AI in AppSec: The Paradigm Shift with Principal Security Engineer | Ft. Brad Geesaman | Ep. 89

In this groundbreaking episode of the ScaleToZero podcast, we sit down with Brad Geesaman, a Principal Security Engineer, to explore the revolutionary impact of Agentic AI on Application Security. From the inspiration behind this cutting-edge field to the practicalities of building AI-powered solutions, we cover it all.

This episode is a must-listen for CISOs, Security Engineers, CTOs, and anyone looking to understand how AI is redefining the future of AppSec.

Transcript: https://www.scaletozero.com/episodes/ai-in-appsec-the-paradigm-shift-with-brad-geesaman/

Brad: https://www.linkedin.com/in/bradgeesaman/

00:00 Teaser and Introduction

04:00 Inspiration to focus on Application Security using AgenticAI

05:56 Understanding AgenticAI0

8:52 Agentic AI versus Traditional AI

12:44 Paradigm shift of secure coding with the change of AI

15:28 Importance of tool integration and standardization of AgenticAI for AppSec

18:00 Standardization of Agent SDKs or NCPs

20:22 Using AI to secure AI

23:12 Are AI systems reliable considering their nondeterminism

25:15 Considerations for adopting AI for AppSec

29:54 Impact of AI on organizational structure for security

32:27 Elements of AppSec with the least AI benefits

36:10 What is Reaperbot

42:42 Advantages and disadvantages of testing methods of Reaperbot

45:00 Vision for Reaperbot in the near future

48:00 Building trust within teams with the rise in these decision-making agents

52:12 Recommendations for operations teams to avoid vulnerabilities or misconfiguration

54:58 Considerations for the operations team when using AI systems for security purposes

01:00:02 Summary

01:01:05 Learning recommendations