Wednesday
Room 3
13:40 - 14:40
(UTC±00)
Talk (60 min)
STOIC Security: Shielding Your Generative AI App from the Five Deadly Risks
Generative AI offers incredible opportunities but comes with significant cybersecurity challenges. As adoption accelerates, so do the risks—data theft, model manipulation, poisoned training data, operational disruptions, and supply chain vulnerabilities.
This talk introduces the "STOIC" framework—Stolen, Tricked, Obstructed, Infected, Compromised—to help you identify and mitigate these threats.
You'll have some key takeaways around:
- Understanding your Gen AI risks and how they link to the OWASP LLM Top 10 and MITRE ATLAS
- Hardening your systems and securing the supply chain
- Governing with clarity while staying agile
Generative AI is transformative but requires proactive, layered defences to avoid becoming a liability. With the right strategy, it can be a safe and game-changing tool for your organisation.
Jeff Watkins
Jeff Watkins is the Chief Technology Officer at CreateFuture, the award-winning digital consultancy formed from the 2024 union of CreateFuture and xDesign, where he previously served as Chief Product & Technology Officer. In this dual-hat role, he steered multi-disciplinary teams across AI strategy, product engineering and cloud, turning bold ideas into secure, human-centred digital experiences for big-name brands.
Jeff has founded multiple cybersecurity teams and now champions “secure-by-design” practices for generative-AI solutions, weaving threat modelling and ethics into every project. He holds an MSc in Cybersecurity, is midway through a second Master’s in Artificial Intelligence, and leads CreateFuture’s AI Enablement practice, helping clients move from hype to production-grade AI safely and at pace.
He’s a self-confessed “lifetime technologist”, having written his first lines of code at the age of six! A veteran chief engineer, architect, and former tech lead at AND Digital and BJSS, Jeff draws on over 25 years of experience in financial services, healthcare, and retail to translate complex problems into breakthrough, user-loved products used by millions globally.
On the international circuit, Jeff is a sought-after keynote speaker, headlining Webinale (Berlin), AppDevCon (Amsterdam), the International JavaScript Conference (London), and Edinburgh Napier’s PlusEquals5 summit. Audiences value his frank, story-driven take on where AI and cybersecurity collide with culture.
He co-hosts the multi-award-winning “Compromising Positions” podcast, grilling psychologists, anthropologists and UX gurus for outsider perspectives on security. Jeff’s thought-leadership has appeared in Wired, Forbes, Raconteur, IT Pro, Business Cloud and Information Age, and he’s a regular voice for the wider industry press.
Whether mentoring the next generation of tech leaders, coding proofs-of-concept or demystifying CyberSecurity and AI on stage, Jeff’s mission is constant: build technology that elevates people, not the other way around.