Visma Security Conference logo Visma logo

About SecCon

We are happy to invite you to the second edition of Visma SecCon, Visma’s yearly security conference intended for our customers, our employees and everyone else interested in security. This year’s topic is about security for developers and we will highlight, discuss and emphasize the importance that security has in the building of new applications. You do not have to be a developer to be able to enjoy this year’s conference however some of the presentations will be more technical and detailed than last year. Nevertheless, we believe that everybody still will get the overall experience.
The purpose of the conference is to bring together eminent experts in the cyber security field, both from Visma and externally in order to increase the focus and awareness on security, a field in constant development. New risks and scam methods are always emerging alongside changes in society, and it’s fundamental to be up to date.

This year the conference will be digital and free for everyone to attend, accessible via YouTube Live Streaming!

I want to attend


Agenda

11:00

Intro and welcome by the hosts

 

The life of a developer in security

Per Olsson

11:30

How to Build Better and More Secure Software for Windows

Sami Laiho

Sami Laiho is one of the world's leading professionals in the Windows OS and Security.
Sami has been working with and teaching OS troubleshooting, management, and security since 2001.
His session was evaluated as the best session in TechEd North America, Europe and Australia in 2014, and Nordic Infrastructure Conference in 2016, 2017, 2019 and 2020.
At Ignite 2018 Sami's sessions were ranked as #1 and #2 out of 1708 sessions!! This was the first time in the history of the conference that anyone has been able to do this!
Sami is also an author at PluralSight and the conference chair of the TechMentor conference.

Read more

12:00

Are We Forever Doomed By Software Supply Chain Risks?

Simon Maple

The adoption of open-source software continues to grow and creates significant security concerns for everything from software supply chain attacks in language ecosystem registries to cloud-native application security concerns.
In this session, we will explore how developers are targeted as a vehicle for malware distribution, how immensely we depend on open-source maintainers to release timely security fixes, and how the race to the cloud creates new security concerns for developers to cope with, as computing resources turn into infrastructure as code.

Read more

12:30

Teaching others the mindset to discovering vulnerabilities with BARKER

Sean "zseano" Roesner

In this talk Sean will discuss his journey when building BARKER and how he came about the idea to help others learn the mindset to discovering vulnerabilities without having prior knowledge on what they're looking for, just like a real bug bounty target!
He have manually triaged almost 9000 issues on BugBountyHunter and he have seen a huge variety in approaches taken when testing.
The majority of bugs on BARKER are based on real issues he have found on bug bounty programs and he try to help members understand the mistakes developers make when developing, especially with certain features, and how this leads to security vulnerabilities.

Read more

13:00

Live hack award ceremony

Joakim Tauren

The winners of the Visma Live hack together with intigriti will be announced!

Read more

13:30

It doesn't take much to be above average: The critical shortcomings of small software companies

Alexander Lystad

Alex has worked on modernizing software development and delivery in Visma since 2012. He enjoys speaking at conferences, and is a long-time contributor to lichess.org.
In this talk he will share his observations of the security posture at smaller software companies.

Read more

14:00

Kaseya War Stories

Adrian Stanila

Adrian Stanila works as an Information Security Officer in Visma Security.
He started an exclusive career in cybersecurity in 2013 and is part of the Cyber Security Incident Response team.
He specialized in Purple Teaming, Reverse Engineering and Forensics.
Adrian will share some lessons learned during a recent incident.

Read more

Speakers



Sami Laiho

Sami Laiho

Senior Technical Fellow, MVP

Simon Maple

Simon Maple

Field CTO at Snyk

zseano

"zseano"

Creator of bugbountyhunter.com

Alexander Lystad

Alexander Lystad

Director of Cloud and Engineering at Visma

Adrian Stanila

Adrian Stanila

Information Security Officer

Attend

Actually we don't want your email and we don't want to track you.

Add to your calendar

or


Get a reminder on Youtube (logged in), link below:

Click Set Youtube Reminder to get notified (app/email) when the event starts!


or


Join now (on November 11 @ 11:00 CET):

We messed up the link, here's the new one

https://www.youtube.com/watch?v=6Csw4qNoPXY


https://www.youtube.com/watch?v=c3UBoAXa3oY




See you there! Until then, stay safe, stay secure!