Staff Developer Advocate for Snyk, Java Champion, Oracle Ace Pro, and Software Engineer with over a decade of hands-on experience in creating and maintaining software. He is passionate about Java, (Pure) Functional Programming and Cybersecurity. Brian is a JUG leader for the Virtual JUG and the NLJUG. He also co-leads the DevSecCon community and is a community manager for Foojay. He is a regular international speaker on mostly Java-related conferences like JavaOne, Devnexus, Devoxx, Jfokus, JavaZone and many more. Besides all that, Brian is a military reserve for the Royal Netherlands Air Force and a Taekwondo Master / Teacher.
What does it really mean to create software that is safe to use in today's world? In this panel discussion, our experts will talk about different security issues that developers face today. They will share their thoughts on these issues, which come from their experience in architecture, data platforms, AI systems, and developer culture.
Maybe you want to learn more about reactive, incident-driven security and move towards a more proactive Secure by Design mindset. When should you start thinking about security when creating software? And how can teams balance speed, innovation, and resilience without slowing delivery?
Have you ever thought about how real-time data streaming is becoming really important in lots of systems? The panel can look at the special security problems of platforms like Apache Kafka. This includes ways to encrypt information, how to control who can access it, how to manage keys, how to monitor it, and what we have learned from data exposure incidents that have actually happened.
As AI and large language models become more common in apps, new risks like prompt injection might also be talked about. What are the practical results of these attacks? How can developers deal with increasing threats while still coming up with new ideas using AI?
As well as technical controls, the panel could also look at the human side of security. What can organisations do to make developers more aware of security issues? Could activities that involve playing games, like capture-the-flag exercises, help change the way people think about security from "security as compliance" to "security as responsibility"?
Get ready for a lively discussion where our speakers share their experiences and the audience can ask questions. If you're designing systems, working with streaming data, integrating AI or strengthening engineering culture, this session is for you.
As developers, we’re embracing AI and large language models (LLMs) in our applications more than ever. However, there’s an increasing concern we need to be aware of: prompt injection. This sneaky attack can undermine our AI systems by manipulating the input to produce unintended outputs.
In this session, we’ll break down what prompt injection really means and look at some common techniques attackers use, like instruction overrides and hidden prompts. But we won't stop there; we’ll also explore advanced challenges, including escalation techniques that can exacerbate the risks.
Most importantly, we won’t just identify the problem. We’ll dive into practical steps you can take to mitigate these risks and keep your AI interactions secure. Join us at Devoxx UK to gain insights that will help you stay ahead in AI security and ensure your applications remain robust against these emerging threats.
Searching for speaker images...