Episode 123: Security Testing: SAST, DAST, IAST

Security testing helps ensure software behaves as intended under hostile conditions. In this episode, we explore different application security testing methodologies, including Static Application Security Testing (SAST), Dynamic Application Security Testing (DAST), and Interactive Application Security Testing (IAST). We explain how each method works, their strengths and limitations, and when to use them during the software development lifecycle. You’ll also learn how these tools integrate with DevOps workflows and how to interpret test results. CISSPs must be able to recommend and evaluate testing strategies to support secure software delivery.

Om Podcasten

Welcome to The Bare Metal Cyber CISSP Prepcast — your essential guide to mastering the CISSP certification. Whether you're just starting your cybersecurity journey or preparing for exam day, this podcast delivers expert insights, practical strategies, and clear explanations to help you succeed. Designed by professionals who’ve walked the path, each episode helps you build confidence, sharpen your skills, and move one step closer to certification success.