Threat-Centric AppSec at the Speed of Development: Automating Secure-by-Design in AI Era
November 8, 2025
10:40AM
Barnett Aden
About this session
Most AppSec programs prioritize based on discovered vulnerabilities, leading to alert fatigue and wasted effort. This session makes the case for a threat-centric approach, where security priorities stem from threat models tied to business context instead of raw scan results. We’ll show how continuous threat modeling from design docs, diagrams, and code enables smarter prioritization, cutting security backlog, shipping products faster, and improving coverage without slowing developers.
About the speaker
Amir Kavousian is a two-time cybersecurity founder and the CEO of DevArmor, an AI-native platform reinventing threat modeling and security design reviews for the AI era. He also led engineering teams at Capital One and holds a PhD in Engineering from Stanford.
.png){kind=logo}
