How is the job changing, and what’s staying the same?

Most organizations expect security engineers to have expertise in security-specific topics, but as Jeevan Singh (Director of Security Engineering, Rippling) will tell us, that’s just a baseline to drive your career forward. In this session, we’ll discuss:

• The relevance of technical skills in AppSec and software development
• The need for influencing and program management tactics
• What’s changing now that AI is part of daily life

How secure is AI-generated code?

Tools like Base44, Cursor, and Vercel make it easy for anyone to write code. But as Endor Labs co-founder and CTO Dimitri Stiliadis will demonstrate, that doesn’t mean anyone can generate secure code. We’ll cover:

• What happens when you scan AI-generated code
• Fixing vulnerabilities
• Impact on AppSec programs

Do your scanners find every risk? (No!)

As a long-time practitioner and instructor of a proven process for conducting secure code reviews, Absolute AppSec co-host Seth Law shares effective strategies for implementing a code review methodology. Topics will include:

• A general overview of what a secure code review should look like
• Use of Generative AI and LLMs during code reviews
• Identification and prioritization of application risks based on code metadata