Mark Curphey

About this episode

Mark's interview is the 3rd episode in our application security series where we discuss OWASP's origins & present state, the complicated relationship between security teams and developers, open source and a bunch more. Mark shares what worked (and didn't) while building SourceClear and what he sees happening to security when software finally eats the world.

Meet our guest

Mark Curphey

Founder | OWASP, SourceClear

About Mark

Mark is the founder and CEO of SourceClear, a software composition analysis solution which was acquired by CA | Veracode in 2018. In 2001, he founded the Open Web Application Security Project (OWASP), a non-profit organization known for its Top 10 list of Most Critical Web Application Security Risks. Mark moved to the U.S. in 2000 to join Internet Security Systems (acquired by IBM), and later held roles including director of application security at Charles Schwab, VP Professional Services at Foundstone (acquired by McAfee) and lead the security tools team at Microsoft. Mark holds a Masters of Information Security at Royal Holloway University. He's an avid cyclist and currently resides with his family in the San Francisco Bay Area.