Surag Patel and Arshan Dabirsiaghi

https://is1-ssl.mzstatic.com/image/thumb/Podcasts211/v4/f6/d5/ed/f6d5ed39-c78c-bbc3-9e16-8da9c7df7142/mza_16272558080117222112.jpg/600x600bb.jpg

The Boring AppSec Podcast

28 episodes

5 days ago

In this podcast, we will talk about our experiences having worked at different companies - from startups to big enterprises, from tech companies to security companies, and from building side projects to building startups. We will talk about the good, the bad, and everything in between. So join us for some fun, some real, and some super hot takes about all things Security in the Boring AppSec Podcast.

Technology

RSS

All content for The Boring AppSec Podcast is the property of The Boring AppSec Podcast and is served directly from their servers with no modification, redirects, or rehosting. The podcast is not affiliated with or endorsed by Podjoint in any way.

Technology

https://d3t3ozftmdmh3i.cloudfront.net/staging/podcast_uploaded_nologo/40655927/40655927-1736141685828-0e4ce07b90353.jpg

Surag Patel and Arshan Dabirsiaghi

The Boring AppSec Podcast

56 minutes 37 seconds

3 months ago

Surag Patel and Arshan Dabirsiaghi

In this episode, we talk to Surag Patel (CEO @ Pixee) and Arshan Dabirsiaghi (CTO @ Pixee). We discuss the transformative approach that Pixee is taking in application security. We explore the shift from traditional security tools that merely detect vulnerabilities to a model that emphasizes automated remediation.

The discussion covers the evolving role of AppSec professionals, the integration of AI agents to scale coverage, the importance of trust in automated fixes, and the challenges of navigating a crowded security market.

We also touch on the future of security in design specifications and the need for a comprehensive approach to security that includes all stakeholders in the software development lifecycle.

Key Takeaways

- The traditional model of security tools is being challenged.

- Pixee aims to automate not just detection but also remediation.

- AI agents can help scale coverage in application security.

- The role of AppSec professionals will evolve with AI integration.

- Trust is crucial for developers to accept automated fixes.

- Developers want tools that reduce their workload, not add to it.

- Contextual understanding is key for accurate vulnerability triage.

- The security market is not saturated; there are still many unsolved problems.

- Integrating security into design specifications is the future.

- A comprehensive approach to security is necessary for effective risk management.

Tune in to find out more!

Contacting Surag & Arshan

* Surag's LinkedIn: https://www.linkedin.com/in/suragpatel/

* Arshan's LinkedIn: https://www.linkedin.com/in/arshan-dabirsiaghi/

* Pixee: https://www.pixee.ai/

Contacting Anshuman

* LinkedIn: ⁠⁠⁠⁠https://www.linkedin.com/in/anshumanbhartiya/

* X: ⁠⁠⁠⁠https://x.com/anshuman_bh

* Website: ⁠⁠⁠⁠https://anshumanbhartiya.com/

* ⁠⁠⁠⁠Instagram: ⁠⁠⁠https://www.instagram.com/anshuman.bhartiya

Contacting Sandesh

* LinkedIn: ⁠⁠⁠⁠https://www.linkedin.com/in/anandsandesh/

* X: ⁠⁠⁠⁠https://x.com/JubbaOnJeans

* Website: ⁠⁠⁠⁠https://boringappsec.substack.com/