MCP Security at Wiz with Rami McCarthy

SEDaily
By
Podcast Thursday, July 10 2025

Podcast: Play in new window | Download

Subscribe: RSS

Wiz is a cloud security platform that helps organizations identify and remediate risks across their cloud environments. The company’s platform scans layers of the cloud stack, including virtual machines, containers, and serverless configurations, to detect vulnerabilities and misconfigurations in context.

The Model Context Protocol, or MCP, is emerging as a potential standard for connecting LLM applications to external data sources and tools. It has rapidly gained traction across the industry with broad backing from companies such as OpenAI, Microsoft, and Google. While the protocol offers great opportunities, it also introduces certain security risks.

Rami McCarthy is a Principal Security Researcher at Wiz. He joins the podcast with Gregor Vand to talk about security research, AI and secrets leakage, MCP security, supply chain attacks, career advice, and more.

Gregor Vand is a security-focused technologist, and is the founder and CTO of Mailpass. Previously, Gregor was a CTO across cybersecurity, cyber insurance and general software engineering companies. He has been based in Asia Pacific for almost a decade and can be found via his profile at vand.hk.

 

 

Please click here to see the transcript of this episode.

Sponsorship inquiries: sponsor@softwareengineeringdaily.com

SEDaily

Sponsors

This episode is sponsored by Mailtrap – an Email Platform developers love.

Go for fast email delivery, high inboxing rates, and live 24/7 expert support.

Get 20% off for all plans with our promo code SEDAILY.

Check the details in the description below.

This episode of Software Engineering Daily is brought to you by Capital One.

How does Capital One stack? It starts with applied research and leveraging data to build AI models. Their engineering teams use the power of the cloud and platform standardization and automation to embed AI solutions throughout the business. Real-time data at scale enables these proprietary AI solutions to help Capital One improve the financial lives of its customers. That’s technology at Capital One.

Learn more about how Capital One’s modern tech stack, data ecosystem, and application of AI/ML are central to the business by visiting www.capitalone.com/tech.

POPULAR

Software Daily

Software Daily

 
Subscribe to Software Daily, a curated newsletter featuring the best and newest from the software engineering community.


Exclusive Articles

VMware Tanzu GemFire and Next-Generation Real-Time Application Development

Uber’s LedgerStore and its Trillions of Indexes with Kaushik Devarajaiah

GraphQL vs. REST: What Are They, and Which Is Better for You?

Cloud Engineering

CodeRabbit and RAG for Code Review with Harjot Gill

Building Chess.com with Jay Severson

Mastodon with Eugen Rochko

Business and Philosophy

Startup Investing with George Mathew

KubeCon Special: Docker with Justin Cormack

Software Architecture with Josh Prismon

Greatest Hits

Hardening C++ with Bjarne Stroustrup

Surviving ChatGPT with Christian Hubicki

Special Episode with George Hotz

Hackers

Making React 70% faster with Aiden Bai of Million.js

Cross-functional Incident Management with Ashley Sawatsky and Niall Murphy

SDKs for your API with Sagar Batchu

Data

Hyperscaling SQL with Sam Lambert

Spring AI and Java in 2024

Iceberg at Netflix and Beyond with Ryan Blue