In the context of a big software product company (11.000 employees), this presentation describes how the SDLC is evolving to add security-by-design principles for modern product development with of AI for internal and external usage. Key areas include: secure coding practices, the role of the security architects and DevSecOps automation. Special focus on AI-specific risks: data poisoning, prompt injection, model theft, and training data privacy. Emphasizes building security culture in software engineering teams.








