Webinar Description
Key Takeaways
- Explores the security implications of AI-generated code in modern development environments
- Addresses recurring AppSec failures, especially in authentication and service boundaries
- Focuses on risk prioritization and reducing security noise for engineering teams
- Highlights practical strategies for scaling AppSec without slowing development
- Features insights from practitioners and researchers at the intersection of AppSec, cloud security, and AI-driven development
The live event, “Ask the Experts: Mythos, Agentic Code Risk, and What’s Next for AppSec,” brings together leading voices from application security, cloud security, and AI-driven development for a candid fireside chat. As AI-generated code becomes a fixture in production environments, the session zeroes in on the operational realities and emerging risks facing security teams today.
AI-Generated Code: New Frontiers, New Risks
With the rapid adoption of AI tools in software development, organizations are grappling with a new class of security challenges. The panel examines how AI-generated code is reshaping the threat landscape, often introducing subtle vulnerabilities that evade traditional review processes. The discussion delves into the breakdown of long-held security assumptions as development cycles accelerate, and why legacy approaches may no longer suffice.
Distinguishing Signal from Noise in AppSec
One of the central themes is the struggle to separate exploitable risks from the overwhelming volume of security alerts. The session explores how contextual security analysis and automation can help teams focus on what truly matters, reducing alert fatigue and enabling more effective risk management. Attendees gain perspective on how to screen out the noise and deliver actionable feedback directly to engineers within their existing workflows.
Recurring Failures and the Challenge of Scale
Authentication flaws and service boundary misconfigurations remain persistent issues, even as tooling improves. The panel discusses why these failures continue to surface and what practical steps AppSec teams can take to address them at scale. The conversation highlights the importance of integrating security into fast-paced development environments without creating bottlenecks or requiring significant increases in headcount.
Industry Context and Emerging Trends
The event situates these challenges within the broader context of evolving AppSec practices. Topics such as static application security testing (SAST), code review automation, and integration with platforms like GitHub and GitLab are discussed in relation to their impact on modern security programs. The panel also references industry frameworks and emerging standards, including OWASP LLM App Risks and the role of advanced agents like DeepScan.
Interactive Format and Audience Engagement
Designed as a live, virtual fireside chat, the session encourages real-time interaction and Q&A. The format allows for dynamic discussion, with space to address late-breaking challenges, attacks, or debates that may arise just before the event. This approach ensures the conversation remains relevant and responsive to the latest developments in the field.
Who Should Attend
The event is tailored for application security engineers, product security leaders, security architects, CTOs, and AI engineers working in technology-driven organizations. It is particularly relevant for teams responsible for securing codebases in SaaS, cloud, and fast-moving development environments, where the pace of change demands new approaches to risk management and security automation.
About the Host
DryRun Security hosts the session, positioning itself as a thought leader and solution provider for the challenges of modern AppSec. The event showcases the company’s commitment to practical, actionable security and highlights its capabilities in contextual analysis, code review automation, and seamless integration with developer workflows.