Full Segment Notes
AI coding assistants are accelerating development and overwhelming AppSec. Learn how AI-generated code increases risk, why old security workflows break down, and how guardrails, context, and autofix can reshape secure software delivery.
Thank you to our sponsor for this webcast, Apiiro!
If AI is accelerating your development but your AppSec program still works like it’s 2019, you’re already behind. Register for an upcoming SC Media webcast at https://scworld.com/webcasts and learn how security leaders are rebuilding AppSec for the AI era.
Key Moments
- 0:00 - Introduction & Why AI Changes AppSec
- 02:10 - Why Developers Are Already Overwhelmed
- 04:10 - How AI Coding Assistants Multiply Risk
- 07:10 - More Code, More Pull Requests, More Findings
- 09:20 - Trust, Provenance & AI-Generated Code
- 11:40 - Why Traditional AppSec Workflows Break
- 14:50 - The Need for a New AppSec Model
- 17:00 - AI Risk vs Business Pressure to Ship Faster
- 20:00 - Why “Scan More” Won’t Solve This
- 22:10 - Context Matters More Than Code Alone
- 24:00 - How AI Can Help with Threat Modeling
- 27:00 - Guardrails, ASPM & IDE-Native Security
- 29:00 - The Rise of Contextual Security Engineering
- 31:30 - Secure-by-Design in the AI Era
- 34:00 - Why Developer Experience Matters
- 36:20 - Reducing Noise & Building Developer Trust
- 39:00 - AI for Autofix, Review & Risk Reduction
- 42:00 - Measuring Success: Fewer Findings, Better Outcomes
- 45:10 - What CISOs Should Expect Next
- 48:00 - The Future of AppSec with AI
- 51:20 - Final Takeaways
