OWASP Podcast

= DevSecOps Podcast Series =  The DevSecOps Podcast is series of recorded broadcasts, highlighting OWASP projects and chapters, and DevSecOps practitioners from around the world. The DevSecOps Podcast is available on demand, at anytime, anywhere on the planet. You are welcome to embed the broadcasts on your page, download them for your personal listening or keep up to date by subscribing to the SoundCloud Channel.

Listen to All Available Broadcasts or choose a single episode below


 * 1) How to Engage 4000 Developers in One Day
 * 2) Code Rush, DevOps and Google: Software in the Fast Lane
 * 3) The Unicorn Project w/ Gene Kim
 * 4) DevOps, DevSecOps and the Year Ahead w/ Sacha Labourey
 * 5) Is it time to trust Equifax again? You decide.
 * 6) 2019 Global AppSec Conference, DC
 * 7) State of the Software Supply Chain Report
 * 8) The Vanity of Diversity w/ Loni Rosales
 * 9) Create and Manage Internal Tech Conferences
 * 10) Securing the Software Supply Chain - Live Panel for International Conference on Cyber Engagement
 * 11) Tel Aviv and the 2019 Global AppSec Conference
 * 12) Perspectives on the "Sec" in DevSecOps w/ Tanya Janca
 * 13) 2019 Open Security Summit Preview
 * 14) What is an SBOM and Why Should You Care? w/ Allan Friedman
 * 15) What is Chaos Engineering, an Interview with Casey Rosenthal
 * 16) Ladies of London Hacking Society w/ Eliza-May Austin
 * 17) Anticipating Failure through Threat Modeling w/ Adam Shostack
 * 18) We Are All Special Snowflakes with Chris Roberts
 * 19) A Concise Introduction to DevSecOps
 * 20) What's In Store for the AppSec Cali Conference w/ Richard Greenberg
 * 21) Epic Failures in DevSecOps w/ Aubrey Stearn
 * 22) Strategic Asymetry - Leveling the Playing Field w/ Chetan Conikee
 * 23) Threat Modeling - A Disaster Story with Edwin Kwan
 * 24) The DevSecOps Unicorn Rodeo w/ Stefan Streichsbier
 * 25) The DevSecOps Experiment with DJ Schleen
 * 26) Open Source Vulnerabilities - Who is Ultimately Responsible
 * 27) event-stream: Analysis of a Compromised npm Package
 * 28) Spy vs Spy in Application Security: Harvesting Adversaries
 * 29) Moving from Projects to Products w/ Mik Kersten
 * 30) The Journey to Open Source at Capital One w/ Tapabrata "Topo" Pal
 * 31) The Future of Software and DevOps / with Sacha Labourey
 * 32) How to Build Chapter Engagement at OWASP
 * 33) A Message from the Executive Producer
 * 34) 2018 AppSec EU London - Conference Preview
 * 35) Steps to Responsible Disclosure with Bas van Schaik,Man Yue Mo and Brian Fox
 * 36) RSAC 2018 - Preview of Opening Session for DevOps Connect: DevSecOps Day
 * 37) HackNYC 2018: Preview with Kevin E. Greene
 * 38) HackNYC 2018: Preview with Dr. Bill Curtis
 * 39) The OpenChain Project with Shane Coughlan
 * 40) Expanding Community Engagement at OWASP w/ Greg Anderson
 * 41) Thoughts on Security in the Modern Software Supply Chain with Caroline Wong and Paula Thrasher
 * 42) Security Processes at the Apache Software Foundation w/ Mark Thomas and Brian Fox
 * 43) Struts2 Vulnerabilities: Who Is Responsible?
 * 44) What you should know about the latest struts 2 vulnerability announcement
 * 45) OWASP Hacker Kids in Bangalore
 * 46) Less than 10 Minutes Series: OWASP DockerHub with Simon Bennetts
 * 47) Less than 10 Minutes Series - ModSecurity Core Rule Set Project
 * 48) Less than 10 Minutes Series: OWASP Summit 2017
 * 49) Less than 10 Minutes Series: WebGoat Project
 * 50) Less than 10 Minutes Series: Vicnum Project
 * 51) Less than 10 Minutes Series: Defect Dojo Project
 * 52) Less than 10 Minutes Series: Virtual Village Project
 * 53) Less than 10 Minutes Series: The Juice Shop Project
 * 54) AppSec EU 2017, Belfast Keynote Preview with Jaya Baloo
 * 55) Struts 2 Vulnerability Analysis
 * 56) AppSec EU 2017 Belfast - What to Expect
 * 57) Culture Hacker: How to Herd CATTs and Inspire Rebels to Change the World
 * 58) Shannon Lietz - Keynote Preview for AppSec EU 2017, Belfast
 * 59) 2016 AppSec USA – An Update on the WebGoat Project
 * 60) 2016 AppSec USA: The Core Rule Set Project w/ Chaim Sanders
 * 61) The Future of DevSecOps w/ Shannon Lietz and Chris Swan, Live From IP Expo London
 * 62) 2016 OWASP Board Election Interviews - Part One of Four - Developer Participation
 * 63) 2016 OWASP Board Election Interviews – Part Two of Four – Vendor Neutrality
 * 64) 2016 OWASP Board Election Interviews – Part Three of Four – Most Important Issues


 * 1) 2016 OWASP Board Election Interviews – Part Four of Four – Members, Projects, Conferences, Chapters
 * 2) AppSec USA 2016 Pre-Conference Update
 * 3) Security as Part of Continuous Delivery with Sacha Labourey
 * 4) Unicorns on an Aircraft Carrier: DevOps Security at Scale with Sanjeev Sharma
 * 5) 2016 State of the Software Supply Chain Report Released


 * 1) Security as Part of DevOps and Development with Jason Schmitt
 * 2) 2016 AppSecEU - Update On The ASVS Project with Andrew van der Stock
 * 3) 2016 AppSecEU - The University Challenge
 * 4) Jim Manico's 100th Episode, featuring Mark Miller, Executive Producer of OWASP 24/7
 * 5) AppSec Europe 2016 - What To Expect


 * 1) Communication Patterns in Open Source Component Supply Chains
 * 2) Active Deception as a Methodology for Cybersecurity w/ Lawrence Pingree from Gartner
 * 3) Security War Games with Sam Guckenheimer at Rugged DevOps RSAC 2016
 * 4) DevOps, Security and Engineering at Slack
 * 5) Guns, Germs and Steel at RSAC 2016 with John Willis


 * 1) Equal Respect: Women in Technology with Chenxi Wang
 * 2) DevOps: Politics, People and Process with Paula Thrasher
 * 3) OWASP Top 10 Proactive Controls Project with Jim Manico and Katy Anton
 * 4) The OWASP WebGoat Project, version 7.0, with Bruce Mayhew
 * 5) Johanna Curiel on the Growing Pains of OWASP and Management of Project Reviews


 * 1) 2016 – What’s in Store for the OWASP 24/7 Podcast Series
 * 2) OWASP Shark Tank - Could You Convince Someone to Invest in Your Project?
 * 3) Security Shepherd Project w/ Mark Denihan and Paul McCann
 * 4) DevOps, Security and Development w/ Matt Tesauro, Shannon Lietz and Jez Humble
 * 5) OWASP Benchmark Project w/ Dave Wichers


 * 1) OWASP Application Security Verification Standard Project w/ Andrew van der Stock
 * 2) OWASP Board Candidate Interview - Abbas Naderi, Michael Coates, Jonathan Carter
 * 3) OWASP Board Candidate Interview - Bil Corry and Josh Sokol
 * 4) OWASP Board Candidate Interview - Milton Smith, Tobias Gondrom, Tom Brennan
 * 5) OWASP Security Knowledge Framework Project w/ Glenn Ten Cate


 * 1) OWASP Summer of Code Sprint 2015 with Fabio Cerullo
 * 2) OWASP Project Funding Part 2 w/ Johanna Curiel and Claudia Casanovas
 * 3) OWASP Project Funding w/ Josh Sokol, Dinis Cruz and Andrew van der Stock
 * 4) The OWASP Online Academy with John Patrick Lita and Jerry Hoff
 * 5) AppSec USA 2015 Overview with Ben Hagen and Michael Coates


 * 1) Paul Ritchie, Executive Director, Talks Present, Past and Future of OWASP
 * 2) OWASP Offensive Web Testing Framework with Bharadwaj Machiraju and Abraham Aranguren
 * 3) Tobias Gondrom on the OWASP Strategic Goals for 2015
 * 4) 2015 AppSecEU Pre Conference Update
 * 5) OWASP Project Reviews with Johanna Curiel


 * 1) 2015 OWASP Project Summit in NYC with Tom Brennan
 * 2) Seba Deleersnyder Discusses SAMM (Software Assurance Maturity Model) Summit in Dublin, Ireland
 * 3) 2015 AppSec California Post Mortem with Richard Greenberg and Neil Matatall
 * 4) John Melton and the OWASP AppSensor Project
 * 5) Moxie Marlinspike on Open Source Security for Mobile Devices


 * 1) Dibbe Edwards - DevOps and Open Source at IBM
 * 2) The WebGoat Project with Rick Lawson and Jason White
 * 3) Kevin E. Greene on OWASP and the SWAMP Project
 * 4) AppSec USA 2014, Denver - Damon Edwards, Matt Tesauro, Eoin Keary, Martin Knobloch
 * 5) OWASP Board Candidate Interviews - Mateo Martinez


 * 1) OWASP Board Candidate Interviews - Jim Manico, Timur Khrotko
 * 2) OWASP Board Candidate Interviews - Andrew van der Stock, Nigel Phair, Abbas Naderi
 * 3) OWASP 2014 Board Candidate Interviews - Israel Bryski, Matt Konda, Bil Corry and Tahir Khan
 * 4) Jonathan Carter - OWASP and Mobile Security
 * 5) OWASP Statement on the Security of the Internet 2014


 * 1) Sarah Baso : The Final OWASP Interview
 * 2) Wait! Wait! Don’t pwn me! from AppSec Europe 2014
 * 3) Eoin Keary on Women in Security and Growing an OWASP Chapter
 * 4) Achim Hoffmann and the o-Saft Project for Scanning SSL Connections
 * 5) OWASP Top 10 Privacy Risks Project with Florian Stahl and Stefan Burgmair


 * 1) The Run Up to a Massive Cyber Security Month with Tom Brennan
 * 2) Wolfgang Goerlich on a Real World Example of The Phoenix Project in Action
 * 3) The OWASP Hacky Easter Challenge with Ivan Bütler
 * 4) Dwayne Melancon - What InfoSec Can Learn from Video Games
 * 5) The OWASP Top Ten Proactive Controls Project with Jim Bird


 * 1) Melissa Elliot on the HeartBleed Bug at Yahoo
 * 2) 2014 AppSec APAC - Post Mortem (English)
 * 3) The OWASP Cornucopia Project with Colin Watson
 * 4) The OWASP WebSpa Project with Yiannis Pavlosoglou and Jim Manico
 * 5) 2014 AppSec APAC : History and Overview (Japanese and English)


 * 1) AppSec Europe 2014 : What To Expect with Host Adrian Winckles
 * 2) AppSec USA 2013 : Mark Arnold Talks about the Boston OWASP Chapter
 * 3) Not Making a Statement is a Statement in its Own Right
 * 4) National Security Awareness Month #NCSAM
 * 5) AppSec APAC 2014 with Tobias Gondrom - What to Expect


 * 1) AppSec USA 2013: Larry Conklin and the Code Review Book Project
 * 2) AppSec USA 2013: Jim Manico - Life After OWASP Podcasting
 * 3) AppSec USA 2013: Zed Attack Proxy Project with Simon Bennetts
 * 4) AppSec USA 2013: Abbas Naderi and the OWASP PHP Security Project)
 * 5) AppSec USA 2013: Michael Coates on the AppSensor Project


 * 1) The OWASP Application Security CISO Guide with Marco Morana and Tobias Gondrom
 * 2) The Purpose of OWASP, an Interview with Co-Founder Dennis Groves
 * 3) Wait! Wait! Don't pwn me! - Full recording from AppSec USA 2013
 * 4) Sarah Baso - What does it take to support 43,000 members in 100+ countries?
 * 5) Samantha Groves - Getting the Most from OWASP Projects


 * 1) Kate Hartmann - The Future of Virtual Chapter Meetings
 * 2) Kelly Santalucia - Growing OWASP and the Outreach Programs
 * 3) Tom Brennan - What to Expect at AppSecUSA 2013
 * 4) AppSec USA 2013 - OWASP Panel on Using Components with Known Vulnerabilities

 Syndication 

RSS feed is available here: https://www.owasp.org/images/d/d3/Feed-icon-32x32.png

iTunes feed here

As of November 14, 2019, we have had 409,507 plays in total

As of May 26, 2019, we have had 366,768 plays in total

As of August 29, 2017, we had over 221,000+ plays of the broadcast.

As of July 7, 2016, we had over 151,000+ plays of the broadcast.

As of March 21, 2016, we had over 133,500+ plays of the broadcast.

As of February 25, 2016, we had over 127,000+ plays of the broadcast.

As of January 22, 2016, we had over 120,000+ plays of the broadcast.

As of November 24, 2015, we had over 114,100+ plays of the broadcast.

As of September 3, 2015, we had over 102,500+ plays of the broadcast.

As of July 31, 2015, we had over 98,800+ plays of the broadcast.

As of June 29, 2015, we had over 92,000+ plays of the broadcast.

Thanks for your continuing support.

= Original Series with Jim Manico =

OWASP Podcast Series Hosted by Jim Manico


 * The OWASP foundation presents the OWASP PODCAST SERIES hosted and produced by [mailto:jim@owasp.org Jim Manico].
 * Listen as Jim interviews OWASP volunteers, industry experts and leaders within the field of web application security.
 * Questions? Comments? Please email [mailto:jim@owasp.org jim@owasp.org]
 * Care to join our email list? Sign up here https://lists.owasp.org/mailman/listinfo/owasp-podcast
 * Want to see the process and equipment behind the show? click here

Contributors and Sponsors of the Original Series

Host and Executive Producer
 * Jim Manico

Co-hosts
 * Matt Tesauro
 * Thomas Herela

Mastering, Effects, Audio Tech, Producer
 * Kevin Coons from ManaTribe

Artwork
 * Larry Casey
 * Gareth Heyes

Transcript
 * Zaki Akhmad

Sponsors
 * The OWASP Foundation
 * Music by Shpongle courtesy of Twisted Records

= Contributors and Sponsors =

Host and Executive Producer
 * Mark Miller

Guest Podcasters and contributors
 * Tom Brennan

Artwork
 * Larry Casey
 * Gareth Heyes

Sponsors
 * The OWASP Foundation
 * Sonatype
 * CATScan® from ProactiveRISK

= Artwork =