Talks
Are We Ready For The Next Cyber Security Crisis Like Log4Shell?
Conference (INTERMEDIATE level)
Zaal 11
Related
Breaching LLM-Powered Applications: Overcoming Security and Privacy Challenges
Observability for developers
Words as weapons: The dark arts of Prompt Engineering. Let’s hack some models... or even you?!
Bootiful Spring Boot in 2025
In a world where vulnerabilities like Log4J, Spring4Shell, and the XZ Backdoor make headlines, securing our software ecosystem has never been more critical. In this session, Soroosh, a hands-on solution architect with experience working on security platform services for large enterprises like Rabobank, will share practical strategies and best practices for securing the software development process, applicable to both small startups and large organizations.

Key questions that will be answered in this session:
  • Can basic SQL Injection threats extend beyond accessing a database server within a restricted network?
  • What is a "Supply Chain Attack," and how dangerous can it be?
  • What are the most effective low-hanging practices to secure your CI/CD process?
  • Shift-Left Security & DevSecOps? What’s the hype, and how is it going to redefine the way we build software?
  • How can Software Bill of Materials (SBOM) help us prepare for the next Log4Shell crisis?
  • What do EU supply chain security-related regulations (DORA/CRA) mean for developers?
Soroosh Khodami
Code Nomads
Soroosh is a software engineer and software architecture enthusiast, passionate about building simple but impactful solutions. With over 10 years of experience in diverse domains, including Telecom, Media & Entertainment, and E-Commerce. He has worked with small startups and large enterprises serving 80 million active subscribers. Currently working as a Solution Architect at Rabobank via Code Nomads. Soroosh strongly believes in the power of collaborative learning and enjoys sharing his experiences and insights with other developers.