Mike van der Bijl
DevSecOps Expert
Utrecht, The Netherlands
Actions
My career has taken me through a diverse journey, spanning roles that include full-stack developer, business analyst, IT manager, and now thriving in cybersecurity. Throughout this journey, my deep passion for technology has remained a constant driving force.
For me, security resembles solving a 10,000-piece puzzle that's been turned upside down. You understand the end goal, yet you're uncertain about where each piece belongs. Achieving this requires close collaboration with developers, business stakeholders, and others, necessitating me to consistently bridge different disciplines within technology. Whether it's simplifying intricate development concepts for security and business professionals or vice versa, every piece added brings us nearer to the solution. This challenge deeply motivates me.
I approach my work with a clear focus on prioritizing people first, followed by refining processes, and then utilizing technology to enhance these efforts. This philosophy ensures that technological changes are seamlessly integrated and readily embraced by our teams and organizations.
Links
Badges
Area of Expertise
Topics
May the Code Be Secure: The role of AI in Shaping the Future of DevSecOps
We’ll explore how AI serves as a powerful ally in the DevSecOps galaxy. Together, we’ll journey through the key areas where AI can support and enhance your efforts—from aiding in threat modeling to streamlining secure code creation, improving automated testing and optimizing real-time monitoring. Along the way, we’ll discover how to integrate this technology into our workflows, not as a replacement for our expertise, but as a tool to make our work more effective, efficient, and enjoyable.
So, grab your lightsabers (or laptops), ready your droids (or automation tools), and prepare to leverage the Force of AI as we embark on The Path of the DevSecOps Jedi: AI's Role in Securing the Future. May the Force be with us!
From Code to C-Suite: Speaking against the Three Heads of Cerberus through threat modelling
Ever been stuck in a meeting where developers are speaking in technical jargon (code), the business team talks strategy, and the financial team just wants to see cold, hard numbers and somehow no one really understands each other? It seems that three different languages are being spoken and three different worlds are trying to guard the same gates, but they all are missing the bigger picture.
In Greek mythology, Cerberus guards the gates of the Underworld, a three-headed beast that demands attention from all angles. In today’s organizations we face our own Cerberus: the interlocked domains of development, business and finance. Each of them is speaking its own language and driven by different priorities. Yet, threat modelling too often speaks to only one head, namely the one of the development, and leaves the others (business and finance) blind to danger.
The result? Misaligned, risky decisions, blind spots in strategy and costly surprises. This talk arms you with the tools to face the beast and makes sure that everyone is pulling in the same direction.
Mike invites you into the Underworld of risk, where modern threats dwell and decisions echo like the voices of shades. You'll learn practical techniques for identifying technical threats using frameworks like MITRE ATT&CK, then see exactly how to translate the threats into clear business risks and financial consequences to ensure all three heads of Cerberus are alert and aligned. So, everyone from product owners to C-level executives understands why these risks matter. You will learn practical skills such as impact mapping, how to craft well-written threat statements in the right language, and how to communicate threats visually for maximum impact. Along the way, we’ll consult the Furies (the relentless pursuers of neglected consequences) and interpret the warnings of the dead, whose failures still whisper lessons to us. We’ll descend into the vaults of Hades, where unseen technical, financial, and business risks are hoarded, and speak in clear, actionable insights and not in riddles so that even the most hardened decision-makers of the Underworld cannot ignore the toll demanded by Charon, who ferries only those who are prepared to pay the price for ignorance.
Whether you’re a developer buried in code or a security professional navigating complex risk, this session is for you. If you’ve ever felt like you’re shouting into the void when trying to communicate threats or technical issues beyond your own team, it’s now time to evolve. I will help you to becoming a Hermes-like messenger and into someone who can translate technical risks into clear, compelling insights that business and finance leaders actually understand and act on. Together, we’ll get all heads of Cerberus aligned so your work drives smarter with unified decisions across the entire organization.
Becoming the Godfather of Threat Modeling
In the world of cybersecurity there is always a threat lurking. Waiting in the shadows for the perfect moment to strike. You can sit back and relax and hope for the best and react when it’s too late… or before they even think about making a move you can take the control over and see everything coming from miles away. In this session, you’ll dive deep into the art of threat modeling—an essential skill that allows you to anticipate risks, identify vulnerabilities, and develop a proactive defense strategy.
Mike will guide you through the process and show you why threat modeling is an offer you simply can’t refuse. You’ll learn how to analyze threats with precision, build effective threat scenarios and develop a mindset that stays one step ahead of the attackers. Ultimately you won’t only understand threat modeling—you’ll lead it with confidence.
Join Mike in the family business, hone your expertise and become the Godfather of Threat Modeling. In this game only the wise and the prepared will survive.
The Security Godfather: Empowering Champions to Guard the Family
Hello everyone! You will always remember this day as the day that changed the way you view security and leadership. Today we will bring the family together to discover the hidden power of a Security Champion Program. Many people say that security is a job for specialists but what if I say that security is everyone’s business—just as loyalty and trust are the foundations of a family?
Think of your champions as your capos—trusted lieutenants who protects the families. Without them your defenses are weak and your territory vulnerable. But with them your business becomes an impenetrable fortress which is united by a shared cause.
Remember that every great empire is built by those who protect it from within. So, we’re not just talking about security—we’re creating a family. Together, we will discover strategies to build a network of loyal champions which will realize your organization’s most valuable assets.
The inside information will make your security program untouchable. Not all the power comes from the top. The real champions are the one who you trust and who hold the keys to keep your family’s safe.
Don’t miss this chance to strengthen the family. This session is an offer you can’t refuse!
Royal Flush in DevSecOps – Unlocking the Secrets of a winning strategy
Ready to Win at DevSecOps? In this high-stakes session, Mike will share how to stack the deck in your favor by integrating the right tools and strategies, giving you a competitive edge. You’ll learn the five essential layers that will ensure your DevSecOps approach is designed for success! Just like in poker, every move counts. With my method, you’ll always stay one step ahead.
Don’t Leave Security to Chance! Join Mike to discover how to play your cards right, leveraging automation, effective culture, the right tools and continuous improvement—plus much more! Let’s ensure you’re always holding the winning hand!
Sailing the Waters using UI/UX Reinforced by Security
Everyone! You will always remember this day as the day that changed your perspective on security and UI/UX. Today, we set sail to discover the hidden treasures of these two islands. How many times don’t you hear that they are as different as day and night? But what if I told you they need each other, like a pirate ship and its sails!
Remember, every great voyage begins with a single step. So, hoist the sails and set forth on an adventure of discovery. Together, we'll uncover the secrets that will make your designs not just functional, but extraordinary. Join Mike in this deep dive into the intersection of security and user interaction/experience, where we’ll unearth strategies that ensure your applications are both safe and user-friendly. This is a golden treasure trove filled with knowledge!
Not all treasure is silver and gold, my companions! But this session is a treasure you don’t want to miss!
JAX 2026 Upcoming
DevOpsCon & MLCon 2026 Sessionize Event Upcoming
GoLab 2025 Sessionize Event
DevBcn 2025 Sessionize Event
Security BSides Athens 2025 Sessionize Event
BSides Groningen 2025 Sessionize Event
GDG DevFest Pisa 2025 Sessionize Event
Dutch PHP Conference 2025 Sessionize Event
Frontmania 2024 Sessionize Event
Please note that Sessionize is not responsible for the accuracy or validity of the data provided by speakers. If you suspect this profile to be fake or spam, please let us know.
Jump to top