The increasing complexity and sophistication of cyber threats have heightened the need for robust security mechanisms throughout the Software Development Lifecycle (SDLC). Traditional security methods have proven insufficient in addressing evolving risks, prompting the exploration of advanced technologies such as Artificial Intelligence (AI). However, integrating AI into SDLC raises challenges related to human-AI collaboration, trust, and alignment. This paper aims to explore the synergistic collaboration between Human Agentic and AI agents to enhance the security of SDLC. By integrating human expertise with AI capabilities, the study investigates how this collaboration can address existing security gaps and improve threat detection, vulnerability management, and secure code development. A qualitative approach is employed, reviewing existing literature on Human-Agentic AI frameworks, AI-driven security models, and their application in SDLC security. We also propose a conceptual framework for Human Agentic-AI collaboration in SDLC security, encompassing AI’s role in automated threat detection, vulnerability scanning, and model optimization, alongside human agents’ roles in decision-making, risk evaluation, and response validation. The proposed framework demonstrates that combining human intuition with AI’s computational power significantly enhances the security posture of SDLC processes. AI’s ability to quickly process and analyze large datasets complements human agents’ contextual understanding, leading to more effective identification of vulnerabilities and proactive security measures. The collaboration results in improved threat mitigation strategies, faster response times, and more reliable secure code deployment. The integration of Human Agentic-AI collaboration offers promising potential in enhancing SDLC security. The synergistic approach bridges the limitations of traditional methods and AI systems, offering a more dynamic and adaptable security solution. Future research should focus on optimizing human-AI interfaces and addressing trust and transparency challenges to further strengthen SDLC security.
Ayouni et al. (Tue,) studied this question.