Speaker

Rico Komenda

Rico Komenda

Senior Security Consultant

Senior Security Consultant

Stuttgart, Germany

Actions

Rico is a senior security consultant at adesso SE. His main security areas are in application security, cloud security, offensive security and AI security.

For him, general security intelligence in various aspects is a top priority. Today’s security world is constantly changing and you should always familiarize yourself with the most up-and-coming technologies and methodologies.

As a husband and father of two, he enjoys spending time with his family and exploring the world with them.

Rico ist ein Senior Security Consultant bei adesso SE. Seine Schwerpunkte liegen in den Bereichen Anwendungssicherheit, Cloud-Sicherheit, offensive Sicherheit und KI-Sicherheit.

Für ihn hat die allgemeine Sicherheitsintelligenz in verschiedenen Aspekten oberste Priorität. Die heutige Sicherheitswelt ist ständig im Wandel und du solltest dich immer mit den neuesten Technologien und Methoden vertraut machen.

Als Ehemann und Vater von zwei Kindern verbringt er gerne Zeit mit seiner Familie und erkundet mit ihr die Welt.

Area of Expertise

  • Finance & Banking
  • Government, Social Sector & Education
  • Information & Communications Technology
  • Law & Regulation
  • Media & Information

Topics

  • IT Security
  • Application Security
  • Cloud Security
  • web security
  • Information Security
  • cyber security
  • Web Development
  • Front-End Development
  • Software Development
  • Agile software development
  • Modern Software Development
  • DevOps
  • Cloud & DevOps
  • DevOps & Automation
  • DevSecOps
  • Software Deveopment
  • DevOps Skills
  • Development
  • AI Security
  • Artificial Inteligence
  • Machine Learning and Artificial Intelligence
  • Artificial Intelligence and Machine Learning for Cybersecurity
  • Security
  • Security & Compliance

Builders and Breakers: A Collaborative Look at Securing LLM-Integrated Apps

As Large Language Models (LLMs) become an integral part of modern applications, they not only enable new functionalities but also introduce unique security vulnerabilities. In this collaborative talk, we bring together two perspectives: a builder who has experience developing and defending LLM-integrated apps, and a penetration tester who specialises in AI red teaming. Together, we’ll dissect the evolving landscape of AI security.

On the defensive side, we’ll explore strategies like prompt injection prevention, input validation frameworks, and continuous testing to protect AI systems from adversarial attacks. From the offensive perspective, we’ll showcase how techniques like data poisoning and prompt manipulation are used to exploit vulnerabilities, as well as the risks tied to generative misuse that can lead to data leaks or unauthorised actions.

Through live demonstrations and real-world case studies, participants will witness both the attack and defence in action, gaining practical insights into securing AI-driven applications. Whether you’re developing AI apps or testing them for weaknesses, you’ll leave this session equipped with actionable knowledge on the latest methods for protecting LLM systems. This collaborative session offers a comprehensive look into AI security, combining the expertise of two professionals with distinct backgrounds - builder and breaker.

OWASP Global AppSec EU 2025 - CFP Sessionize Event Upcoming

May 2025 Barcelona, Spain

Magdgeburger DevDays 2025 Upcoming

Application Security Principles
Threat modeling for developers
How much water does the AI consume?

May 2025 Magdeburg, Germany

JAX 2025 Upcoming

MLSecOps: Securing AI/ML Systems in an evolving landscape

May 2025 Mainz, Germany

JavaLand 2025

Pentesting LLM-integrated applications

April 2025

DevCamp Witt-Group 2024

Hidden dangers of language models: identifying and remedying code vulnerabilities
Mitigate GenAI risks with a Zero Trust approach

November 2024 Weiden, Germany

MCTTP Munich Cyber Tactics, Techniques and Procedures 2024

Pentesting Large Language Models 101

September 2024 Munich, Germany

IT Security Summit 2024

Cloud Security Architecture
Real-world exploits and mitigations in LLM Apps
MLSecOps: Security of AI/ML systems

June 2024 Berlin, Germany

DefCamp Cluj-Napoca Sessionize Event

May 2024 Cluj-Napoca, Romania

Magdgeburger DevDays 2024

Who the f* is TLS?

May 2024 Magdeburg, Germany

JAX 2024

The Future Of Application Security

April 2024 Mainz, Germany

NDC Security 2024 Sessionize Event

January 2024 Oslo, Norway

IT Security Summit 2023

Hacking a Kubernetes Cluster
DeepPhishing: Be the CEO
Kubernetes Cluster - but secure! (Workshop)

May 2023 Berlin, Germany

JavaScript Days 2022

Attack vectors in the frontend & how to prevent them

November 2022 Berlin, Germany

Rico Komenda

Senior Security Consultant

Stuttgart, Germany

Actions

Please note that Sessionize is not responsible for the accuracy or validity of the data provided by speakers. If you suspect this profile to be fake or spam, please let us know.

Jump to top