- 0:00 - Introduction
- 01:50 - Why AI Is Expanding the AppSec Attack Surface
- 07:40 - API Security Lessons for AI Security
- 13:35 - Identity, Least Privilege & AI Agents
- 20:23 - Do We Need New Security Controls for AI?
- 23:29 - Can AI Improve Application Security?
- 29:53 - MCP Servers, Permissions & Risk
- 33:56 - Why Data Governance Matters for AI
- 42:03 - Runtime Security & Visibility
- 45:16 - Selling AI Security to the Business
- 48:29 - Biggest Mistakes Security Teams Make
- 52:58 - RSA Preview & Final Thoughts
API Security in the Age of AI: Managing Identity, Risk & AI Agents – WC #1
AI is transforming application development at unprecedented speed—but is your application security strategy keeping up? In this SC Media webcast, host Mike Shema sits down with Craig Riddell, Global Field CISO at Wallarm, to explore how AI agents, MCP servers, APIs, identity sprawl, and machine-speed attacks are reshaping the application security landscape. Learn why traditional security approaches are struggling against AI-driven development, how API security provides a foundation for securing AI systems, and what CISOs and AppSec leaders can do today to improve visibility, governance, and runtime protection. Key topics include: AI agents and MCP security risks API security fundamentals for...
Full Segment Notes
AI is transforming application development at unprecedented speed—but is your application security strategy keeping up?In this SC Media webcast, host Mike Shema sits down with Craig Riddell, Global Field CISO at Wallarm, to explore how AI agents, MCP servers, APIs, identity sprawl, and machine-speed attacks are reshaping the application security landscape.Learn why traditional security approaches are struggling against AI-driven development, how API security provides a foundation for securing AI systems, and what CISOs and AppSec leaders can do today to improve visibility, governance, and runtime protection.Key topics include:AI agents and MCP security risks
API security fundamentals for AI environments
Identity and least privilege in machine-driven systems
Runtime visibility and observability
Shadow APIs, shadow AI, and asset inventory
AI-generated code security challenges
Building an AppSec strategy for the AI eraThank you to our sponsor of this webcast, Wallarm!???? Register for upcoming SC Media webcasts:
https://www.scworld.com/webcasts/?utmsource=scmagazine&utmmedium=social&utm_campaign=youtube
Key Moments
Stay in the Know, No Smoke and Mirrors – Join Our Newsletter
Get expert insights and technical breakdowns straight to your inbox.
You can skip this ad in 5 seconds





