Spoznajte predavatelje
Adrien Žitko
Predavanje:
Vdori v IoT

Adrien Žitko je etični heker, izvajalec preverjanja informacijskih tehnologij in specialist kibernetske varnosti, zaposlen na SIQ Ljubljana. Z vdornimi testi se ukvarja že zadnjih šest let. V prostem času se redno izobražuje s pomočjo različnih CTF in HackTheBox ter drugih tekmovalnih aktivnosti. Trenutno je nosilec certifikatov OSCP, CEH ter CompTia Security+. Njegova znanja zajemajo notranje in zunanje varnostne preglede in varnostne preglede spletnih aplikacij ter IoT naprav. Predaval je na odmevnih konferencah, kot so Infosek, Inat Summit (How is cloud changing or challenging cyber security) in Maritime cyber security. V svoja predavanja vključuje aktualne in sveže dogodke s področja informacijske varnosti. V preteklosti je imel številne izvedbe delavnice SPLETNE PREVARE – nevarnost vsakega uporabnika elektronske naprave in delavnice Kaj boste storili, če ste vi ali vaša organizacija tarča kibernetskega napada ali spletne prevare.
Alex Holden
Predavanje:
Fraud Galaxy: Exploring the Universe of Cyber Deception

Alex Holden is the founder and CISO of Hold Security, LLC. Under his leadership, Hold Security played a pivotal role in information security and threat intelligence, becoming one of the most recognizable names in its field. Mr. Holden researches minds and techniques of cyber criminals and helps our society to build better defenses against cyber-attacks.
Andrej Rakar
Predavanje:
Red teaming v akciji: Kako kibernetska vaja krepi kibernetsko odpornost podjetja
Andrej Rakar, dr. elektrotehniških znanosti, je na Institutu Jožef Stefan deloval na področju nadzornih sistemov tehničnih procesov in uvajanju informacijskih tehnologij v proizvodnjo. Na področju informacijske varnosti deluje že od leta 2005, praktične izkušnje pa si je pridobil na najzahtevnejših projektih za finančne ustanove, zavarovalnice, telekomunikacijske operaterje, zdravstvo in podjetja iz gospodarstva doma in v tujini. Kot vodja informacijske varnosti (CISO) v podjetju Petrol d.d. je zadolžen za upravljanje z informacijsko varnostjo, uresničevanje strategije kibernetske varnosti ter nadzor izvajanja ukrepov varovanja informacij. Poleg tega predava na različnih konferencah in drugih prireditvah s tematiko informacijske varnosti.
Bob van der Staak
Predavanje:
Enumerating Kubernetes for exploitation

Bob van der Staak is a penetration tester and red teamer at the Dutch Railways. Sharing knowledge is his passion, and with his background in software development and technical informatics, he implements code to assist with his daily assessments.
From web penetration testing to malware development and cloud technologies, he is eager to learn and share his expertise.
Boris Vardjan
Predavanje:
Vloga in izzivi CISO v bankah

Boris Vardjan je vodja Varnostnega foruma v okviru Odbora za informatiko v Združenju bank Slovenije.
Od maja 2018 je zaposlen v OTP banki d.d. kot vodja tima informacijske varnosti (CISO). Z informacijsko varnostjo se poklicno ukvarja od leta 2008. Kot CISO je bil pred tem zaposlen v Deželni banki d.d. in SKB d.d. Je tudi predavatelj in sodeluje na okroglih mizah s področja informacijske varnosti (GZS, ISACA, Palsit - Infosek, Infosek Expo, HEK). Je ISACA gold member ter nosilec mednarodnih nazivov ISACA CISA ter SIQ/CIS ISO/IEC manager in auditor.
Božidar Radosavljević
Predavanje:
Zero Trust in Action: Securing Your Microsoft 365 Environment

Owner and Consultant at PowerBML.
Gorazd Božič
Predavanje:
Aktualne grožnje na področju kibernetske varnosti

Gorazd Božič je vodja nacionalnega odzivnega centra za omrežne incidente SI-CERT (Slovenian Computer Emergency Response Team). Odzivni center SI-CERT v okviru javnega zavoda Arnes od leta 1995 dalje preiskuje vdore v računalnike, okužbe z računalniškimi virusi in pomaga uporabnikom pri raznovrstnih drugih zlorabah na internetu, tudi preko programa ozaveščanja varninainternetu.si. Med letoma 2000 in 2008 je Gorazd Božič predsedoval evropski skupini odzivnih centrov TF-CSIRT in je predstavnik Slovenije v upravnem odboru Evropske agencije za omrežno in informacijsko varnost ENISA.
Gregor Spagnolo
Predavanje:
Dobre prakse v primeru kibernetskega incidenta

Gregor Spagnolo je lastnik podjetja SSRD d.o.o., ki se osredotoča na varen življenjski cikel razvoja programske opreme in usposabljanje software razvijalcev. Certificiran etični heker (CEH) z več kot deset let izkušnjami in strokovnim znanjem na področju oblikovanja in implementiranja aplikacij ter kibernetske varnosti. Delo na varnostnem področju vključuje varnostne preglede, penetracije, analizo izvorne kode, varno programiranje in rudarjenje podatkov o varnostnih incidentih.
Holger Spohn
Predavanje:
Undersea cables, the issues, the challenges and potential solutions

Born on the 29th of Feb 72 in Karlsruhe, Germany.
After attending school, which ended with a high school diploma, I joined the German Air Force.
There I made my masters in Electrical Engineering, after that worked in Air Traffic Controlling, from there became an IT officer which led me to the NATO Airborne Early Warning & Control Force Command (AWACS) in SHAPE.
I was a Communication officer in the HQ, with the responsibility for frequency management, Air and Ground communication, the Communication Budget of the HQ and related tasks.
Once finished, I left the military and I joined SHAPE as a NATO Civilian, working in the Intelligence Division (J2) as a CIS Security Supervisor.
Main job functions are inspections, policy development, incident management, security awareness, technical and threat advice and now Intel Support to the Cyber domain, which is a capability we want to build up for the future. I am also supporting CIS Security responsibilities for our operation on Afghanistan, which right now focuses on Train, Advice and Assist of the AFG security forces.
Izidor Golob
Predavanje:
Izsiljevalski napad na Univerzo v Mariboru: -1+ kg/teden

Dr. Izidor Golob je vodja Računalniškega centra Univerze v Mariboru zadnjih 15+ let, kjer v skromni zasedbi IT ekipe zagotavljajo storitve več deset tisoč uporabnikom. Več kot desetletje je bil tudi asistent / raziskovalec na Fakulteti za elektrotehniko, računalništvo in informatiko, na področju podatkovnega modeliranja. Ima pridobljene CISA, CISM in ITIL F certifikate.
izr. prof. dr. Muhamed Turkanović
Predavanje:
Grožnje kibernetski varnosti v verigi blokov: Lekcije iz resničnih napadov

Muhamed Turkanović je visokošolski učitelj oz. izredni profesor na Univerzi v Mariboru (UM), Fakulteti za elektrotehniko, računalništvo in informatiko (FERI). Ima več kot 10 let izkušenj v gospodarstvu in sicer na mednarodni ravni kot razvijalec, vodja tehničnega razvoja, tehnični direktor in lastnik IT podjetij. Od leta 2017 je zaposlen na UM FERI, kjer je v okviru Inštituta za informatiko (FERI) ustanovil Blockchain Lab:UM, kjer je tudi vodja razvoja in raziskav. Od leta 2019 je vodja Digitalnega inovacijskega stičišča Univerze v Mariboru in od leta 2022 koordinator konzorcija DIGI-SI, ki je tudi slovenski EDIH. Je tudi namestnik predstojnika Inštituta za informatiko ter koordinator Univerzitetnega študijskega programa Informatika in podatkovne tehnologije na UM FERI, kjer tudi predava predmete, povezane s podatkovno tehnologijo in varstvom podatkov. Poleg tega je predsednik Tehničnega odbora za Blockchain pri Slovenskem inštitutu za standardizacijo (SIST), med letoma 21-22 član Strateškega sveta za digitalizacijo pri Vladi RS, koordinator Univerze v Mariboru za številne projekte H2020, HORIZON in DIGITAL (npr. DE4A, Data4Food2030, DIH-World, SMART ERA, CyberHUBS itn.).
Jan Harrie
Predavanje:
Traverse the Path

Jan Harrie is a Product Security Engineer at HashiCorp, where he focuses on ensuring the security of their products and services. With over 8 years of experience in the security industry, Jan has worked as a penetration tester, consultant, and researcher. He has a deep understanding of software vulnerabilities and a passion for developing secure solutions. Jan is a frequent speaker at security conferences across Europe, sharing his knowledge and insights with the community.
Jelena Virant Burnik
Predavanje:
Uvodni nagovor: Kibernetska varnost in varstvo osebnih podatkov - člana iste ekipe

Dr. Jelena Virant Burnik je informacijska pooblaščenka. Petletni mandat je nastopila 18. 7. 2024. Informacijskemu pooblaščencu se je pridružila leta 2008, od leta 2018 vodila področje sodelovanja Informacijskega pooblaščenca pri nadzoru nad čezmejno obdelavo osebnih podatkov ter sodelovanje Informacijskega pooblaščenca v Evropskem odboru za varstvo podatkov. Pred tem je opravljala tudi delo državne nadzornice za varstvo osebnih podatkov. Ukvarja se zlasti s problematiko varstva osebnih podatkov pri sodobnih informacijsko komunikacijskih storitvah, umetni inteligenci, procesih digitalizacije, s čezmejnim sodelovanjem nadzornih organov, prenosi podatkov v tretje države, certificiranjem in aktivnostmi dvigovanja zavedanja o varstvu osebnih podatkov. Informacijskega pooblaščenca je zastopala v številnih telesih, delovnih skupinah in projektih, med drugim v Delovni skupini iz člena 29 ter pri Svetu Evrope. Magistrski študij na temo regulacije komunikacij je zaključila na London School of Economics and Political Science v Veliki Britaniji. Doktorski naziv je pridobila na Fakulteti za družbene vede v Ljubljani, z disertacijo na temo regulacije vedenjskega oglaševanja z vidika pravice do zasebnosti in varstva osebnih podatkov.
Jernej Porenta
Predavanje:
Secrets handling in cloud environments

Jernej Porenta dela pri podjetju 3fs, kjer pomaga strankam pri prehodu IT storitev v oblak, dvigu informacijske varnosti in vpeljavi Dev(Sec)Ops metod v razvoj programske opreme. Z več kot 25 letnimi izkušnjami s področja Linuxa sodeluje tudi pri mednarodnih NATO vajah kibernetske obrambe.
Martín Pérez Rodríguez
Predavanje:
How to steal 10 million euro using OSINT?

As a Cloud Security & DevSecOps consultant, he enables diverse development teams to deliver improved results while protecting their business-critical assets on-prem and in Cloud environments. Passionate about red teaming, threat intelligence, offensive security, and talking to an audience about his stories.
For a glimpse at his career so far, you can reach out to his LinkedIn:
https://www.linkedin.com/in/martinperezrodriguez/
Matej Kovačič
Predavanje:
Korenski kompleti - kako globoko v računalnik se lahko skrije zlonamerna programska oprema

dr. Matej Kovačič se ukvarja z analitiko podatkov in informacijsko varnostjo. Je avtor več knjig in člankov s področja zasebnosti, informacijske varnosti in digitalne forenzike.
Matteo Cuscusa
Predavanje:
Code Red: Threat-Led Tabletops for Critical Infrastructure Defense

Matteo Cuscusa is a hacker with over 25 years of experience. He currently serves as the Managing Director and Offensive Tactics Advisor at Cuscusa Web & Security SRL.
Matteo's work focuses on offensive security tactics, ethical hacking, and social engineering, with a particular interest in AI-enhanced exploitation techniques. His approach combines technical knowledge with an understanding of human behavior in digital environments, aiming to expose vulnerabilities in both technological systems and human processes. Matteo is a strong advocate for responsible data handling and the development of ethical digital ecosystems.
Matthias Luft
Predavanje:
Vulnerability Management in 2024: The Good, the Bad and the Ugly

Matthias Luft is an information security enthusiast and practitioner. After 20 years in Security, he is still excited about a broad range of topics (from hypervisors via containers/clouds to IT security management/leadership) and has had the opportunity to present on them around the globe. He spent the last few years working on container and cloud security engineering and research. In his free time, he enjoys the outdoors, martial arts, and spending time with dogs.
Miloš Krunić
Predavanje:
Kibernetske grožnje v finančnem sektorju: Preprečevanje napadov na finančne sisteme

Diplomirani inženir informatike, certificiran etični heker in certificiran SOC analitik z bogatimi izkušnjami na področju sistemske administracije, mrežne administracije in kibernetske varnosti.
Z dolgoletnimi izkušnjami na področju mednarodnih odzivov na incidente se redno sooča z najnovejšimi izzivi in grožnjami v kibernetskem prostoru. Kot večkratni član slovenske ekipe na prestižnih vajah LockedShields je pridobil dragocene izkušnje v simulacijah kibernetskih napadov in obrambi kritične infrastrukture. Njegovo poslanstvo je pomagati organizacijam pri zaščiti njihovih podatkov in sistemov pred nenehnimi grožnjami.
Miroslav Matijević
Predavanje:
Red teaming v akciji: Kako kibernetska vaja krepi kibernetsko odpornost podjetja

Miroslav Matijević je vodja upravljanja IT varnosti in avtorizacij v Petrol d.d., Ljubljana. S svojim strokovnim timom ščiti informacijski sistem največje slovenske energetske družbe pred kibernetskimi napadi. Njegova odgovornost vključuje nenehen nadzor varnostnih dogodkov in upravljanje dostopov do informacijskih sistemov podjetja. Poleg tega aktivno optimizira in uvaja mehanizme za preprečevanje kibernetskih vdorov. Miroslav Matijević je velik zagovornik stalnega ozaveščanja uporabnikov, saj verjame, da so lahko najšibkejši ali najmočnejši člen v verigi informacijske varnosti.
Nastja Cepak
Predavanje:
Prihodnost digitalne varnosti: Prehod na post-kvantno kriptografijo
Nastja Cepak je leta 2018 zaključila doktorat iz kriptografije na Univerzi na Primorskem, Famnit, s poudarkom na simetrični kriptografiji, bločnih šifrah in visoko nelinearnih Boolovih funkcijah. Čeprav je še vedno delno zaposlena na Univerzi na Primorskem, v zadnjih letih svoje teoretično znanje prenaša v prakso v podjetju CREAPLUS v Ljubljani. Tam se ukvarja s strojnimi kriptografskimi rešitvami, kot so strojni varnostni moduli (HSM), infrastrukture javnih ključev (PKI) in šifrirne rešitve. V zadnjih letih se njena ekipa osredotoča na novo nastajajoče standarde post-kvantne kriptografije. Posebej jih zanimajo razni primeri uporabe, v katerih bo prehod na PQC zahteval različne prilagoditve.
Paul Coggin
Predavanje:
Ignition Under Fire: Exploring Cybersecurity Attack Vectors in Rocket Propulsion

Paul is a Cyber SME at nou Systems, Inc. His expertise includes space systems, service provider, and ICS/SCADA network infrastructure attacks and defenses, as well as large complex network design and implementation. Paul is experienced in leading network architecture reviews, vulnerability analysis, and penetration testing engagements for service provider, enterprise, space systems and tactical networks. Paul is a regular instructor at international conferences teaching networking, hacking and forensics courses. He has a BS in Math\Computer Science, a MS in Space Systems, a MS in Systems Management, a MS in Information Assurance and Security and a MS in Computer Information Systems. In addition, he holds numerous industry network and security certifications.
Ranjeet Ambarte
Predavanje:
Insider Threats

Ranjeet Ambarte is a well-known Ethical Hacker and Cyber Security Specialist having 10 + years of experience by serving different kind of services to International Clients, Government Agencies, Defence Services, Top Educational Institutions, Corporate Companies and so on. He has a Bachelor’s of Engineering degree in Information Technology and he is Certified Ethical Hacker as well. He assists people on online fraud and social media attacks.
Riccardo Cervelli
Predavanje:
Password management in operating systems

Riccardo Cervelli has an ITIS specialization in Industrial Informatics, one in Electronics and Telecommunications and a degree in Computer Engineering.
Cisco instructor, EUCIP certified, sector expert in the Tuscany Region and for the Regional School Office, teaches at high school, in post-diploma courses (including ITS and IFTS).
He has been working as a freelancer since the nineties, also as a CTP and CTU in computer investigations.
He has held over 100 training and refresher courses for staff in schools, universities and companies.
He has written several articles in specialized magazines and computer books.
He holds the position of Coordinator of the Department of IT Disciplines, tutor for orientation and Instrumental Function for "Support for Teaching in relation to the territory and Professional Technical Centre" in the school where he is a permanent teacher.
Sozon Leventopoulos
Predavanje:
Undersea Infrastructures - The New Cyber Frontier

Sozon Leventopoulos is a seasoned cybersecurity professional and researcher with over 30 years of experience, including a distinguished military career. He holds a master’s degree in Cybersecurity and Critical Infrastructure Protection and is pursuing a PhD in Cybersecurity and Cyberdefense at the Athens University of Economics and Business, where he also serves as a researcher and educator. Leveraging his expertise as a Cyber Warfare expert at ZONOS SYSTEMS CONSULTING, he specializes in designing innovative cybersecurity solutions for critical infrastructures, supported by high-profile certifications such as CISSP, C|CISO, and CASP+.
Tudor Damian
Predavanje:
Cybersecurity in the Era of AI and Quantum Computing

An IT consultant with more than 20 years of industry experience, Tudor is a Certified Ethical Hacker, and a Microsoft Cloud and Datacenter Management MVP. His commitment to staying at the forefront of technology trends enables him to provide valuable guidance and support to organizations seeking to navigate the ever-changing IT landscape.
His passion for sharing knowledge and engaging with the community has made him a regular speaker at local and regional community events. His speaking engagements provide valuable insights and guidance to IT industry professionals and enthusiasts.
Uroš Babić
Predavanje:
From Zero to Hero with Microsoft Defender for Identity (MDI)

As a Security Team Lead at Crayon and a Microsoft Security MVP, with over 20 years of experience in cybersecurity, Uros is committed to empowering customers with top-notch security solutions and practices. His mission extends to educating and inspiring the next wave of cybersecurity and cloud security professionals, contributing actively to the Microsoft community. Uros thrives on learning new technologies, tackling intricate challenges, and fostering collaboration among industry experts to exchange knowledge and experiences.
Recognized as a Microsoft Security MVP in Cloud Security and SIEM & XDR categories, Uros is devoted to sharing his expertise within the Microsoft Tech community.