Cloud Security Podcast - Will AI Replace Application Security? Navigating the New SDLC

In this episode, Joe Sullivan and Scott Gerlach discuss how AI is transforming DevSecOps by accelerating code production and overwhelming traditional security workflows. They explain why legacy DAST and ticket-heavy security models no longer work, and why modern runtime security is essential for handling AI-generated code at scale.

Transcript

Is your DevSecOps program ready for the AI revolution? If your security team is still relying on legacy DAST and drowning in tickets, the answer is no.

In this episode, Ashish sat down with Joe Sullivan (former CISO of Facebook, Uber, and Cloudflare) and Scott Gerlach (CSO & Co-founder of StackHawk) to discuss the radical shift happening in application security . With developers using AI to ship code 10x faster, the volume of vulnerabilities is skyrocketing. Joe and Scott explain why the old model of security "pushing back" on developers is broken, and why runtime security (Modern DAST) is the key to surviving the flood of AI-generated code .

We explore the changing role of the CISO , why software engineering is the most disrupted job right now , and why the best engineers (and security pros) are moving away from syntax memorization to focus purely on problem-solving .