
Securing AI at the Speed of Engineering | DoorDash | Forward Deployed Security | GRC Engineering
From AI Security Podcast by TechRiot.io
May 21, 2026 · 1h 3m · Season 4 · Episode 13
About this episode
The episode discusses the challenges of aligning security teams with fast-paced engineering in AI development, featuring insights from industry experts.
Is your security team moving at the speed of your engineering team? In this special live recording of the AI Security Podcast from San Francisco, Ashish is joined by Nick Reva (Global Director, Engineering Security, DoorDash) and Shivani Doke to tackle the two most critical conversations in AI right now: Proactive Offensive Security and the evolution of GRC . In the first half, Nick explains why traditional AppSec teams fail to keep up with AI development, and shares his strategy for building "Forward Deployed" tiger teams that embed directly with product engineers . Nick also coins the term "Claude Kiddie", a new breed of script kiddies using AI to generate sophisticated bug bounty reports and argue with triage administrators . In the second half, Shivani defines the emerging role of the "GRC Engineer." As AI compresses the software development lifecycle and introduces complex third-party (and fourth-party) risks, static PDF policies and manual compliance screenshots are dead . Learn how GRC is shifting left, embedding guardrails directly into CI/CD pipelines, and eventually using AI agents to automate the bane of every compliance officer's…
People in this episode
Host: Ashish
Guests: Nick Reva, Shivani Doke
Topics covered
- AI security
- engineering security
- GRC engineering
- proactive offensive security
- compliance automation
Keywords
- AI development
- AppSec
- Forward Deployed teams
- GRC Engineer
- compliance
- bug bounty
- CI/CD pipelines
Mentioned in this episode
Organizations: DoorDash
Places: San Francisco, Silicon Beach
More episodes of AI Security Podcast
- Why Asset Intelligence is Replacing the CMDB & Static Dashboards · June 11, 2026 · 43 min
- The AI AuthZ Problem: Why Human Least Privilege Fails for Autonomous Agents · June 4, 2026 · 48 min
- Verification vs. Validation: How Autonomous AI is Changing Cybersecurity · May 13, 2026 · 1h 10m
- The Zero-Click AI Hack: How to Contain the Blast Radius of Autonomous Agents · April 29, 2026 · 47 min
- Buy vs. Build AI Security: Why [Box.com](http://Box.com) CISO is Creating their Own Agentic SOC · April 22, 2026 · 47 min
- Anthropic's Project Mythos: Why the "Zero-Day Machine" is Terrifying the Security Industry · April 18, 2026 · 1h 3m
Explore listener stats, chart rankings, contacts and more on the AI Security Podcast podcast page.