retirement as simply stopping work, Routh describes his three-filter approach: working only with people he respects and admires, doing only work he finds fulfilling, and controlling when he works. He shares valuable lessons learned about which post-retirement opportunities truly bring satisfaction and explains why he avoids certain roles. Routh emphasizes... | 49m 36s | ||||||
| 3/4/25 | Henrik Plate -- OWASP Top 10 Open Source Risks | Send us Fan Mail Henrik Plate joins us to discuss the OWASP Top 10 Open Source Risks, a guide highlighting critical security and operational challenges in using open source dependencies. The list includes risks like known vulnerabilities, compromised legitimate packages, name confusion attacks, and unmaintained software, providing developers and organizations a framework to assess and mitigate potential threats. Henrik offers insights on how developers and AppSec professionals can implement t... | 38m 26s | ||||||
| 2/26/25 | Tanya Janca -- A Secure SDLC from a Developer's Perspective | Send us Fan Mail Security expert Tanya Janca discusses her new book "Alice and Bob Learn Secure Coding" and shares insights on making security accessible to developers. In this engaging conversation, she explores how security professionals can better connect with developers through threat modeling, maintaining empathy, and creating inclusive learning environments. Tanya emphasizes the importance of system maintenance after deployment and shares practical advice on input validation, while high... | 48m 54s | ||||||
| 2/11/25 | Mehran Koushkebaghi -- Security as a Systemic Concern: How to develop Anti-Requirements | Send us Fan Mail Mehran Koushkebaghi, a seasoned engineering expert, delves into the intricacies of systemic security. He draws parallels between civil engineering and IT systems, and explains the importance of holistic thinking in security design. Discover the difference between semantic and syntactic vulnerabilities and understand how anti-requirements play a critical role in system resilience. This episode offers fresh perspectives on application security. Books recommended by Mehran: Crit... | 45m 08s | ||||||
| 2/4/25 | Kalyani Pawar -- Shaping AppSec at Startups | Send us Fan Mail Kalyani Pawar shares critical strategies for integrating security early and effectively in AppSec for startups. She recommends that startups begin focusing on AppSec around the 30-employee mark, with an ideal ratio of one AppSec professional per 10 engineers as the company grows. Pawar emphasizes the importance of building a security culture through "culture as code" - implementing automated guardrails and checkpoints that make security an integral part of the development pro... | 39m 52s | ||||||
| 1/14/25 | Milan Williams -- AppSec Metrics | Send us Fan Mail Milan Williams discusses the importance of application security metrics and how to make them both meaningful and actionable. She explains that metrics are crucial for tracking progress in what can often feel like an overwhelming security landscape, and they're valuable for career advancement and securing resources. We discuss metrics categories and several specific metrics that are good to track. Milan shares important principles on the importance of making metrics acti... | 36m 16s | ||||||
| 1/8/25 | MO Sadek -- Building an AppSec Program from Scratch | Send us Fan Mail Mo Sadek shares his unique journey of building an Application Security program from scratch at Roblox. Mo discusses his unconventional path, including temporarily joining the infrastructure team to truly understand engineering challenges. He emphasizes that security isn't about mandating rules, but about making processes easier and more secure by default. Mo shares his insights on how to build effective cross-team security relationships and approaches for gaining leadership b... | 48m 50s | ||||||
Showing 25 of 302
Sponsor Intelligence
Sign in to see which brands sponsor this podcast, their ad offers, and promo codes.