The SDLC Blind Spot: Why Breaches Start with Identity, Not Code – Raj Mallempati – RSAC26 #1

This episode is sponsored by
Full Segment Notes
Key Moments
  • 0:00 - Welcome to RSAC 2026 – Developer Security Trends
  • 0:22 - Why Identity & Access Management Still Matters
  • 0:48 - The Hidden Root Cause of Vulnerabilities (Not Just CVEs)
  • 02:29 - Human vs Non-Human Identities & AI Agents Explained
  • 02:56 - Why Enterprises Know the Risk But Ignore It
  • 04:01 - The Visibility Problem in DevSecOps
  • 04:35 - Least Privilege & Reducing Attack Surface
  • 06:17 - Understanding Toxic Interactions in Security
  • 06:52 - Insider Risk vs External Threats in Dev Environments
  • 08:19 - Correlating Data Across Dev Tools for Better Security
  • 08:33 - Managing Shadow AI & Developer Tool Sprawl
  • 09:27 - The Rise of Unsanctioned LLMs in Development
  • 11:35 - Overprivileged Access – The 5% Usage Reality
  • 12:13 - How CISOs Can Secure Without Slowing Developers
  • 13:45 - Balancing Security with Developer Productivity
  • 14:02 - Zero Trust & Least Privilege in Practice
  • 14:30 - Developer Freedom vs Security Governance
  • 14:45 - What is Developer Risk & Governance Platform?
Guest
CEO and Co-founder at BlueFlag Security

Raj Mallempati is CEO & Co-founder of BlueFlag Security. Prior to launching BlueFlag, he most recently served as COO CIEM at Microsoft, through Microsoft’s acquisition of his prior company CloudKnox Security (acquired 2021). Prior to joining CloudKnox, Raj was the Senior Vice President of Marketing at Malwarebytes. Raj has also held positions as the Vice President of Global Marketing at MobileIron, Vice President of Product Marketing at Riverbed Technology, and was the Director of Marketing and Business Strategy at VMware. He holds an MBA from The Wharton School, University of Pennsylvania, MS, Computer Science from the University of Texas, and a B.Tech from Indian Institute of Technology, Madras.

Stay in the Know, No Smoke and Mirrors – Join Our Newsletter

You can skip this ad in 5 seconds