Andy Ellis
π€ SpeakerAppearances Over Time
Podcast Appearances
So rather than trying to teach every person in the company, how to code safely, what you need to be doing is handing them the onboarding guide for their agent.
So that when they say, Hey agent, go build me an X implicit.
And that is the skill of.
We need to do needs analysis.
We need to figure out exactly how we're going to do this.
How do we defensively code it?
How does this interact with our zero trust platform and with our identity?
All of that should be stock and standard so that everything that you go to build meets what your company wants.
And it's done so in a repeatable fashion.
And that can all be done with intent in plain English.
But rather than trying to teach the business analyst how to do that, you just have to give them the package that gets included right into their coding agent.
Well, so what I think there's a nuance here, which is there are more problems than people can afford to buy solutions for.
And there's a lot of solutions that are not good.
Let's be very honest.
There's a lot of vendors out there who are selling things that might as well have just been vibe coded.
And so if you're a CISO today, almost every CISO I know is vibe coding something.
Most of when they talk about what they're building, it's problems that the vendors haven't been solving for them because it's this like small niche problem that's an irritant.
And so someone's like, look, I'll just go vibe code a thing to fix that irritant for me.
Or I've got a vendor that I hate.
And their product doesn't really work.