Speakers 2 talks + 1 workshop OpenID Connect & OAuth 2.0 – Security Best Practices Implementing OpenID Connect and OAuth 2.0 – Tips from the Trenches Identity & Access Control for modern Applications and APIs using ASP.NET Core 3 Dominick Baier Independent Consultant 2 talks + 1 workshop Friday 24 January Security from the media - by VG's Einar Otto Stangvik Einar Otto Stangvik Security Specialist 1 talk Friday 24 January Modern Web Vulnerabilities 2020 Erlend Oftedal Developer and Security Tester 1 talk Friday 24 January The Cyberattack on Visma in 2018, experience sharing and views from the blue team Espen Johansen Visma 1 talk 2 talks TBA Keynote Jaya Baloo CISO of KPN Telecom 2 talks 1 talk + 1 workshop The Future of AppSec is Cloud-Native Defending Kubernetes Environments: A Hands-On Approach Jimmy Mesta Cloud Security Consultant and Trainer 1 talk + 1 workshop Friday 24 January A reasonable guide to security practices Niall Merrigan Security Architect 1 talk Friday 24 January Introduction to Election Security Patricia Aas C++, Security 1 talk 1 talk + 1 workshop Common API Security Pitfalls A builder’s guide to Single Page Application security Philippe De Ryck Founder of Pragmatic Web Security, Google Developer Expert 1 talk + 1 workshop 1 talk + 1 workshop Crash, Burn, Report TLS/HTTPS Security for Web Developers Scott Helme Security researcher 1 talk + 1 workshop Friday 24 January PEBKAC - or does it? Silje Lærk Computer engineer, Security 1 talk 1 talk + 1 workshop .NET Core Data Security : Hope is not a Strategy Secure Programming for the Enterprise in .NET and .NET Core Stephen Haunts Founder of Stephen Haunts Training 1 talk + 1 workshop 1 talk + 1 workshop The Internet of Pwned Things Hack Yourself First: How to go on the Cyber-Offence Troy Hunt Internet Security Specialist 1 talk + 1 workshop Friday 24 January Measuring DevSecOps: building metrics to understand effectiveness and success Victoria Almazova Cloud Security Architect 1 talk