BSidesCharm 2026 - Breaking the Lethal Trifecta: Architectural Prompt Injection Defenses
Prompt injection remains the elephant in the AI Security room—there's no deterministic defense, yet the urgency driving AI adoption means many teams feel forced to either accept the risk or hobble their agents with overly restrictive policies. But there's a third path: containment. In this talk, I'll walk through the architectural guardrails Stripe adopted to protect our agent platform, showing how you can give agents powerful tools while ensuring minimal damage if prompt injection occurs. I'll cover strategies for preventing data exfiltration through controlled egress, share UI patterns for human confirmation flows to balance oversight with usability, and demonstrate how to enforce these guardrails at CI-time using tool annotations. Andrew Bullen Andrew Bullen leads the AI Security team at Stripe, where he designs infrastructural primitives that secure the company's internal and customer-facing AI platforms. A ten-year veteran of Stripe, Andrew previously led the Data Platform and Privacy Engineering teams. He approaches security as a leadership challenge just as much as a technical one. His work sits at the intersection of engineering leadership, security, AI/ML, and usability. In addition to his technical work, Andrew is an engineering leadership coach and can be found online at andrewbullen.co.

Attacking AI - Jason Haddix - NDC Security 2026

THESE Apps Are SPYING on You — Shut Them Off NOW!

2026.07.08 Multimodal Transportation Advisory Board

How Musician Ryan Leslie Helps Others Grow And Protect Their Wealth

OWASP's Top 10 Ways to Attack LLMs: AI Vulnerabilities Exposed

BSidesCharm 2026 - Harboring No Illusions: Navigating risks in a FaaS world

BSidesCharm 2026 - Too Many Security Tools? ASH Has Entered the Chat

The Future of AI Agents with Andrew Ng | Interrupt 26

BSidesCharm 2026 - Hidden Exposure Crisis - How Supply Chain Leakage is Becoming the Norm

Andrej Karpathy: From Vibe Coding to Agentic Engineering w/ Stephanie Zhan

Ilya Sutskever – We're moving from the age of scaling to the age of research

BSidesCharm 2026 - CloudShell Abuse: a CTF, API, and persistent access to CPU/network/storage

Billionaire's WARNING: I'm SELLING. The Crash Is Already Here!

Anthropic's Boris Cherny: Why Coding Is Solved, and What Comes Next

I Made Opus 4.8 and Fable 5 Build the Same App (RAW RESULTS)

This Is What 500 Days of Trump's Corruption Looks Like

Something is jamming GPS over Europe. Here's what we found

BSidesCharm 2026 - Securing AI Workloads in Kubernetes: Lessons from Scaling Startups

The World's Most Important Machine

