Monthly Meetings
Monthly chapter meetings feature cybersecurity industry experts presenting on current topics. Meetings are held in a hybrid format with both Zoom and in-person attendance options at the Mercer Island Community & Event Center.
2026
5 meetings
As software engineering evolves toward agentic AI systems capable of autonomously writing, reviewing, and deploying code, traditional security assurance models are no longer sufficient. This session examines emerging threats in model-first development environments and introduces new assurance domains for securing autonomous agents. It highlights the continued importance of human judgment, governance, and trust boundaries in ensuring safe and accountable AI-driven software delivery.
About the speaker
Frank Simorjay is a Principal Security Assurance lead at Microsoft with nearly 20 years at the company. He leads security assurance for the Business and Industry Copilot division, focusing on threat modeling, SDL reviews, cloud security, and scaling security culture through engineering enablement. A CISSP and ISSA Distinguished Fellow, Frank founded the ISSA Puget Sound Chapter and serves as President of the ISC2 Seattle Chapter. He speaks regularly on agentic AI security, threat modeling, and building security-first engineering organizations.
Working in Cybersecurity, we're all familiar with SOX. But do you know how we got there?
Join us as we cover Enron and Worldcom, their direct impact on SOX, and what we can learn from some of the fraud prevention techniques used in finance.
About the speaker
AK obtained her CISSP in 2023, after attending an ISC2 Seattle CISSP Bootcamp. She holds a Masters in Analytical Chemistry from the University of Washington and Bachelors in Biochemistry and Computer Science, both from Seattle University. She currently works as a Cybersecurity Engineer.
How do we use the apparent magic of LLMs to help us threat
model? What are the challenges? What works? What doesn’t? This 2026 talk contextualizes and models LLMs as friend and foe, and then focuses on how to use LLMs as we develop more secure systems.
About the speaker
Adam is the author of Threat Modeling: Designing for Security and Threats: What Every Engineer Should Learn from Star Wars. He’s a leading expert on threat modeling, a consultant, expert witness, and game designer. He has decades of experience delivering security. His experience ranges across the business world from founding startups to nearly a decade at Microsoft.
His accomplishments include:
- Helped create the CVE. Now an Emeritus member of the Advisory Board.
- Fixed Autorun for hundreds of millions of systems
- Led the design and delivery of the Microsoft SDL Threat Modeling Tool (v3)
- Created the Elevation of Privilege threat modeling game
- Co-authored The New School of Information Security
Beyond consulting and training, Shostack serves as a member of the Blackhat Review Board, an advisor to a variety of companies and academic institutions, and an Affiliate Professor at the Paul G. Allen School of Computer Science and Engineering at the University of Washington.