AI is poised to be the most disruptive technology in application security since the cloud, but separating the hype from the reality is critical. AI could also be the next DotCom bubble. This session cuts through the noise to provide a practitioner's-level view on leveraging AI for tangible AppSec gains. Drawing on over 20 years of experience and the dark arts of Economics, we will move beyond hype and into the trenches.

We will dissect real-world use cases, including:

• Automating Security Orchestration: Architecting and building an AI-powered MCP server for DefectDojo to streamline vulnerability management
• The need for LLM agility and running Open Source LLMs 'locally' to preserve privacy
• Ollama, LangChain, LangGraph, LangFlow and AI's 'lethal trifecta'

Speakers

Matt Tesauro

CTO & Co-Founder

DefectDojo