From Chaos to Clarity: Designing AppSec from First Principles - Mikael Nilsson
Disobey 2026 · Main Stage
In his compelling Disobey talk, "From Chaos to Clarity: Designing AppSec from First Principles," Mikael Nilsson, Product Security Lead for Customer Intelligence R&D at SAS, addresses the pervasive confusion and inefficiency plaguing modern **application security (AppSec)** programs. Nilsson argues that the sheer volume of acronyms, vendor solutions, and regulatory requirements often obscures a clear path forward, making it challenging for organizations to prioritize and effectively mature their security posture. His presentation offers a structured approach to navigate this complexity, emphasizing a return to fundamental principles and the strategic adoption of maturity models.
AI review
Competent AppSec program management talk from a practitioner who clearly lives this problem day-to-day. Nilsson synthesizes trunk-based development, developer experience, and DSOM into a coherent operational framework, but there's nothing here that a seasoned AppSec engineer hasn't already internalized. Disobey deserves credit for platforming real practitioners over vendor shills, but this talk's ceiling is 'useful reminder' rather than 'new insight.'