Building Secure Software - By Design & By AI
Embedding security in every stage of software development — including pipelines that leverage AI code generation. This session outlined how security leaders can design, govern and validate secure-by-design development in the age of AI.
Key Topics
- Mapping NIST SP 800-218 (SSDF) to AI-enabled DevSecOps workflows
- Integrating static (SAST), dynamic (DAST) and composition (SCA) testing to validate both human- and AI-authored code
- Detecting AI-introduced patterns (e.g., insecure libraries, unvalidated inputs, exposed keys)
- Governance for AI code tools — ensuring provenance, data protection and human review checkpoints
- Leveraging automation and ML to improve precision and reduce false positives
Speaker and Presenter Information
Cody Bertram, Field CTO, Channel Partnerships & Strategic Alliances, Veracode
Relevant Government Agencies
Other Federal Agencies, Federal Government, State & Local Government
Event Type
On-Demand Webcast
This event has no exhibitor/sponsor opportunities
Cost
Complimentary: $ 0.00
Website
Click here to visit event website
Event Sponsors
Veracode
Organizer
Veracode Government Team at Carahsoft
