London, England, United Kingdom
#GetSecure, #BeSecure & #StaySecure ๐ Bonjour! I work on one of the defining security problems of this decade: how we build with AI without dismantling everything we've learned about protecting systems, data, and trust. I'm an AI Security Strategist & Advisor, working where frontier AI meets real-world risk, translating fast-moving, poorly-understood threats into frameworks, training, and guidance that developers, AppSec teams, and security leaders can act on. I helped define how the industry secures AI-assisted development, and I've carried that work from individual contributors to the C-suite. What I focus on: ๐ค Securing agentic AI systems. As autonomous, tool-using AI moves from demo to production, it opens a new attack surface: prompt injection, malicious MCP servers, inter-agent impersonation, autonomous attack chains. I turn these threats into practical defence, including the "Securing Vibe Coding" body of work now used across live sessions, hands-on labs, and whitepapers. ๐ก๏ธ AI governance & risk. Securing AI is also a visibility & accountability problem. I work the governance layer: Shadow AI, AI BOM, least-privilege controls for agents, & the frameworks organizations need to know what AI they run and prove it's safe. ๐ค Industry-scale communication. Keynotes, conference tracks, & webinars reaching thousands live, + freeCodeCamp articles read by millions of developers. I've hosted the Security track at QCon London & I'm a regular voice in executive forums on where AI security is heading. ๐ Open ecosystem & peer leadership. OpenUK Security Advisory Board member & ambassador. 6x GitHub Star. ISC2 EMEA Content Advisory Committee. 6x freeCodeCamp top contributor. TryHackMe room creator. My path was deliberately non-linear: from international business consulting in the Middle East, North Africa & Asia, to engineering in South Korea, to senior security roles in the UK, now AI security advocacy at Snyk. That cross-disciplinary lens connects technical risk to business strategy. ๐ญ The AI security landscape is being rewritten faster than the org charts can keep up. I'm focused on its leading edge: agentic security, governance at scale, & the frontier I'm tracking: quantum and post-quantum cryptography. My ambition is to shape how organizations build a safer AI-driven future, in whatever form that leadership takes. I also invest in the next generation, mentoring through CyberGirls, Women4Cyber, & GirlCode; & founding Epic Women in Cyber/Tech. ๐ฃ Open to keynotes, advisory work, and senior leadership opportunities in AI security.
I operate at the forefront of AI Security, DevSecOps, and Cybersecurity, translating complex, fast-moving security challenges into frameworks, training, and guidance adopted across the industry. I reach developers, AppSec teams, and security leaders simultaneously, working the full range from deep technical research to executive-level influence on where AI security is heading. ๐ค AI Security Research & Advocacy: * Defined & operationalized the "Securing Vibe Coding" narrative, growing it from a single talk into a Snyk-branded, multi-format hub (live sessions, hands-on labs, whitepapers) addressing prompt injection, malicious MCP servers, AI-generated code flaws, AI BOM, & agentic attack chains, delivered across 12+ venues in a single year * Authored the "AI-Enhanced Security Champion" & "Scaling Threat Modeling Through Security Champions" whitepapers, + launch content on Agent2Agent, Shadow AI, including a feature for freeCodeCamp * Reached ~10,000+ aggregate live audience across 2025โ2026 ๐ก๏ธ Strategic Program Leadership & Technical Education: * Built the AI Security Champions program end-to-end, including a ISC2 webinar series (2000+ live attendees across EMEA+AMER) & its full content estate * Designed the internal AI Security Engineer (ASE) Foundations curriculum across several technical modules * Built secure-by-design guidance & training for AI-assisted engineering, equipping developers and AppSec teams to ship AI-generated code safely at scale ๐ Global Industry Influence & Community Building: * Represents Snyk in CISO and C-suite forums (ISMG Executive Boardroom, Dark Reading, Techstrong, CISO Forum) * Invited speaker across tier-1 communities: OWASP London, AI Sec Eng London, Data & AI London * Bridges Snyk's AI Center of Excellence, Product, Engineering, Sales, & Marketing, surfacing field signal into product direction on AI BOM, Shadow AI, and autonomous AI attacks
I led the development and delivery of Snyk's flagship security education programs, translating vulnerability management & software supply chain security into actionable guidance for developers, with strong content leadership & cross-functional collaboration. ๐ ๏ธ Educational Program Development * Built a brand-new Ethical Hacking workshop end-to-end, from slides to live demos, with a supporting resource hub (whitepaper and 5 articles) * Revitalized the core DevSecOps workshop, transforming static content into dynamic live demos, & streamlined program operations with new metrics & reporting * Created 2 Snyk TryHackMe rooms, delivering hands-on DevSecOps training to 10k+ learners * Authored a chapter, cheat sheet, and webinar for the ASPM Masterclass series, & co-hosted high-attendance CTF-101 workshops with a new public resource hub ๐ Content Creation & Industry Presence * Led the OWASP Top 10 video series (5 episodes) for the "The Big Fix" campaign * Authored content for the Snyk blog & external platforms on supply chain security incidents and securing open source projects * Delivered talks, panels, & workshops at major conferences and private client sessions, with public sessions reaching thousands of attendees (Ethical Hacking ~2,000; CTF-101 ~1,300; Breaking & Securing AI 1,100+) ๐ค Partnerships & Internal Impact * Served on the DevSecCon 2024 CFP Committee, reviewing the Security track & acting as speaker liaison * Co-led SnykHER, driving diversity and inclusion initiatives including IWD activities and cross-functional collaboration across ERGs * Delivered security workshops to emerging talent at 01Founders as part of Snyk Impact
As a Snyk Ambassador, I help the development community build securely. This includes collaborating with peers, spreading security awareness and engage with community through reports, workshops, talks, blogposts and other artefacts. My expertise is around Security within Open Source projects, supply chain attacks and DevSecOps. Snyk Ambassadors share their interest, expertise, and excitement within their communities to help other developers and engineers build secure software. Snyk Ambassador profile. https://snyk.io/snyk-ambassadors
As a GitHub Star and a GitHub Security Ambassador, I give back to the community by helping others hone their skills and by nurturing and growing less-explored communities and projects through reports, workshops, talks, blogposts and other artefacts. My expertise is around Security within Open Source projects, supply chain attacks and DevSecOps. The GitHub Stars program thanks GitHub's most influential developers and gives them a platform to showcase their work, reach more people, and shape the future of GitHub. GitHub Stars profile. https://stars.github.com/profiles/sonyamoisset/ ๐ GitHub Star 2021, GitHub Star 2022, GitHub Star 2023, GitHub Star 2024, GitHub Star 2025, GitHub Star 2026
Security Advisory Board. https://openuk.uk/security/
As an OpenUK Ambassador, I support the work of OpenUK, promote the organisation purpose of developing UK Leadership in Open Technology through reports, workshops, talks, blogposts and other artefacts. My expertise is around Security within Open Source projects. OpenUK promotes businesses, projects and people, who use and develop Open Technology in the UK and collaborates with existing organisation in Open Technology to deliver through 3 Pillars: Skills, Security and Sustainability. OpenUK Ambassador profile. https://openuk.uk/profiles/sonya-moisset/
Conceptualise two rooms and developed content part of the Snyk module: - Snyk Open Source. https://tryhackme.com/r/room/snykopensource - Snyk Code. https://tryhackme.com/r/room/snykcode