As applications evolve in the era of generative and agentic AI, new layers of complexity — and vulnerability — are emerging across modern environments. In this ROCon 2025 session, Asma Zubair, Director of Product Management at Qualys, joins Joe Moore, Cybersecurity Architect at Siemens, to explore how enterprises can adapt their application security posture to keep pace with AI-driven innovation. The discussion examines how AI and LLM components can silently expand the attack surface, often beyond the reach of traditional security testing. Zubair and Moore share how to rethink app security from a holistic perspective — connecting APIs, embedded models, and cloud-native workloads under one unified risk framework. You’ll learn how to: •Identify known, unknown, and forgotten applications and APIs impacted by AI/LLM usage •Prioritize risks based on exploitability and business impact •Streamline remediation across DevSecOps teams •Protect sensitive data through comprehensive testing •Accelerate secure releases without sacrificing agility The session closes with practical examples of how Qualys Web App and API Security solutions integrate with Enterprise TruRisk Management (ETM) to deliver actionable visibility and continuous protection for modern applications. Recorded live at ROCon 2025 – The Risk Operations Conference, presented by Qualys.

 75      0