Application Security Weekly (Audio)

Security Weekly Productions

Application Security

Open Source Software

Cybersecurity

Software Supply Chain Security

Supply Chain Security

Ebpf

Cybersecurity Best Practices

Security Engineering

Generative AI In Security

Node.js

Development Teams

API Security

Bot Management

Software Development

Vulnerabilities

Government Funding For Software

Luis Villa

Appsec

XZ Utils

Karan Dwivedi

About all things AppSec, DevOps, and DevSecOps. Hosted by Mike Shema and John Kinsella, the podcast focuses on helping its audience find and fix software flaws effectively.

20 ratings

Publishes	Weekly	Episodes	367	Founded	8 years ago
Number of Listeners		Categories	Tech NewsTechnologyNews

Listen to this Podcast

Guests Hosts Reviews Talking Points

Latest Episodes

Reacting to Ransomware and Setting Secure Defaults - Rob Allen - ASW #353

Ransomware attacks typically don't care about memory safety and dependency scanning, they often target old, unpatched vulns and too often they succeed. Rob Allen shares some of the biggest cases he's seen, what they have in common, and what appsec te... more

21 Oct 2025 • 1 hr 3 min

Inside the OWASP GenAI Security Project - Steve Wilson - ASW #352

Interest and participation in the OWASP GenAI Security Project has exploded over the last two years. Steve Wilson explains why it was important for the project to grow beyond just a Top Ten list and address more audiences than just developers. He als... more

14 Oct 2025 • 1 hr 7 min

Finding Large Bounties with Large Language Models - Nico Waisman - ASW #351

Software has forever had flaws and humans have forever been finding and fixing them. With LLMs generating code, appsec has also been trying to determine how well LLMs can find flaws. Nico Waisman talks about XBOW's LLM-based pentesting, how it climbe... more

7 Oct 2025 • 53 min

Changing the Vuln Conversation from Volume to Remediation - Francesco Cipollone - ASW #350

Dealing with vulns tends to be a discussion about prioritization. After all, there a tons of CVEs and dependencies with known vulns. It's important to figure out how to present developers with useful vuln info that doesn't overwhelm them. Francesco C... more

30 Sep 2025 • 1 hr 14 min

Key Facts

Accepts Guests

Accepts Sponsors

Contact Information

Podcast Host

Number of Listeners

Find out how many people listen to this podcast per episode and each month.

Similar Podcasts

People also subscribe to these shows.

The Application Security PodcastChris Romeo and Robert Hurlbut

CISO Series PodcastDavid Spark, Mike Johnson, and Andy Ellis

Cyber Security HeadlinesCISO Series

Defense in DepthDavid Spark, Steve Zalewski, Geoff Belknap

Risky BusinessPatrick Gray

Recent Guests

Steve Wilson

Chief Product Officer at ExaBeam and a leader in the generative AI and cybersecurity domains

ExaBeam

Episode: Inside the OWASP GenAI Security Project - Steve Wilson - ASW #352

Nico Waisman

CISO at XBOW, previously CISO at Lyft, with over 20 years in security leadership roles.

XBOW

Episode: Finding Large Bounties with Large Language Models - Nico Waisman - ASW #351

Francesco Cipollone

Former AppSec and Cloud Security Lead for HSBC, Chair of the Cloud Security Alliance

Episode: Changing the Vuln Conversation from Volume to Remediation - Francesco Cipollone - ASW #350

Scott Clinton

Board member and co-chair of the OWASP GenAI Security Project

OWASP

Episode: How OWASP's GenAI Security Project keeps up with the pace of AI/Agentic changes - Scott Clinton - ASW #348

Seemant Sehgal

Founder of BreachLock with a background in cybersecurity assessments for financial institutions.

BreachLock

Episode: Limitations and Liabilities of LLM Coding - Seemant Sehgal, Ted Shorter - ASW #347

Michael Callahan

Chief Marketing Officer at Salt Security

Salt Security

Episode: AI, APIs, and the Next Cyber Battleground: Black Hat 2025 - Chris Boehm, Idan Plotnik, Josh Lemos, Michael Callahan - ASW #346

Idan Plotnik

Co-founder and CEO of Apiiro

Apiiro

Episode: AI, APIs, and the Next Cyber Battleground: Black Hat 2025 - Chris Boehm, Idan Plotnik, Josh Lemos, Michael Callahan - ASW #346

Chris Boehm

Field CTO of Zero Networks

Zero Networks

Episode: AI, APIs, and the Next Cyber Battleground: Black Hat 2025 - Chris Boehm, Idan Plotnik, Josh Lemos, Michael Callahan - ASW #346

Emily Fox

A DevOps enthusiast and advocate for women in technology with over 15 years of experience in security.

Episode: Translating Security Regulations into Secure Projects - Roman Zhukov, Emily Fox - ASW #345

Hosts

Mike Shema

Host of Application Security Weekly and a knowledgeable figure in the field of application security and development. He brings insights from his experiences and discussions on contemporary tech issues affecting security practices.

John Kinsella

Co-host of Application Security Weekly, with extensive experience in application security practices and DevOps. His discussions frequently bring in diverse perspectives on tech and regulatory challenges in security.

Reviews

4.7 out of 5 stars from 20 ratings

Yes
It’s the best.
Apple Podcasts
5
Alpha Gay
United States4 months ago
Great show
Amazing show with great news and tips on making sure you code is secure.
Apple Podcasts
5
DMLou
United States3 years ago
One of the best podcast on planet 👍
One of the best podcast on planet 👍
Mike and john are the best and most funny host I had the pleasure dealing with.
Also level of knowledge and precision is unbeatable
Apple Podcasts
5
Fracipo
United Kingdom3 years ago
Great show
Best show I’ve found so far related to AppSec
Apple Podcasts
5
jrod d
United States5 years ago
Keith fails again
Clearly doesn’t know or understand java but still keeps yapping regardless. And don’t get me started on the gdpr episode... so much misinformation and stupidity in one location is rare.
Apple Podcasts
1
quasi42
Denmark7 years ago

Embed These Reviews on a Website

Listeners Say

Key themes from listener reviews, highlighting what works and what could be improved about the show.

Listeners appreciate the depth of knowledge and engagement offered by the hosts, highlighting their ability to make complex security topics understandable. They often praise the practical insights shared by expert guests, which they find applicable to real-world scenarios. Some feedback indicates concerns over specific inaccuracies in discussions but overall, the quality of content is well-received.

Positive mentions include the humor and approachability of the hosts, making technical discussions more enjoyable while encouraging a supportive community around application security.

Top Technology Podcasts

AcquiredBen Gilbert and David Rosenthal

All-In with Chamath, Jason, Sacks & FriedbergAll-In Podcast, LLC

Dwarkesh PodcastDwarkesh Patel

The Last InventionLongview

Hard ForkThe New York Times

The Digital ExecutiveCoruzant Technologies

TED Radio HourNPR

DGTL Voices with Ed Marxdgtlvoices

Lex Fridman PodcastLex Fridman

The AI Daily Brief: Artificial Intelligence News and AnalysisNathaniel Whittemore

Talking Points

Recent interactions between the hosts and their guests.

Limitations and Liabilities of LLM Coding - Seemant Sehgal, Ted Shorter - ASW #347

Q: How do you address concerns around using AI in security?

We've built an AI transparency module that allows clients to see what agents are doing, maintaining control while utilizing AI for efficiency.

Limitations and Liabilities of LLM Coding - Seemant Sehgal, Ted Shorter - ASW #347

Q: What was the onus that caused you to say, I need to start a company to solve this problem?

There was too much focus on defense and not the proactive side of security, which led me to believe there was more innovation needed in offensive security.

How Product-Led Security Leads to Paved Roads - Julia Knecht - ASW #341

Q: How do you tackle challenges in getting teams to adopt security tools?

We need to understand why teams may resist using the paved roads and focus on creating incentives for adoption.

How Product-Led Security Leads to Paved Roads - Julia Knecht - ASW #341

Q: What metrics do you use to measure the success of your security initiatives?

We build security assurance metrics by collaborating with different teams to evaluate our overall security posture.

How Product-Led Security Leads to Paved Roads - Julia Knecht - ASW #341

Q: Can you discuss what product-led security entails at Netflix?

It's an approach where product and design work closely to understand user needs and integrate security seamlessly into workflows.

Audience Metrics

Listeners, social reach, demographics and more for this podcast.

Listeners per Episode
Gender Skew
Location
Interests
Professions
Age Range
Household Income
Social Media Reach

Frequently Asked Questions About Application Security Weekly

What is Application Security Weekly about and what kind of topics does it cover?

Focused on application security, this podcast covers essential topics related to software development, DevOps, and security practices in technology. Discussions often revolve around the latest trends in vulnerability management, the integration of AI in security practices, and the challenges associated with securing modern software systems. Episodes feature insights from industry experts, highlighting practical strategies for mitigating security risks while fostering collaboration between development and security teams. Its unique blend of technical discussions and expert guest insights likely appeals to professionals keen on improving their knowledge of security practices and tools.

Where can I find podcast stats for Application Security Weekly?

Rephonic provides a wide range of podcast stats for Application Security Weekly. We scanned the web and collated all of the information that we could find in our comprehensive podcast database. See how many people listen to Application Security Weekly and access YouTube viewership numbers, download stats, audience demographics, chart rankings, ratings, reviews and more.

How many listeners does Application Security Weekly get?

Rephonic provides a full set of podcast information for three million podcasts, including the number of listeners. View further listenership figures for Application Security Weekly, including podcast download numbers and subscriber numbers, so you can make better decisions about which podcasts to sponsor or be a guest on. You will need to upgrade your account to access this premium data.

What are the audience demographics for Application Security Weekly?

Rephonic provides comprehensive predictive audience data for Application Security Weekly, including gender skew, age, country, political leaning, income, professions, education level, and interests. You can access these listener demographics by upgrading your account.

How many subscribers and views does Application Security Weekly have?

To see how many followers or subscribers Application Security Weekly has on Spotify and other platforms such as Castbox and Podcast Addict, simply upgrade your account. You'll also find viewership figures for their YouTube channel if they have one.

Which podcasts are similar to Application Security Weekly?

These podcasts share a similar audience with Application Security Weekly:

1. The Application Security Podcast
2. CISO Series Podcast
3. Cyber Security Headlines
4. Defense in Depth
5. Risky Business

How many episodes of Application Security Weekly are there?

Application Security Weekly launched 8 years ago and published 367 episodes to date. You can find more information about this podcast including rankings, audience demographics and engagement in our podcast database.

How do I contact Application Security Weekly?

Our systems regularly scour the web to find email addresses and social media links for this podcast. We scanned the web and collated all of the contact information that we could find in our podcast database. But in the unlikely event that you can't find what you're looking for, our concierge service lets you request our research team to source better contacts for you.

Where can I see ratings and reviews for Application Security Weekly?

Rephonic pulls ratings and reviews for Application Security Weekly from multiple sources, including Spotify, Apple Podcasts, Castbox, and Podcast Addict.

View all the reviews in one place instead of visiting each platform individually and use this information to decide if a show is worth pitching or not.

How do I access podcast episode transcripts for Application Security Weekly?

Rephonic provides full transcripts for episodes of Application Security Weekly. Search within each transcript for your keywords, whether they be topics, brands or people, and figure out if it's worth pitching as a guest or sponsor. You can even set-up alerts to get notified when your keywords are mentioned.

What guests have appeared on Application Security Weekly?

Recent guests on Application Security Weekly include:

1. Steve Wilson
2. Nico Waisman
3. Francesco Cipollone
4. Scott Clinton
5. Seemant Sehgal
6. Michael Callahan
7. Idan Plotnik
8. Chris Boehm

To view more recent guests and their details, simply upgrade your Rephonic account. You'll also get access to a typical guest profile to help you decide if the show is worth pitching.

Find and pitch the right podcasts

We help savvy brands, marketers and PR professionals to find the right podcasts for any topic or niche. Get the data and contacts you need to pitch podcasts at scale and turn listeners into customers.

Try it free for 7 days