Building Secure Software(Panel) : Practical Strategies for Developers
Conference (INTERMEDIATE level)
Auditorium
What does it really mean to create software that is safe to use in today's world? In this panel discussion, our experts will talk about different security issues that developers face today. They will share their thoughts on these issues, which come from their experience in architecture, data platforms, AI systems, and developer culture.
Maybe you want to learn more about reactive, incident-driven security and move towards a more proactive Secure by Design mindset. When should you start thinking about security when creating software? And how can teams balance speed, innovation, and resilience without slowing delivery?
Have you ever thought about how real-time data streaming is becoming really important in lots of systems? The panel can look at the special security problems of platforms like Apache Kafka. This includes ways to encrypt information, how to control who can access it, how to manage keys, how to monitor it, and what we have learned from data exposure incidents that have actually happened.
As AI and large language models become more common in apps, new risks like prompt injection might also be talked about. What are the practical results of these attacks? How can developers deal with increasing threats while still coming up with new ideas using AI?
As well as technical controls, the panel could also look at the human side of security. What can organisations do to make developers more aware of security issues? Could activities that involve playing games, like capture-the-flag exercises, help change the way people think about security from "security as compliance" to "security as responsibility"?
Get ready for a lively discussion where our speakers share their experiences and the audience can ask questions. If you're designing systems, working with streaming data, integrating AI or strengthening engineering culture, this session is for you.
Maybe you want to learn more about reactive, incident-driven security and move towards a more proactive Secure by Design mindset. When should you start thinking about security when creating software? And how can teams balance speed, innovation, and resilience without slowing delivery?
Have you ever thought about how real-time data streaming is becoming really important in lots of systems? The panel can look at the special security problems of platforms like Apache Kafka. This includes ways to encrypt information, how to control who can access it, how to manage keys, how to monitor it, and what we have learned from data exposure incidents that have actually happened.
As AI and large language models become more common in apps, new risks like prompt injection might also be talked about. What are the practical results of these attacks? How can developers deal with increasing threats while still coming up with new ideas using AI?
As well as technical controls, the panel could also look at the human side of security. What can organisations do to make developers more aware of security issues? Could activities that involve playing games, like capture-the-flag exercises, help change the way people think about security from "security as compliance" to "security as responsibility"?
Get ready for a lively discussion where our speakers share their experiences and the audience can ask questions. If you're designing systems, working with streaming data, integrating AI or strengthening engineering culture, this session is for you.
Artem Makarov
Code Nomads
Artem Makarov is a Principal Engineer at Code Nomads. He's been working on Java projects in various industries for the past 12 years. Having Masters in Electronics Engineering he is passionate for applying engineering practices in his projects, contributing to better software design and reliability. Besides his developer role, he frequently helps aspiring developers to master software developer craft by sharing knowledge and hosting trainings. In his free time he enjoys traveling, road cycling and learning electronic music production.
Brian Vermeer
Snyk
Staff Developer Advocate for Snyk, Java Champion, Oracle Ace Pro, and Software Engineer with over a decade of hands-on experience in creating and maintaining software. He is passionate about Java, (Pure) Functional Programming and Cybersecurity. Brian is a JUG leader for the Virtual JUG and the NLJUG. He also co-leads the DevSecCon community and is a community manager for Foojay. He is a regular international speaker on mostly Java-related conferences like JavaOne, Devnexus, Devoxx, Jfokus, JavaZone and many more. Besides all that, Brian is a military reserve for the Royal Netherlands Air Force and a Taekwondo Master / Teacher.
Bárbara Teruggi
Originally from Argentina, I've been living in the Barcelona area for +20 years. Started in the IT world in 2006, building my career within the Finance and Insurance business. My path started as a developer in different areas (business oriented and also more technical tasks). I have also been working on development support and a brief DevOps period, until my current position as a Security Architect.
In my free time I enjoy music, reading, climbing, pilates, traveling, socializing and spending time with my dog.
In my free time I enjoy music, reading, climbing, pilates, traveling, socializing and spending time with my dog.
Ixchel Ruiz
Karakun AG
Ixchel Ruiz has been developing software applications and tools since 2000. Her research interests include Java, dynamic languages, client-side technologies, and testing. As a member of the JCP Executive Committee, Java Champion, Oracle ACE Pro, Testcontainers Community Champion, CDF Ambassador, Hackergarten enthusiast, Open Source advocate, public speaker, and mentor, Ixchel is deeply committed to fostering inclusive and collaborative tech communities. She actively mentors aspiring developers and champions initiatives aimed at increasing diversity and accessibility in the technology sector.
Ixchel’s work is characterised by a relentless pursuit of innovation, a deep understanding of user needs, and an unwavering commitment to ethical technology development.
Ixchel’s work is characterised by a relentless pursuit of innovation, a deep understanding of user needs, and an unwavering commitment to ethical technology development.
Olena Kutsenko
Confluent
Olena is a Staff Developer Advocate at Confluent and a recognized expert in data streaming and analytics. With two decades of experience in software engineering, she has built mission-critical applications, led high-performing teams, and driven large-scale technology adoption at industry leaders like Nokia, HERE Technologies, AWS, and Aiven.
A passionate advocate for real-time data processing and AI-driven applications, Olena empowers developers and organizations to use the power of streaming data. She is an AWS Community Builder, a dedicated mentor, and a volunteer instructor at a nonprofit tech school, helping to shape the next generation of engineers.
As an international speaker and thought leader, Olena regularly presents at top global conferences, sharing deep technical insights and hands-on expertise. Whether through her talks, workshops, or content, she is committed to making complex technologies accessible and inspiring innovation in the developer community.
A passionate advocate for real-time data processing and AI-driven applications, Olena empowers developers and organizations to use the power of streaming data. She is an AWS Community Builder, a dedicated mentor, and a volunteer instructor at a nonprofit tech school, helping to shape the next generation of engineers.
As an international speaker and thought leader, Olena regularly presents at top global conferences, sharing deep technical insights and hands-on expertise. Whether through her talks, workshops, or content, she is committed to making complex technologies accessible and inspiring innovation in the developer community.