SDLC in the Zero Trust Era

The traditional "castle-and-moat" security model is obsolete in today's distributed environments. The Zero Trust model fundamentally shifts focus from network location to identity verification and explicit authorization for every access request.
This paradigm change has significant implications not just for security teams, but also for developers and operations personnel who build and manage applications.

In this session, we will dive into the technical pillars enabling Zero Trust, exploring authentication (AuthN) and authorization (AuthZ) mechanisms, and how they integrate seamlessly with modern Identity Providers (IDPs), OIDC, and OAuth standards. We'll examine how technologies like WireGuard-based clients (Cloudflare WARP, Twingate, Tailscale) replace traditional VPNs for secure resource access without placing users directly on the network. Finally, we'll demonstrate practical implementation patterns, including defining fine-grained access policies, leveraging secure tunnels for connecting applications (like Kubernetes clusters), and managing this infrastructure using Infrastructure as Code (Terraform) and service discovery patterns (like Helm charts integrating with internal DNS/service mesh). Join us to understand how to build and operate applications securely in a world where trust is never assumed.

Farm to Table Software Delivery - DevOps to Platform Engineering

The way we build, deliver, and operate software has undergone a massive transformation over the past decade. What started as a DevOps-centric approach—focused on automation, CI/CD, and infrastructure as code—has now evolved into a Platform Engineering paradigm. This shift prioritizes self-service, developer experience, and scalable platform abstractions to enable high-velocity software delivery. In this session, we will explore how organizations are modernizing their software delivery pipelines, infrastructure, and operational models to drive agility, efficiency, and reliability.

Drawing from real-world experience as a DevOps consultant and platform engineer, I will take attendees through the journey of software delivery evolution—from early configuration management days to the current Platform Engineering movement. We will discuss the critical role of self-service platforms in empowering developers while ensuring governance, security, and operational excellence at scale.

- Cloud-native and DevOps cultural shifts Configuration Management -> Platform Engineering,
- From bare metal to managed services - *aaS
- The impact of the 12/15-factor app principles on modern application design
- The transition from traditional CI/CD to platform-centric delivery models
- Choosing the right "welding point" between applications and cloud providers
- Architectural patterns for Kubernetes-based software delivery

Building a Cloud Native Platform Brick by Brick

The overwhelming growth of technologies in the cloud native foundation overtook our toolbox and completely changed (well, really enhanced) the developer experience.

In this talk, I will share my personal journey from the "operator's to developer's chair" and the practices which helped me along my journey as a cloud-native developer.

Zerotrust in Cloud Native Environments (CNE)

In the rapidly evolving landscape of cloud-native applications, security is no longer an afterthought—it's a critical design imperative. Our session seeks to explore the intricate security challenges faced by modern microservice architectures, diving deep into the vulnerabilities and best practices that can make or break an organization's digital infrastructure.

Cover trivial to complex security aspects - prevention detention and remediation.
Target audience is - Developers / DevOps engineers which need to provide secure software and infrastructure.