Event

OWASP Bay Area Meetup

Date
July 15, 2025
Time
5:00PM - 8:00PM
Event Type
In person
Location
North America
Save My Spot
Event Overview

We’re excited to feature Andrew Stiefel, Product Marketing Engineer at Endor Labs at this meetup, who will deliver an insightful session titled “Evolving Your AppSec Program in the Era of AI”

AI is already transforming how software is built—but for security teams, it’s mostly just making life harder. Developers are shipping AI-generated code at breakneck speed, while security teams struggle to keep up. The challenge isn’t just securing AI-generated code and systems—it’s evolving your AppSec program to keep pace with software development.We'll explore how security teams can evolve their programs across two key dimensions: securing AI-driven software development and using AI to enhance security workflows. You’ll learn:

  • Strategies for managing risks from AI-generated code and autonomous agents
  • How security teams can use AI to reduce work and improve security outcomes
  • Where AI can enhance security—and where human expertise remains irreplaceable.

AI isn’t just a security challenge; it’s a chance to build a  smarter, more efficient security program. Join us to learn how to make AI work for security, not against it.

Join us for the OWASP Bay AreaMeetup: Evolving Your AppSec Program in the Era of AI

Contents
Contents
Agenda
What to Expect
Speakers
Save My Spot

Want to stay in the loop?

Sign up for our newsletter.

Welcome to the resistance
Oops! Something went wrong while submitting the form.
Claude Fable 5: Mythos-grade hype, record cheating, and a few hall-of-fame entries
Average results with 59.8% on functional solves and just 19.0% on security solves
Read more
Recall, not reasoning: how AI coding agents cheat security benchmarks
Recall, not reasoning: how AI coding agents cheat security benchmarks
Read more
Endor Labs + Cursor: Building the security foundation for agentic coding
Endor Labs + Cursor: Building the security foundation for agentic coding
Read more
Introducing Full Stack Reachability: Container Scanning That Actually Reduces Noise
Cut container vulnerability noise by up to 90% with full-stack reachability analysis spanning application and container image OS layers.
Read more
Classic Vulnerabilities Meet AI Infrastructure: Why MCP Needs AppSec
MCP servers inherit classical vulnerabilities like command injection, path traversal, and SSRF. Here's why LLMs and MCP deserve the same security practices as traditional applications.
Read more
How Fake Font Packages Abused npm as a CDN
101 packages disguised as font files distributed 34 TiB of data via npm's infrastructure—with a total of 4.3 PiB transferred via downloads.
Read more