DevSec Next AI: How Lumigo Built Their Production-Grade Co-Pilot
Hosted by: Ariel Beck (Jit) Speaker: Omri Levy (Lumigo)
Security | Threat Detection | Cyberattacks | DevSecOps | Compliance
The Latest Cybersecurity News & Insights From Around The World
Introducing Jit's Agentic AppSec Platform That Gets Real Work Done
I am beyond excited to announce that we are launching the first ever Agentic Application Security Platform, which will revolutionize the way AppSec teams and engineers work. Jit will enable customers to build the teams of the future, a blend of human experts who collaborate with purpose-built AI Agents that can operate and remediate risks within your existing stack, exposed by Model Context Protocol (MCP).
Announcing Jit's Integration with Bright Security: Dev-Centric DAST Meets Unified Security Prioritization
We’re excited to announce Jit’s new integration with Bright Security, a best-of-breed DAST solution built for developers. This integration brings Bright’s accurate, low-noise security testing into Jit’s unified product security platform—so your AppSec team and developers can manage, prioritize, and remediate vulnerabilities from one centralized backlog. The problem?
Introducing Jit's Seamless Integration with the Checkmarx One SAST Solution
Balancing security and developer experience has always been a challenge. On one hand, teams need best-of-breed security scanners to minimize false positives and surface the most critical vulnerabilities. On the other, too many disparate security tools create complexity, slowing developers down. The key to effective security is combining best-in-class scanning with a unified and intuitive developer experience.
Stronger Together: Jit and Invicti Unite to Simplify Application Security
Dynamic Application Security Testing (DAST) is a cornerstone of web application security, allowing organizations to detect vulnerabilities that are actually exploitable in runtime – minimizing false positives. However, managing security findings across multiple tools can prolong risk assessments, prioritization, and remediation. Jit users who want to leverage Invicti, one of the best DAST solutions in the market, have had to manage security findings in a completely separate interface.
Yonit Gruber-Hazani: Securing the Pipeline: Remediating CI/CD Vulnerabilities with SLSA | DevSecNext
Software supply chain attacks are on the rise, exploiting gaps in CI/CD pipelines to introduce malicious code. In this talk, Yonit Gruber-Hazani dives deep into common CI/CD vulnerabilities and how to mitigate them using the SLSA (Supply-chain Levels for Software Artifacts) framework. This talk was recorded at DevSecNext, a community-driven event reimagining how we share security insights—short, to the point, and packed with actionable takeaways.
Panel Discussion - The Evolving Threat Landscape: Risks in the Age of AI Disruption | DevSecNext
As AI reshapes industries, it also introduces a wave of emerging security risks—some known, others yet to be discovered. In this DevSecNext panel discussion, experts from engineering, cloud business, venture capital, and security innovation dive deep into the intersection of AI disruption and the evolving threat landscape. This talk was recorded at DevSecNext, a community-driven event reimagining how we share security insights—short, to the point, and packed with actionable takeaways.
Erik Zaadi - Platform Engineering to the Rescue: Making DevSecOps Work for Everyone | DevSecNext
How can organizations make DevSecOps accessible and effective for every team? Platform Engineering is the answer. In this talk, Erik explores how developer portals and golden paths help streamline security, automate remediation, and create scalable, secure development workflows without adding friction. This talk was recorded at DevSecNext, a community-driven event reimagining how we share security insights—short, to the point, and packed with actionable takeaways.
Inbar Raz - Living off Microsoft Copilot | DevSecNext
What happens when hackers weaponize Microsoft Copilot? In this eye-opening session, Inbar Raz takes a red-team-level deep dive into how attackers can abuse Copilot to exfiltrate data, bypass security controls, and even social engineer victims—automated by AI. This talk was recorded at DevSecNext, a community-driven event reimagining how we share security insights—short, to the point, and packed with actionable takeaways.
Announcing Jit's Customizable SAST Rulesets: Detect Security Issues Unique to Your Environment
We’re excited to announce Jit's Customizable SAST Rulesets, a powerful new feature that allows AppSec and DevOps teams to create and manage custom Semgrep rules tailored to their specific security needs. With Jit orchestrating Semgrep scans across the entire codebase and continuously analyzing every code change, teams can now ensure security gaps are identified and addressed before they reach production.