As AI becomes a co-developer in modern software engineering, the definition of “secure coding” is rapidly evolving. This session explores how artificial intelligence is reshaping the way developers learn, apply, and scale secure coding practices — and how new risks emerge when machines start generating the code themselves. We’ll dive into the dual challenge of securing both human-written and AI-assisted code, discuss how enterprises can validate AI outputs against existing security standards, and highlight practical steps teams can take to build resilience into the entire development pipeline. Join us as we look ahead to the convergence of secure software engineering and AI security — where trust, transparency, and tooling will define the future of code safety.
Segment Resources: https://manicode.com/ai/
This interview is sponsored by the OWASP GenAI Security Project. Visit https://securityweekly.com/owaspappsec to watch all of CyberRisk TV's interviews from the OWASP 2025 Global AppSec Conference!
Jim Manico is the founder of Manicode Security, a company dedicated to providing expert training in secure coding and AI security engineering to software developers. In addition to leading Manicode, Jim is actively involved in the tech-startup ecosystem as an investor and advisor. His portfolio includes notable companies such as Semgrep, EdgeScan, Nucleus Security, Defect Dojo, RAD Security, Akto, Inspectiv, Levo.ai, and Phoenix Security. He is also a limited partner investor with Aviso Ventures and Grossman Ventures, bringing software-security expertise to the venture-capital domain.
A recognized figure in the software-development community, Jim is best known for advancing secure-software practices. He authored Iron-Clad Java: Building Secure Web Applications (Oracle Press) and holds the title of Java Champion. Jim gives back to the application-security community through his volunteer work with the OWASP Foundation, co-leading the OWASP Artificial Intelligence Security Verification Standard (AISVS), the OWASP Application Security Verification Standard (ASVS), and the OWASP Cheat Sheet Series.
