MCP Security at Wiz with Rami McCarthy

Software Engineering Daily

Technology, News, Tech News

4.2 • 653 Ratings

🗓️ 10 July 2025

⏱️ 55 minutes

🔗️ Recording | iTunes | RSS

🧾️ Download transcript

Summary

Wiz is a cloud security platform that helps organizations identify and remediate risks across their cloud environments. The company’s platform scans layers of the cloud stack, including virtual machines, containers, and serverless configurations, to detect vulnerabilities and misconfigurations in context. The Model Context Protocol, or MCP, is emerging as a potential standard for connecting LLM

Transcript

Click on a timestamp to play from that location

0:00.0	WIS is a cloud security platform that helps organizations identify and remediate risks across their
0:06.6	cloud environments. The company's platform scans layers of the cloud stack, including virtual machines,
0:12.9	containers, and serverless configurations to detect vulnerabilities and misconfigurations in context.
0:19.5	The Model Context Protocol, or MCP, is emerging as a potential
0:24.1	standard for connecting LLM applications to external data sources and tools. It has rapidly gained
0:30.8	traction across the industry, with broad backing from companies such as OpenAI, Microsoft, and Google.
0:37.5	While the protocol offers great opportunities, it also introduces certain security risks.
0:43.6	Rami McCarthy is a principal security researcher at WIS.
0:47.8	He joins the podcast with Gregor Van to talk about security research, AI and Secrets Leakage,
0:57.0	MCP Security, Supply Chain Attacks, Career Advice, and more. Gregor Vand is a CTO and founder, currently working at the intersection
1:04.0	of communication, security, and AI, and is based in Singapore. His latest venture, Wintick.AI, reimagines what email can be in the AI era.
1:14.7	For more on Gregor, find him at van.hk or on LinkedIn. Hello, welcome to Software Engineering Daily. My guest today is Rami McCarthy from WIS. So hi, Rami,
1:38.2	thanks for coming on. Thanks for having me. Excite to be here. Yeah, very excited to have you here.
1:43.9	And as I sort of just
1:45.4	mentioned, you're here on effectively behalf of WIS. You joined fairly recently, but you definitely
1:51.5	have quite a illustrious past in the security world, a lot of research that I'm sure a lot of
1:58.9	our audience will be familiar with, whether sort of directly or indirectly.
2:03.6	So I think it would be kind of just fun, if you could just pretty much take us through kind of your kind of journey from whether it's, you know, high school or college through to through to where you are at the moment.
2:13.9	Awesome. Yeah. You mentioned I joined Wiz recently, and I really feel like that
2:17.8	is a logical culmination of a lot of what I've done in my career. I studied security in
2:24.7	university academically. I feel like I came up at a really good time where those programs were
2:29.2	starting to pop up in the U.S. specifically the NSA was funding a lot of universities to have
	...

Please login to see the full transcript.

Previous episode | Next episode

Disclaimer: The podcast and artwork embedded on this page are from Software Engineering Daily, and are the property of its owner and not affiliated with or endorsed by Tapesearch.

Generated transcripts are the property of Software Engineering Daily and are distributed freely under the Fair Use doctrine. Transcripts generated by Tapesearch are not guaranteed to be accurate.