9:00 am - 9:30 am

Registration and Breakfast

9:30 am - 10:00 am

Session 1: API Threats in 2024
Ivan Novikov, Co-Founder at Wallarm
‍
‍The Wallarm Research team has identified API vulnerabilities and exploits from last year, compiling them into our year-end report. This report highlights key trends and provides actionable insights that can help you strengthen your program in 2024.
‍

10:00 am - 10:45 am

Session 2: Security Leader Panel
Join a group of security leaders and practitioners as they share practical insights on how they are tackling product security this year.
Some of our panelists:
Matt Johansen, Head of Software Security @ Reddit
Greg Martin, 3x Founder/CEO: of Ghost Security, JASK and Anomaly
Bankim Tejani, Senior Director, Security Architecture at H-E-B
Evan J Johnson, Former Product Security at Cloudflare, Co-Founder/CEO of RunReveal
‍
‍

10:45 am - 11:00 am

Coffee and Networking Break
‍

11:00am - 11:30 am

Session 3: Perspectives on Application Security and AI
James Wickett, Founder of DryRun Security. Former Head of Research at Signal Sciences. Founder of the LASCON conference.

In this talk you’ll learn different perspectives on where AppSec and AI streams are overlapping and proving fruitful as well as introductions to tools, frameworks, prompt techniques and more.
‍

11:30 pm - 12:00 pm

Session 4: Wallarm API Security Demo‍‍
‍

12:05pm - 12:20 am

Session 5: API Authorization Renaissance
Mike Schwartz, Founder of Gluu
‍
Controlling access to API endpoints is critical for business success. In the past 5 years, there has been a plethora of new authorization solutions. Is it finally time to externalize policies, i.e. to remove them from API code and Gateways? Fine Grain? Course Grain? What's a developer to do?
‍

12:20 pm - 1 pm

Lunch and Networking