Mostafa Moradian
Head of Security
Stockholm, Sweden
Actions
Mostafa Moradian is the Head of Security at TigerData, where he leads people and initiatives that strengthen the security posture across a global infrastructure. His work spans across large-scale security automation, open-source contributions and cross-functional engineering projects. He is based in Stockholm, Sweden and brings deep expertise in software engineering, observability and security. He regularly authors and contributes to OSS projects include RSigma, zizmor, xk6-kafka and many more.
Links
Area of Expertise
Topics
Tiny little birds!
In this talk, I am going to talk about canary tokens: digital tripwires that help protect company's assets and infrastructure. This involves going into the depth of an incident, and how canary tokens saved the day. This talk draws upon a recent incident at Grafana that could have caused severe reputational damage, which was quickly prevented.
The topics are:
1. What are canary tokens?
* Building your canary token infrastructure
* Canary token lifecycle
2. Canary tokens and TruffleHog to the Rescue!
3. Canary tokens placement strategies
4. Incident response strategies
* Zizmor and other linters
* Gato-X
* Secret storage
5. Conclusion
6. Q&A
The talk is based on this article: https://grafana.com/blog/2025/08/25/canary-tokens-learn-all-about-the-unsung-heroes-of-security-at-grafana-labs/
How do you know you are compromised?
GatewayD: Like API gateways, for databases!
GatewayD is a cloud-native database gateway and framework for building data-driven applications. It is like API gateways, but for databases.
In this session, I'll go through the current problems present in today's databases, and how GatewayD is going to solve those problems. It will also includes a demo of how GatewayD works using the cache plugin.
Mostafa Moradian
Head of Security
Stockholm, Sweden
Links
Actions
Please note that Sessionize is not responsible for the accuracy or validity of the data provided by speakers. If you suspect this profile to be fake or spam, please let us know.
Jump to top