Instructor Led Training

Secure AI Codingwith Claude Code Masterclass

Build and run AI-assisted development workflows without exposing your code, systems, or secrets.

Talk to us

Course Overview

4h or 8h

Securing AI-Driven Development Workflows

Hands-On Labs

Ideal for: Developers, AppSec Engineers, DevSecOps teams, and Platform Engineering teams securing AI-assisted development

AI coding tools now write code, execute commands, and interact with local environments. That speed comes with real risk, such as uncontrolled execution, exposed secrets, and unverified tool integrations that can impact systems beyond the codebase.

This training focuses on securing that workflow. It covers how to control agent behavior, isolate execution, enforce guardrails, and validate every action inside the development loop—so AI can be used safely without introducing new attack paths.

4-Hour Course Overview

8-Hour Course Overview

Know your trainer

Abhay Bhargav

CHief RESEARCH OFFICER, AppSecEngineer

Abhay started his career as a breaker of apps, in pentesting and red-teaming, but today is more involved in scaling AppSec with Cloud-Native Security and DevSecOps.

He has created some pioneering works in the area of DevSecOps and AppSec Automation, including the world’s first hands-on training program on DevSecOps, focused on Application Security Automation. In addition to this, Abhay is active in his research of new technologies and their impact on Application Security, specifically Cloud-Native Security. In addition, Abhay has contributed to pioneering work in the Vulnerability Management space, being the architect of a leading Vulnerability Management and Correlation Product, Orchestron.
‍
Abhay is also committed to Open-Source and has developed the first-ever Threat Modeling solution at the crossroads of Agile and DevSecOps, called ThreatPlaybook.Abhay is a speaker and trainer at major industry events including DEF CON, BlackHat, OWASP AppSecUSA, EU and AppSecCali. His training programs have been sold-out events at conferences like AppSecUSA, EU, AppSecDay Melbourne, CodeBlue (Japan), BlackHat USA, SHACK and so on. He's authored two international publications on Java Security and PCI Compliance as well.

Read less

Scale Secure AI-Driven Development

AI-assisted workflows run with defined controls instead of unrestricted execution

Local environments stay protected from unintended or unsafe agent actions

Security checks are enforced automatically before code is executed or committed

Teams adopt AI in development without introducing new security gaps

Security Capabilities Your Team Will Build

Secure Agent Configuration: Control permissions, restrict execution scope, and prevent excessive autonomy

Secrets Protection Workflows: Ensure credentials and sensitive data never enter agent context or logs

Sandboxed Execution Environments: Isolate agent actions using containerized and OS-level controls

Automated Guardrails: Enforce security checks using hooks before execution and code changes

Secure Tool Integrations (MCP): Validate and control external tools to prevent misuse and supply chain risks

How These Systems Work in Practice

Permission and execution controls: Limit what the agent can access and execute within local environments

Sandboxing and isolation: Contain agent activity to prevent impact on host systems

Hooks and policy enforcement: Intercept and validate actions before execution or commit

Secure tool integrations: Control how agents interact with external tools and services

Prerequisites

What your team should know

Experience with software development and working in CLI-based environments
Familiarity with application security fundamentals
Basic understanding of DevSecOps practices and modern development workflows
Familiarity with containerization (e.g., Docker) is helpful

What students should bring

A laptop with a browser (lab environment provided)
Comfort working with code, scripts, and command-line tools
Willingness to test, break, and secure real workflows

Talk to us

Training Delivered at Global Security Conferences

Our instructor-led training is delivered at leading security conferences, where teams work through real-world scenarios, test modern systems, and apply practical defenses.

The same hands-on approach is used across all our training: focused on real workflows, real risks, and techniques that hold up in production environments.

Testimonials

I found these courses to be pretty comprehensive and practically oriented. From dissecting common threat vectors to writing abuser stories, it had a lot of useful takeaways by the end.

DevOps Engineer at Streaming Services Provider

WORLD'S LARGEST SPORTS EQUIPMENT MANUFACTURER

Threat modeling has always been a bit elusive for my team, but these courses made it all click. The step-by-step breakdown of threat modeling concepts and integrating them into a DevSecOps pipeline gave us some solid, actionable learnings.

Developer at SaaS Company

DEFENSE INDUSTRY

“Threat modeling is seriously underrated compared to other security activities that have more visible impact. Fact of the matter is, if you can anticipate and build around potential threats to your software, that’s going to make a much bigger difference than if you set up a million defenses after the fact. These courses taught me how to do that!”

Head of Product at International Logistics Corporation

CYBERSECURITY OPERATIONS CENTER (CSOC)