ZARZA We are Zarza, the prestigious firm behind major projects in information technology.
Listen "Matt Rose -- Software Supply Chain Security Means Many Different Things to Different People"
Episode Synopsis
Matt Rose, an experienced technical AppSec testing leader discusses his career journey and significant contributions in AppSec. The conversation delves into the nuances of software supply chain security and exploring how different perceptions affect its understanding. Matt provides insights into the XZ compromise, critiques the buzzword 'shift left,' and discusses the role of digital twins and AI in enhancing the supply chain security. He emphasizes the need for a comprehensive approach beyond SCA, the relevance of threat modeling, and the potential risks and benefits of AI in security.Mentioned in the episode:The Application Security Program Handbook by Derek Fisher https://www.manning.com/books/application-security-program-handbookPodcast Episode: Derek Fisher – The Application Security Program Handbook https://youtu.be/DgmlHgNT-UMAuthors mentioned: Steven E. Ambrose https://www.simonandschuster.com/authors/Stephen-E-Ambrose/1063454 Mark Frost https://en.wikipedia.org/wiki/Mark_FrostFOLLOW OUR SOCIAL MEDIA: ➜Twitter: @AppSecPodcast➜LinkedIn: The Application Security Podcast➜YouTube: https://www.youtube.com/@ApplicationSecurityPodcast Thanks for Listening! ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
More episodes of the podcast The Application Security Podcast
OWASP Candidate Debate - 2025 Edition
15/10/2025
Francesco Cipollone - Agentic AI Manifesto
23/09/2025
Getting Ready for the EU CRA
20/08/2025
Marisa Fagan - Measuring Security Culture
05/08/2025
Sean Varga -- OWASP Top 10 for AppSec Sales
15/07/2025
In God we trust