DevSecOps Masterclass — AI Automation Edition (2026)

1-Day DevSecOps & AI Security Automation

This intensive one-day training provides a hands-on introduction to modern DevSecOps practices, enhanced with AI-driven security automation. The course begins by establishing the foundations of DevSecOps in today’s AI-accelerated threat landscape, emphasizing how security must be embedded across the SDLC rather than treated as a final gate.

Participants will gain practical experience with Static Application Security Testing (SAST), including a hands-on lab that demonstrates how traditional SAST workflows can be augmented with AI to reduce false positives, accelerate triage, and improve developer usability.

The training then transitions into Software Composition Analysis (SCA) and supply-chain security, covering core concepts such as SBOMs, VEX, and CSAF. Through guided labs, attendees will generate and analyze SBOMs, interpret vulnerability and exploitability data, and apply AI techniques to streamline dependency risk assessment.

In the second half of the day, the focus shifts to Dynamic Application Security Testing (DAST). Participants will learn DAST fundamentals, complete a mini-workshop using OWASP ZAP, and explore how AI can assist in scan optimization, result interpretation, and reporting.

The day concludes with a dedicated module on LLM Security, introducing the OWASP Top 10 for LLM applications. Attendees will perform hands-on red teaming of large language models using Promptfoo, learning how to identify prompt injection, data leakage, and jailbreak risks, while understanding emerging defensive patterns for securing AI systems.

By the end of the day, participants will have a practical, end-to-end understanding of how SAST, SCA, DAST, and LLM security can be integrated into DevSecOps pipelines using AI to improve speed, accuracy, and security outcomes.