Register today

Security Is No Longer For Security Teams. It's For Everyone

This session provides a practical overview of the essential security knowledge every software engineer should have. From cryptography fundamentals and authentication models to secure communication and common vulnerability classes, the talk explores how security connects directly to everyday engineering decisions.

Key Takeaways

  • Understand the core concepts behind cryptography, including hashing, encryption, signatures, and key management
  • Correctly distinguish authentication, authorization, and identity in system design
  • Recognize common vulnerability classes and why they repeatedly appear in modern applications
  • Apply secure communication practices using TLS and mutual TLS
  • Integrate security practices into everyday development workflows including CI/CD and code review

Who Is This For?

  • Developers building modern applications and APIs
  • Engineers responsible for system architecture or platform development
  • Teams integrating security into development workflows

Level

Beginner to practitioner No prior security expertise required.

What This Session Covers

  • Cryptography fundamentals for developers
  • Authentication and authorization models
  • Secure communication with TLS
  • Common application vulnerabilities
  • Practical security standards (OWASP, NIST, CIS)
  • Integrating security into modern development pipelines

What It's Not

Not a deep dive into cryptographic algorithms Not a penetration testing workshop

Full Description

Security is now a core engineering skill, not a niche specialization. Modern developers are expected to understand not only how to build systems, but how to build them securely.

This talk provides a practical, developer-oriented overview of the essential security knowledge every engineer should possess: core cryptography concepts, authentication and authorization models, secure communication with TLS, common vulnerability classes, relevant standards, and secure ways of working in real teams and pipelines.

This session emphasizes how security applies to everyday development decisions, from API design and key management to CI/CD integration and code reviews. The goal is to equip developers with a solid security foundation that improves both code quality and system resilience.

Attendees will leave with a clear mental map of modern application security and concrete guidance they can immediately apply in their daily work.

#
security
profile photo of Laurentiu Spilcă

Laurentiu Spilcă

Security fundamentals for developers

linkedin
gotopia logo

Keynotes

AI as an Amplifier: State of AI-assisted Software Development

profile photo of Nathen Harvey

Nathen Harvey