The Application Security Podcast

A podcast by Chris Romeo and Robert Hurlbut - Tuesdays

Tuesdays

Categories:

285 Episodes

  1. Javan Rasokat and Andra Lezza -- When Chatbots Go Rogue - Lessons Learned from Building and Defending LLM Applications

    Published: 3/18/2025
  2. Jim Routh -- The CISO Transition to the rest of life

    Published: 3/11/2025
  3. Henrik Plate -- OWASP Top 10 Open Source Risks

    Published: 3/4/2025
  4. Tanya Janca -- A Secure SDLC from a Developer's Perspective

    Published: 2/26/2025
  5. Mehran Koushkebaghi -- Security as a Systemic Concern: How to develop Anti-Requirements

    Published: 2/11/2025
  6. Kalyani Pawar -- Shaping AppSec at Startups

    Published: 2/4/2025
  7. Milan Williams -- AppSec Metrics

    Published: 1/14/2025
  8. MO Sadek -- Building an AppSec Program from Scratch

    Published: 1/8/2025
  9. Brett Crawley -- Threat Modeling Gameplay with EoP

    Published: 12/10/2024
  10. Matin Mavaddat - Understanding Security as a Systemic Concern: The Role of Anti-Requirements

    Published: 11/12/2024
  11. Kayra Otaner -- DevSecOps

    Published: 10/29/2024
  12. François Proulx - Arbitrary Code Execution 0-day in Build Pipeline of Popular Open Source Packages

    Published: 10/22/2024
  13. Steve Wilson -- The Developer's Playbook for Large Language Model Security: Building Secure AI Applications

    Published: 10/1/2024
  14. Jeff Williams -- Application Detection & Response (ADR)

    Published: 9/24/2024
  15. Phillip Wylie -- Pen Testing from Somebody who Knows about Pen Testing

    Published: 9/17/2024
  16. Steve Springett -- Software and System Transparency

    Published: 8/29/2024
  17. Irfaan Santoe -- The Power of Strategy in AppSec

    Published: 7/31/2024
  18. Andrew Van Der Stock -- The New OWASP Top Ten

    Published: 7/23/2024
  19. Derek Fisher -- Hiring in Cyber/AppSec

    Published: 7/16/2024
  20. Tanya Janca -- Secure Guardrails

    Published: 7/9/2024

1 / 15

Chris Romeo and Robert Hurlbut dig into the tips, tricks, projects, and tactics that make various application security professionals successful. They cover all facets of application security, from threat modeling and OWASP to DevOps+security and security champions. They approach these stories in an educational light, explaining the details in a way those new to the discipline can understand. Chris Romeo is the CEO of Devici and a General Partner at Kerr Ventures, and Robert Hurlbut is a Principal Application Security Architect focused on Threat Modeling at Aquia.