S1E10 - Future Security Predictions

Welcome to the Boring AppSec Podcast! In Episode 10, we discuss some security predictions that we hope to see in the near future. Some of them are:

• AI agents - different kinds - activity based and/or persona based
• Security talent is going to get better, hiring is important
• AI powered security engineers - up leveling junior engineers
• AI code review assistants - GPT4-o et al
• Company consolidations happening in the security industry - D&R space
• ASPM predictions and how AI agents will help evolve this space
• CISA’s guidance on building secure by default frameworks
• Automated red teaming
• Hiring security engineers vs changes in interviewing

Tune in to find out more!

References mentioned in the episode:

• OpenAI Security Bots - https://github.com/openai/openai-security-bots
• Build an AI Appsec Team - https://srajangupta.substack.com/p/building-an-ai-appsec-team
• CISA and secure design - https://www.cisa.gov/news-events/news/cisa-announces-secure-design-commitments-leading-technology-providers
• Awesome secure defaults - https://github.com/tldrsec/awesome-secure-defaults
• Slack vs MSFT teams - https://x.com/TrungTPhan/status/1640866391485194241
• The Innovator's Dilemma - https://www.amazon.com/Innovators-Dilemma-Revolutionary-Change-Business/dp/0062060244

Contacting Anshuman

1. LinkedIn: ⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠https://www.linkedin.com/in/anshumanbhartiya/⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠ 
2. Twitter: ⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠https://twitter.com/anshuman_bh⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠ 
3. Website: ⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠https://anshumanbhartiya.com/⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠
4. Instagram: ⁠⁠⁠⁠⁠⁠⁠⁠⁠https://www.instagram.com/anshuman.bhartiya/⁠⁠⁠⁠⁠⁠⁠⁠⁠ 
5. YouTube: ⁠⁠⁠⁠⁠⁠⁠⁠⁠https://www.youtube.com/@AnshumanBhartiya⁠⁠⁠⁠⁠⁠⁠⁠⁠   

Contacting Sandesh

1. LinkedIn: ⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠https://www.linkedin.com/in/anandsandesh/⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠ 
2. Twitter: ⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠https://twitter.com/JubbaOnJeans/⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠ 
3. Website: ⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠https://boringappsec.substack.com/⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠