Securing the Shift to AI Native

DevSecCon IRL London

DevSecCon is coming to London! Join us for a one-day event – "Securing the Shift to AI Native" – where AI innovation meets security. Dive into the world of AI-native development and explore how to build trust with your team and secure AI-driven applications. Connect with industry leaders, learn from real-world experiences, and play a pivotal role in shaping the future of secure AI.

Express Your Interest Today!

Wednesday, November 12

Agenda

Opening Keynote - The Art of Influencing Coding Agents… to Write Secure Code
Guy Podjarny - Founder and CEO at Tessl

AI dev tools are transforming software development faster than anything we've seen. As LLMs and Agents write increasingly more of our code, software security turns into a craft of influencing agents and helping them write secure code.
In this talk, Guy will cover the evolution of AI dev tools and the ways we try to shape their behaviour. He'll discuss the current state of the art in guiding agents, suggest what you can do to embrace it today, and offer some predictions of where it's all headed.

Partner Perspectives: Navigating the AI-Native Transformation
Featuring: Massimiliano Angelino, Principal Specialist Solution Architect for AI/ML at AWS,
Paul Fearns, Senior Enterprise Security Architect, EMEA at Akamai, Hitesh Joshi Technology Architecture Associate Director at Accenture. Hosted by Alex Wright, Director, Sales at Snyk

Join us for an engaging panel discussion with Snyk’s trusted partners as we explore the real-world challenges and opportunities of becoming AI-native. Our panelists will share their perspectives on how AI is reshaping software development, security, and business models—from accelerating innovation and productivity to raising new concerns around risk, governance, and trust. This session will highlight lessons learned, practical strategies, and predictions for the future as organizations adapt to an AI-first world.

Agentic Applications Require Agentic Security Solutions
Denis Kent, Senior Incubation Engineer at Snyk

Securing the next generation of AI requires a new security paradigm. As agentic AI and AI-native applications grow in use, they expand the attack surface and introduce a host of novel risks, from prompt injection and toxic flows to the unpredictability of non-deterministic behavior. Traditional rules-based security tools, designed for determinism and parameterization, simply won’t suffice. To enable secure AI application innovation, we need a new breed of security teams, AI Security Engineers who leverage their own agentic security orchestration systems. This session will explore the core tasks these systems need to cover, and the opportunity presented by orchestration to see, understand, and address complex threats against AI-native apps.

Securing Vibe Coding — Beyond the Hype
Sonya Moisset - Staff Developers Advocate at Snyk

AI coding assistants are everywhere. Developers are vibe-coding entire apps in hours. But with speed comes risk. In this live session, we’ll go beyond the flashy demos to unpack what vibe coding really is — and why it’s not just a meme, the complexity ceiling: why CRUD clones are easy, but scaling breaks fast, a few horror stories, the most common security pitfalls: package hallucinations, shadow AI, and agent exploits and a secure-by-design playbook: context engineering, MCP, AI-native IDEs, guardrails, and AI-BOMs.

Customer Voices: Adapting Cybersecurity for an AI-Native World
Featuring: Dan Conn, Staff Platform Security Engineer at TrustPilot, and Shaojing Lei, Cybersecurity Lead at Giffgaff. Hosted by Dom Hibberd, Director, Sales at Snyk.

As organizations accelerate AI adoption, security teams face a new challenge: adapting long-standing cybersecurity practices to an era of intelligent agents, third-party models, and interconnected workflows. This customer panel brings together industry leaders to discuss how they are redefining security strategies to keep pace with the speed of AI innovation. Panelists will explore the realities of transitioning to AI-native environments, managing emerging attack surfaces, and extending protection beyond engineering to encompass data, marketing, and sales operations. They will also share real-world examples of leveraging AI for cyber defense — from building AI Bills of Materials (AIBOMs) and enhancing threat modeling with AI insights to deploying AI agents that help tackle vulnerability backlogs.

Closing keynote - Model Citizen: How to Secure Your SDLC in the Age of AI
Jeff Watkins - CTO at CreaFuture

Generative AI is rapidly becoming embedded in software delivery pipelines through code copilots, third-party models, and autonomous agents that shape products in real-time. For technology leaders, this introduces a new class of risks that traditional secure SDLC practices don’t fully address: poisoned dependencies, model supply-chain vulnerabilities, opaque agent behaviour, and regulatory scrutiny.
In this session, we’ll examine the implications of both using your own AI models and consuming third-party ones, and what this means for the resilience and reputation of your organisation. Attendees will learn how to evolve their delivery lifecycle to account for AI, where governance must catch up, and how AI itself can play a role in defending the enterprise.

Networking Reception