Hi, I'm Anshuman Bhartiya
I'm currently a Staff Security Engineer and AppSec Tech Lead at Lyft, where I've been since December 2022.
With over a decade in security, I've built and scaled security programs at Cigital, EMC, Intuit, Nuna, Atlassian and Thirty Madison.
I currently advise a few cybersecurity companies - Amplify Security, Interlynk, Heeler and CognitivTrust.
I'm passionate about tackling interesting security engineering problems and constantly learning something new. I have created and open sourced a bunch of tools that are available on my Github page. Most recently, I've created SecureVibes.
I co-host The Boring AppSec Podcast and write about AI and Security on the AI Security Engineer newsletter. Both of these are now under the Boring AppSec Community - that I currently help run.
I've spoken at DEFCON Recon Village, Black Hat Arsenal, Toorcon, and Rootcon.
I hold a Master's in CS from Arizona State University.
Recent Posts
- Building a Real-World Security Benchmark for AI Code Scanners
- VulnVibes: Building an AI Agent That Reasons Across Microservices to Find Real Vulnerabilities
- Day in the Life: Building a Prototype with My AI Agent (Without Getting Pwned)
- Browser Relay: When Your AI Assistant Gets Hands on Your Browser
- Skills: The Missing Piece in AI Security Tooling