GConferenceGridThe Conference Catalogue · Vol. 2026Folio № F22A04
Security

[un]prompted II

[

un]prompted II is an intimate, practitioner-focused AI security conference held in San Francisco for professionals from across the AI security spectrum, including CISOs, researchers, engineers, and policy makers. The event features two days of sharp talks, real demos, and direct conversations, with a no-fluff, no-filler ethos. Attendees will gain insights f…

Visit the official site
30Voices
0Underwriters
0Exhibitors
30On the bill · sessions
23Companies · in total
§I

The Voices

Programmed at [un]prompted, in alphabetical order.
Adam Laurie
CISO · Alpitronic
Billy Norwood
CISO · FFF Enterprises
Brendan Dolan-Gavitt
AI Researcher · XBOW
Chandrani Mukherjee
Product Security Engineer · Adobe
Chase Hasbrouck
Chief of Forensics/Malware Analysis · U.S. Army Cyber Command
Daniel Miessler
Founder · Unsupervised Learning
Derek Chen
Vulnerability Researcher · TrendAI
Four Flynn
VP Security and Privacy · Google Deepmind
Gadi Evron
CEO, Knostic; CFP Chair · Knostic
Heather Adkins
VP of Security Engineering · Google
Jeffrey Zhang
Security Engineer · Stripe
Joe Sullivan
CEO, Ukraine Friends and Joe Sullivan Security · Ukraine Friends; Joe Sullivan Security
Joshua Saxe
AI Security Technical Lead · Meta
Mika Ayenson
Threat Research & Detection Engineer · Elastic
Mohamed Nabeel
Sr Principal Researcher · Palo Alto Networks
Natalie Isak
Software Engineer · Microsoft
Nicholas Carlini
Research Scientist · Anthropic
Paul McMillan
Security Engineer · OpenAI
Peter Girnus
Senior Threat Researcher · TrendAI
Piotr Ryciak
AI Red Teamer · Mindgard
Raghu Yeluri
Fellow and lead architect · Confidential AI
Ragini Ramalingam
Director, Enterprise Security · Snowflake

— and 8 more, by name unsung —

§III

The Programme

Selected from 30 sessions on the bill.
  • 09:00 – 09:10

    Opening Words – “Research conferences aren’t effective.”

    A presentation originally given by Joe Stewart at ACoD, many a-year ago. Some of us are introverts, and even if we’re not it’s difficult to know who in the crowd we should speak wi…

    Stage 1
  • 09:20 – 09:35

    Evaluating Threats & Automating Defense: How Google is Advancing Code Security

    Our discussion will focus on advancing code security, provide a comprehensive overview of Google’s AI security strategy, show how we evaluate emerging cyberattack capabilities and …

    Stage 1
  • 09:35 – 10:00

    Establishing AI Governance Without Stifling Innovation: Lessons Learned

    Strategy and implementation of a risk-based AI governance committee in a healthcare services firm and our successes and failures along the way.

    Stage 2
  • 09:35 – 10:00

    The Hard Part Isn’t Building the Agent: On Measuring Agent Effectiveness to Improve It

    As AI coding tools drive the cost of building security agents toward zero, the hard problem becomes knowing whether they’ll actually work in the wild against real attacks and vulne…

    Stage 1
  • 10:00 – 10:25

    Enterprise AI Governance at Snowflake: Balancing Innovation and Risk

    As generative AI technologies continue to evolve, organizations are working to thoughtfully balance innovation with appropriate governance. In this session, Ragini Ramalingam, Dire…

    Stage 2
  • 10:00 – 10:25

    Security Guidance as a Service: Building an AI-Native Blueprint for Defensive Security

    Providing consistent security guidance at scale is hard, especially in AI-first environments. This session explores how we built an AI-Native Security Guidance as a Service that ce…

    Stage 1
  • 10:45 – 11:10

    Guardrails beyond Vibes: Shipping Security Agents in Production

    In this talk, we’ll share how Stripe is using AI agents to streamline two high-friction security workflows: threat modeling and security request routing. We’ll cover the practical …

    Stage 1
  • 10:45 – 11:10

    Three Phases of AI Adoption: From GPU Lottery to Enterprise Agreements

    The Army’s path to enterprise AI shows a pattern every organization will face: deployment constraints shape adoption more than security policies. In 2023, fragmented research previ…

    Stage 2
  • 11:10 – 11:35

    Code Is Free: Securing Software in the Agentic Future

    If you have a perfect software security program, this talk is not for you. For everyone else, join us in an AI-maximalist vision of a future you can implement today. Your engineers…

    Stage 1
Intermission
Part the Second · For the Buyer

An audience of 23 companies, parsed from the program.

23 companies in attendance.

The numbers below are derived from the speakers, sponsors, and exhibitors on this page — cross-referenced into one ledger. They are the only thing here that 10times.com cannot tell you.

01Fig. 01 — Composition of the House
0All threespeak · spons · exh
0Sponsoringsponsor only
0Exhibitingexhibitor only
23Speakingspeaker only
02Fig. 02 — The Voices, by Seniority

33% of the speakers carry senior titles — C-suite, Founder, VP, or Director-level.

  • C-suite620%
  • Founder / Owner13%
  • VP-level27%
  • Director / Head of13%
  • Manager / Lead310%
  • Engineer · IC723%
  • Research / Science930%
  • Other roles13%

Of 30 on the bill · classified by free-text title

03Fig. 03 — The Heaviest in the Room
  1. 01TrendAI3V
  2. 02Adobe2V
  3. 03Microsoft2V
  4. 04OpenAI2V
  5. 05Stripe2V
  6. 06XBOW2V
  7. 07Alpitronic1V
  8. 08Anthropic1V
  9. 09Confidential AI1V
  10. 10Elastic1V
  11. 11FFF Enterprises1V
  12. 12Google1V
  13. 13Google DeepMind1V
  14. 14Knostic1V
04Fig. 04 — By Tier

Tiers were not disclosed for this convocation.