You are viewing content from a past/completed QCon -

Track Overview

Security Transformation

How do you actually start with a security mindset? Learn techniques for making security a first-class concern.


From this track

SESSION + Live Q&A Security

A Continuation of Devops: Policy as Code

Organisations large and small are embracing devops and agile practices and transforming themselves into software companies. As part of that movement many organisations have embraced infrastructure as code, the idea that rather than systems administrators managing...

Gareth Rushgrove

Product Manager @Docker

SESSION + Live Q&A Agile

Speed The Right Way: Design and Security in Agile

“Blame the programmer” was an emerging theme in the security breaches of the last year placing coders and “their bugs” squarely in the security spotlight. But what is upstream of implementation bugs of causing these security issues? Application architecture and design. Effective...

Kevin Gilpin

Enterprise Software Engineer

SESSION + Live Q&A Security

Securing Services Using SSO

As BuzzFeed transitioned to microservices it needed to secure a growing number of internal tools. Our first solution was an open source auth service deployed in front of each app, but this approach had a number of scaling issues. The talk will discuss sso, our open-source, homegrown, centralized...

Shraya Ramani

Software Engineer @BuzzFeed

SESSION + Live Q&A Security

The Evolving Practice of Security

As technology has evolved from on-premise data centres to cloud native systems, the practices of managing that technology has evolved giving us benefits like continuous integration and deployment and configuration as code and cloud orchestration platforms. But security practices have generally...

Michael Brunton-Spall

Independent Security Consultant, previously Deputy Director for Technology and Operation, & Head of CyberSecurity of Government Digital Service

SESSION + Live Q&A DevOps

The Three Faces of DevSecOps

DevSecOps is the buzzword du jour in the world of security. Organisations increasingly understand that if you transform development and embrace DevOps, you must transform security as well. Failing to do so would either leave you insecure, or make your security controls negate the speed you aimed...

Guy Podjarny

Co-founder @SnykSec, previously CTO @Akamai

UNCONFERENCE + Live Q&A Open Space

Security Open Space

Ian Robins


Speakers from this track

Gareth Rushgrove

Product Manager @Docker

Gareth Rushgrove is a product manager at Docker. He works remotely from Cambridge, UK, helping to build interesting tools for people to better manage infrastructure and applications. Previously he worked for the UK Government Digital Service focused on infrastructure, operations and information...

Read more

Kevin Gilpin

Enterprise Software Engineer

Kevin Gilpin is an enterprise software engineer with over 20 years of experience spanning various industries including healthcare, automotive, logistics, and life sciences. He was recently CTO of Conjur, then CyberArk Fellow following the acquisition of Conjur by CyberArk in 2017. He is a pioneer...

Read more
Find Kevin Gilpin at:

Shraya Ramani

Software Engineer @BuzzFeed

Shraya Ramani is a Los Angeles-based security-infrastructure software engineer at BuzzFeed, with extensive experience with Golang. Before BuzzFeed, she worked at MongoDB on server tools, including an open-source continuous integration tool. When she isn’t obsessing about tests, she enjoys...

Read more
Find Shraya Ramani at:

Michael Brunton-Spall

Independent Security Consultant, previously Deputy Director for Technology and Operation, & Head of CyberSecurity of Government Digital Service

Michael Brunton-Spall is an independent Cybersecurity consultant, working for the UK Government.  Michael is a former Deputy Director with the Cabinet Office, where he headed up Technology and Operations for the Government Digital Service as well as being head of Cybersecurity.  Michael...

Read more
Find Michael Brunton-Spall at:

Guy Podjarny

Co-founder @SnykSec, previously CTO @Akamai

Guy Podjarny (@guypod) is a cofounder at Snyk.io, focusing on open source and cloud security. Guy was previously CTO at Akamai following their acquisition of his startup, Blaze.io, and worked on the first web app firewall & security code analyzer. Guy is a frequent conference speaker, the...

Read more
Find Guy Podjarny at:

Track Host

Guy Podjarny

Co-founder @SnykSec, previously CTO @Akamai

Guy Podjarny (@guypod) is a cofounder at Snyk.io, focusing on open source and cloud security. Guy was previously CTO at Akamai following their acquisition of his startup, Blaze.io, and worked on the first web app firewall & security code analyzer. Guy is a frequent conference speaker, the...

Read more
Find Guy Podjarny at:

This site is protected by reCAPTCHA and the Google Privacy Policy and Terms of Service apply.