OWASP Cincinnati Chapter

Sponsored by Cycode

In an era of increasingly sophisticated threat actors, application security has become a critical concern for most organizations. This talk, "Reducing Application Security Risk with ASPM (Application Security Posture Management)," will explore the emerging role of ASPM in fortifying application security and accelerating DevSecOps and cloud native adoption by focusing on how to future-proof your approach for 2025 and beyond. Software development has undergone seismic shifts over the last 20 years: the Agile movement, the rise of DevOps and cloud native practices, and now the AI and generative development era. With AI code assistants and “vibe coding” on the rise, we’re seeing faster delivery, along with new and complex risks. Over the last 10 years of the DevSecOps journey, shift-left has also achieved little success. Application Security needs a fundamental reset for the future. In this talk, we will discuss how modern approaches and technology innovations that are built to solve three of the biggest challenges in application security that must evolve for the AI Era – Speed, Coverage & Scale, and Context. We will explore three common scenarios:
1. Inventory and Secure net new applications
2. Reduce risk and volume of existing security backlog by prioritizing and fixing what matters
3. Expand coverage to address emerging blind spots in AI-assisted application development.

Approximate schedule:
4:00 - Doors open. Come for networking and refreshments!
4:15 - Presentation begins.
5:15 - Networking and refreshments resume!
6:00 EOE (End of Event)