strong>Breakout Sessions [
clear filter]
10:15 CEST
10:15 CEST
We Know Security but How Do We Secure GenAI End-to-End? - Mihai Maruseac, Google
Thursday September 19, 2024 10:15 - 10:35 CEST
Speakers
Staff Software Engineer, Google
Mihai Maruseac is a member of Google Open Source Security team (GOSST), working on Supply Chain Security for ML and on GUAC. Before joining GOSST, Mihai created the TensorFlow Security team after joining Google, moving from a startup to incorporate Differential Privacy (DP) withing...
Read More →
10:40 CEST
10:40 CEST
Nation-State Threats in the Open-Source Software Supply Chain - Ross Bryant, Phylum
Thursday September 19, 2024 10:40 - 11:00 CEST
Speakers
Chief of Research, Phylum
Ross is the Chief of Research at Phylum and has over a decade of threat-hunting research experience. Before joining Phylum, he worked as a researcher for the U.S. Department of Energy and as a research mathematician for the U.S. Department of Defense.
11:20 CEST
11:20 CEST
German National Guideline on SOSS-Lifecycle: Community Outreach - Damian Ludwig & Andreas Neth, BSI
Thursday September 19, 2024 11:20 - 11:40 CEST
Speakers AN
IT Security Architect, BSI
Andreas Neth is an IT Security Architect at the German Federal Office for Information Security. He’s been building Open Source based IT-systems for about 20 years. His background is both in network infrastructure and IT-Security and he has been teaching about IT-Security and advocating...
Read More → DL
Security Analyst, German Federal Office for Information Security
Damian Ludwig works as an IT-Security Analyst for the German Federal Office for Information Security, where he leads the development of a national guideline for a secure Open-Source-Software lifecycle. During his previous work in academics, he was researching and designing secure...
Read More →
11:45 CEST
11:45 CEST
12:10 CEST
14:15 CEST
14:15 CEST
14:40 CEST
Managing Vulnerabilities in Open-Source Dependencies - Eva Sarafianou, Mattermost
Thursday September 19, 2024 14:40 - 15:00 CEST
Speakers
Product Security Engineering Lead, Mattermost
Eva is the Product Security Engineering Lead at Mattermost overseeing the Product Security function. Previously she was a Principal Product Security Engineer at Auth0/Okta. Passionate about creating secure applications, Eva is dedicated to building a robust product security program...
Read More →
14:40 CEST
Securing Content Distribution with RSTUF, an Incubating OpenSSF Project - Kairo De Araujo, TestifySec & Martin Vrachev, Open Source Contributor
Thursday September 19, 2024 14:40 - 15:00 CEST
Speakers
Senior Software Engineer - Open Source, TestifySec
Kairo is a Senior Open Source Engineer at TestifySec. Kairo contributed to python-tuf and is the author of Repository Service for TUF (RSTUF). Past roles include Senior Open Source Software Engineer at VMware OSPO, Senior Software Engineer at IBM, ING, Forescout, and a former System...
Read More →
Senior Python Developer, Consensus
Martin Vrachev is an Open Source contributor. He was part of the VMware Open Source Program Office on the Security Supply Chain team. His contributions include multiple Open Source security projects solving a variety of problems. His latest work is focused on secure software supply...
Read More →
15:20 CEST
15:20 CEST
16:00 CEST
Let Devs Be Devs Without Sacrificing Security - Andrew McNamara, Red Hat
Thursday September 19, 2024 16:00 - 16:20 CEST
Speakers
Senior Principal Software Engineer, Red Hat
Andrew McNamara is passionate about usable CI/CD, security, and DevSecOps, drawing from his experience of building and shipping containerized software at IBM and Red Hat. As a SLSA maintainer, Andrew is helping people identify how to approach and understand supply chain security...
Read More →
16:25 CEST
16:40 CEST