Mackenzie Jackson & Dwayne McDaniel
The Security Repo
The security repo is a podcast that focuses on real world security issues we are all facing today. We will take deep dives into news events and have exclusive interviews with security leaders on the ground.
Author
Mackenzie Jackson & Dwayne McDaniel
Category
Podcast website
Latest episode
Apr 1, 2026
Where to listen?
Podcasts in the app Replaio Radio Coming soonPodcasts are coming to the app soon. Install now and be the first to see a whole new take on podcasts
Episodes
AI, Automation, & Humans' Role In Security: A View From Rsac 2026 With Jeff Man and Dwayne McDaniel 01.04.2026 42:50
In this episode of the Security Repo Podcast, Jeff Man and Dwayne McDaniel unpack the shift in cybersecurity from talking about AI as a future concept to confronting agentic AI as a present-day security reality. They explore what the industry is getting right and wrong, from automation’s potential to help close the skills gap to the ongoing danger of treating tools, compliance, and governance as s...
Avoiding Operational Chaos While Defending A Credit Union With Data Classification - John Wallace 25.03.2026 19:43
In this episode of the Security Repo Podcast, IT Audit & Data Privacy Leader John Wallace joins Dwayne to talk about the importance of data classification, the cornerstone of data protection. They cover high levels of data tagging, using AI to help with the workload, and how, at the end of the day, governance really comes down to humans agreeing on definitions. John also talks a little about c...
OIDC And IAP In Production: Scaling Startup Security For Deepfake Defense - Talia Smiley 18.03.2026 20:01
In this episode of the Security Repo Podcast, Dwayne McDaniel talks with Talia Smiley, CTO of Silversight, about why her startup chose workload identity, OIDC, and IAP instead of long-lived secrets and service account keys. Talia explains how secure-by-default design, just-in-time access, and thoughtful infrastructure choices can actually be faster and more sustainable than legacy approaches, espe...
The PCI Ultimatum -Thrift Store OSINT, and "Lost Media" with Dwayne Edwards and Mike Radigan 17.03.2026 22:23
In this episode of the Security Repo Podcast, we uncover the wild and hilarious true story behind a forgotten piece of cybersecurity media history: “The PCI Ultimatum” and the world-building inside of it that gave us “Dwayne’s World of Security,” a DIY Cisco-era cult film rediscovered via a thrift store handbag. Guests Mike Radigan and Dwayne Edwards share how they disrupted corporate norms to cre...
From Annual Checkbox To Continuous SDLC Testing: Operationalizing AI Pentests - Andy Dennis of XBow 13.03.2026 19:47
In this episode of the Security Repo Podcast, Dwayne catches up with returning guest Andy Dennis (Head of Field Engineering at XBOW) to unpack what it really means to run “AI-backed” penetration testing at scale, without turning red teaming into a gimmick. They dig into how XBOW approaches discovery, guardrails, and reporting beyond “scan results,” and why operationalizing LLM-driven testing in re...
Why Compliance Isn’t Governance & How GovOps Rebuilds Trust Boundaries – Mike Schwartz 11.03.2026 37:45
Why Compliance Isn’t Governance & How GovOps Rebuilds Trust Boundaries – Mike Schwartz In this episode of the Security Repo Podcast, Dwayne sits down with Mike Schwartz (CEO & founder of Gluu) to unpack GovOps as “next-gen governance” built to be declarative, provable, and continuous. They dig into why compliance ≠ governance, how formal reasoning can help prove policy outcomes, and why mo...
Building AI Solutions with a Security-First Mindset: Frameworks and Lessons with Henry Odibi 11.02.2026 18:46
In this episode of the Security Repo Podcast, we talk with Henry Odibi, a data engineer who pivoted from chemical engineering into data and AI. Henry shares how he hacked his way into tech, built his own automation tools, and now integrates AI responsibly—always with a “security first” mindset. He also emphasizes the importance of treating data as if it were your own and offers practical steps for...
Link Safety, Lightweight AI & Operationalizing Threat Modeling - Nathan Koester 04.02.2026 20:45
In this episode of the Security Repo Podcast, Nathan Koester shares his path from reverse engineering for the Air Force to building practical security tools for real-world teams. He discusses *Pwnbook.io*, a platform for integrating and visualizing security tools and data, and *Charlemagne Labs*, a local-first browser extension using small language models to detect risky links. The conversation al...
Tackling the Root of Incidents: Culture, Credentials, and AWS Insights – Robert Saul 28.01.2026 25:48
In this episode of the Security Repo Podcast, we dive into the world of incident response with Robert Saul, General Manager of AWS Security Incident Response Services. Robert shares insights from decades of experience, emphasizing that over 70% of security incidents stem from credential loss and that these challenges are rooted more in people and process than technology. From governance and playbo...
Hacking WebMethods: Legacy Systems, Modern Threats – Ryan Bonner 21.01.2026 17:53
In this episode of the Security Repo Podcast, Ryan Bonner dives into his exploration of legacy enterprise integration platform WebMethods, revealing alarming vulnerabilities that allow unauthenticated access and even system shutdowns. He discusses how collaboration with Iceland’s top bug bounty hunter led him into this niche area of research, and shares practical advice for responsible disclosure...
Why Attackers Don’t Care About Your Contracts: A Deep Dive Into Exploit Markets – Evan Dornbush 14.01.2026 24:22
In this episode of the Security Repo Podcast, we dive into the world of zero-day exploits, marketplace dynamics for vulnerability research, and the evolving role of cybersecurity in boardroom decision-making. Guest Evan Dornbush, founder of Desired Effect, shares his journey from government cyber-ops to founding multiple security startups, and explains why attackers don’t care about compliance pap...
Untangling Identity: From Active Directory to Entra ID with Eric Woodruff 07.01.2026 23:16
In this episode of the Security Repo Podcast, Eric Woodruff dives deep into the complexities of identity and access management (IAM), from the evolution of Active Directory to the future of non-human identities. He explains the real-world challenges of hybrid environments, governance, and over-engineered identity solutions. Eric also highlights practical ways for newcomers to start learning IAM an...
A Special Holiday Message from The Security Repo Podcast 19.12.2025 0:47
Hi everyone, It's Dwayne, host of the security repo podcast. The show is taking a 2-week break over the holidays to give you a chance to catch up on our backlog of security conversations. Our next new episode premieres January 7th, 2026. It's one to look forward to. And I wanted to say a huge thank you to each and every one of our listeners and subscribers. Thanks to you, in 2025, we gaine...
The CISO Whisperer Approach: Security Leadership, Empathy, and ‘Dad Bod’ Metrics – Douglas Brush 17.12.2025 23:50
In this episode of the Security Repo Podcast, Douglas Brush, digital forensics expert and self-proclaimed "CISO Whisperer," shares his journey from early IT consulting to guiding CISOs and boards through complex security decisions. He breaks down his “Dad Bod Security” framework, connecting personal health metrics to meaningful cybersecurity goals, and highlights the need to move beyond...
Scaling Open Source Observability and Managing Risk in the Software Supply Chain – Avi Press 10.12.2025 26:56
Scaling Open Source Observability and Managing Risk in the Software Supply Chain – Avi Press In this episode of the Security Repo Podcast, Avi Press, founder and CEO of Scarf, dives deep into the evolving world of open source observability and its intersection with security. He unpacks how better visibility into software usage can inform both defensive strategies and smarter commercialization, whi...
Decoding Threat Actor Names: Marketing, Confusion & the MITRE Solution – Jeffrey Bell 03.12.2025 19:54
In this episode of the Security Repo Podcast, Jeffrey Bell, Principal Security Engineer and founder of CatchingPhish.com, discusses the confusion surrounding the naming conventions of threat actor groups across different security vendors. He explains how companies like CrowdStrike, Palo Alto, and Mandiant label the same adversaries with different names due to marketing and commercialization pressu...
Why Technical CISOs Matter and How AI Is Shaping Security Ops - David Cross on Leading Security 26.11.2025 21:09
In this episode of the Security Repo Podcast, David Cross, CISO at Atlassian and former Microsoft, Google, and Oracle security leader, shares his journey from Navy electronic warfare to global cybersecurity leadership. He offers hard-won insights on breaking into the industry, the evolving demands of the CISO role, and the practical impacts of AI on security operations. David also delivers candid...
Identity Risks in Email: Your Inbox Might Be Lying About You – Amy Devine 19.11.2025 24:18
In this episode of the Security Repo Podcast, Dwayne McDaniel sits down with Amy Devine, a systems architect who transitioned from embedded wireless systems to cybersecurity. Amy shares the eye-opening story behind her Blue Team Con talk on how misdirected emails exposed sensitive personal data and what that means for digital identity. The conversation dives deep into privacy, data brokers, and wh...
From Military Intel to CISO: Navigating Security Leadership in the Age of AI – Darren Desmond 12.11.2025 22:54
In this episode of the Security Repo Podcast, we sit down with Darren Desmond, a seasoned CISO with a background in UK military intelligence, to unpack his unconventional journey from fish and chips to threat intelligence. He shares how his military forensics experience shaped his InfoSec leadership and dives deep into the evolving role of the CISO in a world increasingly driven by AI. Darren also...
Mapping the InfoSec Community: Building InfoSecMap & Global Security Events – Martín Villalba 05.11.2025 26:04
In this episode of the Security Repo Podcast, we sit down with Martín Villalba, founder of InfoSecMap, to explore how his platform is transforming the way InfoSec professionals discover global events, communities, and CFPs. We dive into the origin story of InfoSecMap, its recent growth surge, and its strategic partnerships with organizations like OWASP. Martín also shares practical advice on build...
Supply Chain Warfare: CI/CD Threats and Open Source Security with François Proulx 29.10.2025 29:34
Supply Chain Warfare: CI/CD Threats and Open Source Security with François Proulx In this episode of the Security Repo Podcast, François Proulx, VP of Security Research at Boost Security, discusses the evolving threats in software supply chain security, particularly focusing on attacks targeting CI/CD pipelines. He explains how open source tools like "Poutine" are being used both defensi...
Fighting Tool Squatting And Prompt Injection & The Security Gaps In MCP – Srajan Gupta 22.10.2025 23:41
In this episode of the Security Repo Podcast, we welcome Srajan Gupta, a security engineer exploring the evolving security implications of Model Context Protocol (MCP) servers. Shrojan breaks down how MCPs act as AI connectors to external systems and the alarming rise in attack surfaces, including tool squatting and indirect prompt injections. The conversation dives into emerging threats, authoriz...
Fixing Hiring, Fostering Diversity, and Finding Your Place in Security – Matt Torbin 15.10.2025 19:15
In this episode of the Security Repo Podcast, we sit down with Matt Torbin to explore his inspiring journey from jazz musician to cybersecurity advocate and leader. We dive deep into the origins and impact of Day of Shecurity, a one-day conference aimed at increasing representation and mentorship for women and non-binary individuals in infosec. Matt also shares innovative ideas around fixing the b...
Dev Engagement in Security: From Content Strategy to Community Strategy with Alyssa Miles 08.10.2025 18:44
In this episode of the Security Repo Podcast, we chat with Alyssa Miles, a product marketing leader at CyberArk, about building authentic developer communities in the security space. She shares her journey from agency marketing to driving developer engagement, along with insights from Hacker Summer Camp and strategies for enabling community-driven identity tooling. Alyssa also discusses how to shi...
Beyond Controls: Building Trust and Communication in Security – Featuring AriaDear 01.10.2025 19:59
In this episode of the Security Repo Podcast, Aria Langer returns to share deep insights from her work in privileged access management and the challenges of implementing security controls without alienating coworkers. She and Dwayne dive into the often-overlooked importance of empathy in cybersecurity, exploring how human connection can make security efforts more effective. The conversation touche...
Similar podcasts
Replaio is not a podcast publisher; show names, artwork and audio belong to their authors and are distributed through public RSS feeds.