Bringing AI Into Security: A CISO's Playbook from Moveworks
Hosted by Kal Ramkumar
Recorded

Moveworks was already using AI across engineering, but security still faced a familiar AppSec problem: static analysis tools could scan code, but they struggled to understand enough context to separate real risk from noise.
Rules-based scanners were good at finding patterns. They were less useful at understanding how code actually behaved across data flow, dependencies, services, and infrastructure. That left the security team with more triage, and engineers with findings that still required too much manual interpretation.
So Moveworks asked a practical question: could AI make static analysis more accurate, contextual, and useful for both security and engineering?
In this webinar, Damian Hasse, CISO at Moveworks, joins depthfirst to share how his team approached that question. He’ll walk through the problem they were trying to solve, the risks that mattered most, how they evaluated different options, and why depthfirst stood out.
The conversation also covers what changed after adoption, how today’s threat environment is shifting, and how security leaders should think about build vs. buy decisions as AI becomes part of the security program.
Watch the webinar to hear a practical CISO perspective on bringing AI into security without adding more noise to AppSec workflows.