David is a long-time software practitioner who has spent the last two decades building, breaking, and fixing software across development, product, and consulting roles. After repeatedly seeing security treated as an afterthought in fast-moving teams, he shifted full-time into application security, focusing on ways to improve security without slowing developers down.
Over the past few years, David has been an active, hands-on user of AI-assisted coding tools, exploring both their dramatic productivity gains and the new security risks they introduce. His current work focuses on practical, developer-friendly approaches to guiding AI toward safer code by design, rather than relying solely on after-the-fact scanning and remediation.
