Security in the spotlight

A snippet of the calendar

Conference talk at Voxxed Days CERN: The Past, Present, and Future of Cross-Site/Cross-Origin Request Forgery (22/01/2024 - 23/01/2024 — CERN, Switzerland)
Online workshop at Angular Architects: Angular Security Workshop (15/04/2024 - 16/04/2023)
Conference talk at NDC Security: The Past, Present, and Future of Cross-Site/Cross-Origin Request Forgery (08/01/2024 - 11/01/2024 — Oslo, Norway)
2-day workshop at NDC Security: Bulletproof APIs: Hands-On API Security (08/01/2024 - 11/01/2024 — Oslo, Norway)
Meetup talk at Singapore Identity and Security: The insecurity of OAuth 2.0 in frontends (21/11/2023 — Singapore, Singapore) (More information)
Conference talk at Devoxx: SEVEN things about API security (02/10/2023 - 06/10/2023 — Antwerp, Belgium) (More information)
Conference tutorial at Devoxx: Introduction to OAuth 2.0 and OpenID Connect (02/10/2023 - 06/10/2023 — Antwerp, Belgium) (More information)
Online workshop at Angular Architects: Angular Security Workshop (25/09/2023 - 26/09/2023)
Conference talk at OAuth Security Workshop: The insecurity of OAuth 2.0 in frontends (22/08/2023 - 24/08/2023 — London, UK) (More information)
Course curator of SecAppDev 2023: A week-long course on secure application development (12/06/2023 - 16/06/2023 — Leuven, Belgium)

See more ...

All events

2024 events

Conference talk at Voxxed Days CERN: The Past, Present, and Future of Cross-Site/Cross-Origin Request Forgery (22/01/2024 - 23/01/2024 — CERN, Switzerland)
Online workshop at Angular Architects: Angular Security Workshop (15/04/2024 - 16/04/2023)
Conference talk at NDC Security: The Past, Present, and Future of Cross-Site/Cross-Origin Request Forgery (08/01/2024 - 11/01/2024 — Oslo, Norway)
2-day workshop at NDC Security: Bulletproof APIs: Hands-On API Security (08/01/2024 - 11/01/2024 — Oslo, Norway)

2023 events

Meetup talk at Singapore Identity and Security: The insecurity of OAuth 2.0 in frontends (21/11/2023 — Singapore, Singapore) (More information)
Conference talk at Devoxx: SEVEN things about API security (02/10/2023 - 06/10/2023 — Antwerp, Belgium) (More information)
Conference tutorial at Devoxx: Introduction to OAuth 2.0 and OpenID Connect (02/10/2023 - 06/10/2023 — Antwerp, Belgium) (More information)
Online workshop at Angular Architects: Angular Security Workshop (25/09/2023 - 26/09/2023)
Conference talk at OAuth Security Workshop: The insecurity of OAuth 2.0 in frontends (22/08/2023 - 24/08/2023 — London, UK) (More information)
Course curator of SecAppDev 2023: A week-long course on secure application development (12/06/2023 - 16/06/2023 — Leuven, Belgium)
Keynote at VoxxedDays Brussels: AppSec is too hard!? (23/05/2023 — Brussels, Belgium) (More information)
1-day workshop at NG-BE: Securing the APIs behind your Angular applications (23/03/2023 - 24/03/2023 — Gent, Belgium)
Online workshop at Angular Architects: Angular Security Workshop (27/02/2023 - 28/02/2023)
Conference talk at NDC London: Getting API security right (23/01/2023 - 27/01/2023 — London, UK) (More information)
2-day workshop at NDC London: A builder’s guide to securing modern applications (23/01/2023 - 27/01/2023 — London, UK)
Conference talk at NDC Security: The insecurity of OAuth 2.0 in frontends (16/01/2023 - 19/01/2023 — Oslo, Norway) (More information)
2-day workshop at NDC Security: A builder’s guide to securing modern applications (16/01/2023 - 19/01/2023 — Oslo, Norway)

2022 events

Invited talk (private): Securing frontend applications with Trusted Types (09/12/2022 — Willebroek, Belgium) (More information)
Online workshop at Angular Architects: API Security Workshop (28/11/2022 - 29/11/2022)
Online workshop at Angular Architects: Angular Security Workshop (07/11/2022 - 08/11/2022)
Conference talk at NG-DE: Securing Angular with Trusted Types (06/10/2022 - 07/10/2022 — Berlin, Germany) (More information)
Meetup talk at Amsterdam Secure Software Development: Forget about OAuth 2.0. Here comes OAuth 2.1 (03/10/2022 — Amsterdam, Netherlands) (More information)
Meetup talk at Amsterdam Secure Software Development: AppSec is too hard!? (03/10/2022 — Amsterdam, Netherlands) (More information)
Conference talk at NDC Oslo: Forget about OAuth 2.0. Here comes OAuth 2.1 (26/09/2022 - 30/09/2022 — Oslo, Norway) (More information)
2-day workshop at NDC Oslo: API security for developers (26/09/2022 - 30/09/2022 — Oslo, Norway)
Conference talk at sec4dev: Forget about OAuth 2.0. Here comes OAuth 2.1 (06/09/2022 - 09/09/2022 — Vienna, Austria) (More information)
2-day workshop at sec4dev: Cutting-edge security for modern web applications (06/09/2022 - 09/09/2022 — Vienna, Austria)
Conference talk at LocoMocoSec: Securing an API ecosystem with OAuth 2.0 (27/06/2022 - 30/06/2022 — Honolulu, Hawaii, USA) (More information)
2-day workshop at LocoMocoSec: Become an API Security Champion (27/06/2022 - 30/06/2022 — Honolulu, Hawaii, USA)
Online workshop (US Times) at Angular Architects: Angular Security Workshop (20/06/2022 - 23/06/2022)
Course curator of SecAppDev 2022: A week-long course on secure application development (13/06/2022 - 17/06/2022 — Leuven, Belgium)
Conference talk at OWASP Global AppSec EU: Securing an API ecosystem with OAuth 2.0 (06/06/2022 - 10/06/2022) (More information)
Conference talk at DevTalks Romania: Introduction to OAuth 2.0 and OpenID Connect (08/06/2022 - 10/06/2022 — Bucharest, Romania) (More information)
Conference talk at Code Europe: Getting API security right (30/05/2022 - 02/06/2022 — Warsaw/Cracow/Tricity, Poland) (More information)
Conference talk at Code Europe: Securing an API ecosystem with OAuth 2.0 (30/05/2022 - 02/06/2022 — Warsaw/Cracow/Tricity, Poland) (More information)
Participation in the OAuth Security Workshop: Security working sessions (04/05/2022 - 06/05/2022 — Trondheim, Norway)
Invited talk (private): Securing an API architecture (27/04/2022 — Leuven, Belgium)
Guest lecture talk at Artesis Plantijn Hogeschool: Security in modern frontend applications (26/04/2022 — Antwerp, Belgium)
Meetup talk at We Are Developers Security Day: Architecting API Security (20/04/2022)
Conference talk at NDC Security: AppSec is too hard!? (04/04/2022 - 07/04/2022 — Oslo, Norway) (More information)
Conference talk at NDC Security: Getting API security right (04/04/2022 - 07/04/2022 — Oslo, Norway) (More information)
2-day workshop at NDC Security: API security for developers (04/04/2022 - 07/04/2022 — Oslo, Norway)
Conference talk at OWASP BeNeLux Day: Securing React with Trusted Types (01/04/2022 — Kortrijk, Belgium) (More information)
Invited talk (private): Securing React with Trusted Types (24/03/2022) (More information)
Guest expert at a 42Crunch Webinar: OWASP API Security Top 10 Challenges (24/03/2022)
Invited talk at sec4dev Special Meetup: Securing frontend applications with Trusted Types (24/02/2022) (More information)
Online workshop at Angular Architects: Angular Security Workshop (22/02/2022 - 23/02/2022)
Guest expert at a 42Crunch Webinar: OWASP API Security Top 10 Challenges (17/02/2022)
Invited talk (private): Securing React applications (01/02/2022)
Guest expert at a 42Crunch Webinar: OWASP API Security Top 10 Challenges (25/01/2022)

2021 events

Conference talk at NG-BE: Securing Angular with Trusted Types (02/12/2021 - 03/12/2021 — Gent, Belgium) (More information)
1-day workshop at NG-BE: Leveling up on Angular security (02/12/2021 - 03/12/2021 — Gent, Belgium)
Conference talk at NDC Oslo: Securing React with Trusted Types (29/11/2021 - 03/12/2021 — Oslo, Norway) (More information)
2-day workshop at NDC Oslo: A builder’s guide to Single Page Application security (29/11/2021 - 03/12/2021 — Oslo, Norway)
Conference talk at International JavaScript Conference: OAuth 2.0 and OpenID Connect for Single Page Applications (25/10/2021 - 29/10/2021 — Munich, Germany) (More information)
Online course (live with recordings): API Security best practices (25/10/2021 - 09/11/2021)
Invited talk at Building Bruges: Getting API security right (20/10/2021 — Brugge, Belgium) (More information)
Invited talk (private): API Security is too hard!? (19/10/2021)
Online course (live with recordings): Cutting-edge React security (15/10/2021 - 21/10/2021)
Conference talk at Swiss Cyber Storm: AppSec is too hard!? (12/10/2021 — Bern, Switzerland) (More information)
Conference talk at ScotSoft: Taking security seriously (07/10/2021) (More information)
2-day workshop at Angular Architects: Angular Security Workshop (04/10/2021 - 05/10/2021)
Keynote at OWASP's 20th Anniversary Celebration: AppSec is too hard!? (24/09/2021) (More information)
Conference talk at HexCon: Getting API security right (21/09/2021 - 23/09/2021) (More information)
Invited talk at DevSecOps Road Trip: Better security through code hygiene (17/09/2021) (More information)
Conference talk at DevSecCon: Token security in Single Page Applications (24/06/2021) (More information)
Participation in the DevDays Europe: Security panel (08/06/2021 - 09/06/2021)
Conference talk at DevDays Europe: Serving the right recipe for API authentication (08/06/2021 - 09/06/2021) (More information)
2-day workshop at Angular Architects: API Security Workshop (27/05/2021 - 28/05/2021)
Talk at Avocado Labs: Learning about XSS misconceptions with security expert Philippe De Ryck (25/05/2021)
2-day workshop at Angular Architects: Angular Security Workshop (20/05/2021 - 21/05/2021)
Invited talk (private): Token security in APIs (05/05/2021)
Conference talk at NG-BE Live: Token security in Single Page Applications (20/04/2021) (More information)
Webinar with Jim Manico: alert(‘OAuth 2.0’); // The impact of XSS on OAuth 2.0 in SPAs (07/04/2021) (More information)
Guest lecture at Stony Brook University: Getting API security right (30/03/2021) (More information)
Meetup talk at OWASP Jakarta Chapter: Getting API security right (27/03/2021) (More information)
Conference talk at Secure Coding Virtual Summit: Getting API security right (24/03/2021) (More information)
2-day workshop at Angular Architects: Angular Security Workshop (15/03/2021 - 16/03/2021)
Conference talk at sec4dev: Token security in Single Page Applications (22/02/2021 - 25/02/2021) (More information)
2-day workshop at sec4dev: Hands-on API security for developers (22/02/2021 - 25/02/2021)
Meetup talk at OWASP North Virginia Chapter: Serving the right recipe for API authentication (18/02/2021) (More information)
Meetup talk at OWASP Belgium Chapter: JWT’s - sign em like it’s hot (18/02/2021)
Invited talk (private): The anatomy of an attack (09/02/2021)

2020 events

Workshop at Voxxed Days Ticino: OAuth 2.0 security in single page applications (10/12/2020)
Conference talk at Dev Day Sri Lanka: OAuth 2.0 and OpenID Connect for Single Page Applications (16/11/2020 - 20/11/2020) (More information)
Conference talk at LocoMocoSec: Serving the right recipe for end-user authentication (03/11/2020 - 06/11/2020) (More information)
Conference talk at Visug XL: Serving the right recipe for API authentication (29/10/2020) (More information)
Conference talk (private): OAuth 2.0 and OpenID Connect for Single Page Applications (23/10/2020) (More information)
Conference talk at GDG DevFest UK & Ireland: OAuth 2.0 and OpenID Connect for Single Page Applications (17/10/2020) (More information)
Conference talk at OWASP Global AppSec Virtual: OAuth 2.0 and OpenID Connect for Single Page Applications (01/10/2020 - 22/10/2020) (More information)
Appearance on the Cybersecurity & Cloud Podcast: Cybersecurity discussion (19/06/2020)
Appearance on the Techie Leadership podcast: Leadership discussion (11/06/2020)
Conference talk at sec4dev: Authentication with OpenID Connect in Angular applications (24/02/2020 - 27/02/2020 — Vienna, Austria) (More information)
Keynote at sec4dev: How security affects the people behind the code (24/02/2020 - 27/02/2020 — Vienna, Austria) (More information)
2-day workshop at sec4dev: A builder’s guide to Single Page Application security (24/02/2020 - 27/02/2020 — Vienna, Austria)
Appearance on My Angular Story: Angular, Security, and cooking (04/02/2020)
Conference talk at NDC London: Common API security pitfalls (27/01/2020 - 31/01/2020 — London, United Kingdom) (More information)
Conference talk at NDC Security: Common API security pitfalls (22/01/2020 - 24/01/2020 — Oslo, Norway) (More information)
2-day workshop at NDC Security: A builder’s guide to Single Page Application security (22/01/2020 - 24/01/2020 — Oslo, Norway)

2019 events

Appearance on Adventures in Angular: Secure Angular applications (10/12/2019)
Conference talk at NG-BE 2019: Authentication with OpenID Connect in Angular applications (05/12/2019 - 06/12/2019 — Gent, Belgium) (More information)
1-day workshop at NG-BE 2019: Secure API access with OAuth 2.0 in Angular (05/12/2019 - 06/12/2019 — Gent, Belgium)
Invited talk at the Axxes Freelance Event: Security with OAuth 2.0 and OpenID Connect (28/11/2019 — Antwerpen, Belgium)
Meetup talk at OWASP Belgium chapter: Recent evolutions in the OAuth 2.0 and OpenID Connect landscape (28/11/2019 — Leuven, Belgium) (More information)
Free 1-day workshop hosted by OWASP Hyderabad: Diving into web security with the OWASP top 10 (23/11/2019 — Hyderabad, India)
Free 1-day workshop hosted by Null Bangalore: Diving into web security with the OWASP top 10 (16/11/2019 — Bangalore, India)
Meetup talk at Bucharest Java User Group: Common API security pitfalls (13/11/2019 — Bucharest, Romania) (More information)
Conference talk at DevCon 2019: The parts of JWT security nobody talks about (13/11/2019 — Bucharest, Romania) (More information)
Conference workshop (private): Security in modern Angular & React applications (14/10/2019 - 16/10/2019 — Hyderabad, India)
Invited talk at ICTech Day: Introduction to OAuth 2.0 and OpenID Connect (10/10/2019 — Antwerpen, Belgium) (More information)
Invited talk (private): Common API security pitfalls (20/09/2019 — London, United Kingdom) (More information)
Meetup talk at OWASP London Chapter: Common API security pitfalls (19/09/2019 — London, United Kingdom) (More information)
Conference talk at Angular Connect: Angular and the OWASP top 10 (19/09/2019 - 20/09/2019 — London, United Kingdom) (More information)
Conference talk at OWASP Global AppSec DC: Common API security pitfalls (09/09/2019 - 13/09/2019 — Washington, DC, USA) (More information)
2-day workshop at OWASP Global AppSec DC: A builder’s guide to Single Page Application security (09/09/2019 - 13/09/2019 — Washington, DC, USA)
Appearance on The Secure Developer: Security in Angular applications (01/08/2019)
Free 1-day workshop hosted by Nulab Tech Talks Amsterdam: Diving into web security with the OWASP top 10 (17/07/2019 — Amsterdam, The Netherlands)
Meetup talk at Nulab Tech Talks Amsterdam: The parts of JWT security nobody talks about (16/07/2019 — Amsterdam, The Netherlands) (More information)
Conference talk at Identiverse: Security patterns for keeping secrets in the browser (25/06/2019 - 28/06/2019 — Washington, DC, USA) (More information)
Conference talk at GOTO Amsterdam: Taking security seriously (17/06/2019 - 20/06/2019 — Amsterdam, The Netherlands) (More information)
Conference talk at GOTO Amsterdam: Common API security pitfalls (17/06/2019 - 20/06/2019 — Amsterdam, The Netherlands) (More information)
Meetup talk at Amsterdam Secure Software Development: The parts of JWT security nobody talks about (17/06/2019 — Amsterdam, The Netherlands) (More information)
Meetup talk at Amsterdam Secure Software Development: Common API security pitfalls (17/06/2019 — Amsterdam, The Netherlands) (More information)
1-day workshop at GOTO Amsterdam: Client-side security for modern web applications (17/06/2019 - 20/06/2019 — Amsterdam, The Netherlands)
Appearance on The Frontside Podcast: Security in frontend applications (13/06/2019)
Participation in the Open Security Summit: Security working sessions (03/06/2019 - 07/06/2019 — London, UK)
Meetup talk at Full Stack Tel Aviv meetup: The parts of JWT security nobody talks about (30/05/2019 — Tel-Aviv, Israel) (More information)
Conference talk at OWASP Global AppSec Tel Aviv: Common API security pitfalls (29/05/2019 - 30/05/2019 — Tel-Aviv, Israel) (More information)
Conference talk at InfoShare: Common API security pitfalls (08/05/2019 - 09/05/2019 — Gdansk, Poland) (More information)
Conference talk at LocoMocoSec: The truth about cookies, tokens and APIs (15/04/2019 - 19/04/2019 — Lihue, Hawaii, USA) (More information)
Meetup talk at Angular Graz Pizza-Meetup: The parts of JWT security nobody talks about (22/03/2019 — Graz, Austria) (More information)
1-day conference workshop at Angular College: A secure foundation for your Angular application (22/03/2019 — Graz, Austria)
Conference talk at sec4dev: Common API security pitfalls (25/02/2019 - 27/02/2019 — Vienna, Austria) (More information)
1-day workshop at sec4dev: A hands-on take on modern web security (25/02/2019 - 27/02/2019 — Vienna, Austria)
Conference talk at Belgian Cyber Security Coalition: Security patterns for keeping secrets in the browser (21/02/2019 — Leuven, Belgium) (More information)
Course curator of SecAppDev 2019: A week-long course on secure application development (18/02/2019 - 22/02/2019 — Leuven, Belgium)
Guest expert at an Ensighten Webinar: Client-Side website security - The missing piece to a secure website (12/02/2019)
Half-day workshop at hackages: OWASP top 10 vulnerabilities (08/02/2019 — Brussels, Belgium)

2018 events

Conference talk at NG-BE: Angular and the OWASP top 10 (06/12/2018 - 07/12/2018 — Gent, Belgium) (More information)
1-day workshop at NG-BE: A secure foundation for your Angular application (06/12/2018 - 07/12/2018 — Gent, Belgium)
1-day workshop (private): A secure foundation for your Angular application (24/11/2018 — Gent, Belgium)
Conference talk at GOTO Copenhagen: From the OWASP top 10(s) to the OWASP ASVS (20/11/2018 — Copenhagen, Denmark) (More information)
Meetup talk at OWASP Dresden: Common API security pitfalls (02/11/2018 — Dresden, Germany) (More information)
Meetup talk at OWASP Hamburg: Common API security pitfalls (01/11/2018 — Hamburg, Germany) (More information)
Conference talk at GOTO Berlin: Introduction to OAuth 2.0 and OpenID Connect (30/10/2018 - 01/11/2018 — Berlin, Germany) (More information)
Conference talk at GOTO Berlin: From the OWASP top 10(s) to the OWASP ASVS (30/10/2018 - 01/11/2018 — Berlin, Germany) (More information)
1-day workshop at GOTO Berlin: Application security for user interface developers and designers (30/10/2018 - 01/11/2018 — Berlin, Germany)
Conference talk at OWASP AppSec Bucharest: Cookies vs Tokens - a paradoxical choice (//2018 — Bucharest, Romania) (More information)
Meetup talk at ngBucharest: Angular and the OWASP top 10 (25/10/2018 — Bucharest, Romania) (More information)
Meetup talk at OWASP Belgium: Common API security pitfalls (23/10/2018 — Brugge, Belgium) (More information)
2-day workshop by Pragmatic Web Security: Angular Security Masterclass (18/10/2018 - 19/10/2018 — Leuven, Belgium)
2-day workshop by Pragmatic Web Security: Web Security Essentials (15/10/2018 - 16/10/2018 — Leuven, Belgium)
Meetup talk at Angular Belgium: Passwords and pixie dust - A look at OAuth 2.0 security in Angular (4/10/2018 — Mechelen, Belgium) (More information)
Invited talk at JOIN: HTTPS for developers (4/10/2018 — Mechelen, Belgium) (More information)
Meetup talk at BarcelonaJS: Cookies vs Tokens - a paradoxical choice (26/09/2018 — Barcelona, Spain) (More information)
Meetup talk at Angular Oslo: Angular and the OWASP top 10 (12/09/2018 — Oslo, Norway) (More information)
Meetup talk at Angular Oslo: Cookies vs Tokens - a paradoxical choice (12/09/2018 — Oslo, Norway) (More information)
Conference talk at JavaZone: Common API security pitfalls (12/09/2018 - 13/09/2018 — Oslo, Norway) (More information)
Meetup talk at Dallas.js: Cookies vs Tokens - a paradoxical choice (30/08/2018 — Dallas, Texas, USA) (More information)

Check out Philippe's talk at GOTO Amsterdam 2019. In this talk, titled Taking security seriously, Philippe looks at how we handle security in a modern web development world. He explains how security comes down to people, and why every developer should be involved in security.

This talk drew a full room at the conference and received stellar reviews.

Looking for a great speaker on security? Don't hesitate to reach out!

Show contact information

I had the pleasure to work with Philippe on 2 different conferences (GOTO Berlin 2018 & GOTO Amsterdam 2019), where he was not only a giving one or more talks but also a workshop each time. I have rarely encountered a more professional, humble, and knowledgeable person in his field. The feedback by the audience for his talks and the participants of his workshops were on average 95% positive. I would always invite Philippe again to either give a talk or do a workshop at future conferences

Dajana Günther
CEO at Trifork Germany