Joined the identity and access management session on a colleague's recommendation. The hands-on lab component made abstract concepts tangible. The Q&A at the end was just as valuable as the main presentation. Particularly useful from an implementation standpoint. This directly addresses a gap we've been trying to fill.

Made it to the session on ICS/SCADA security fundamentals. The speaker clearly has years of field experience and it shows. The threat modeling walkthrough was particularly eye-opening. This is exactly the kind of practical content our industry needs more of.

The session on red teaming vs blue teaming caught my attention from the agenda. The case studies from actual engagements added real credibility. The before-and-after configuration examples were very instructive. Inspired me to pursue deeper study in this area.

The privilege escalation prevention session was the one I was most looking forward to. The architecture diagrams made the network flows crystal clear.

Sat in on the TLS/SSL configuration hardening discussion. The architecture diagrams made the network flows crystal clear. The hands-on lab component made abstract concepts tangible. Going to revisit our runbooks based on what I learned here.

Had high expectations for the SD-WAN security considerations talk and they were met. Appreciated that both offensive and defensive perspectives were covered. Technical accuracy was on point — no hand-waving or oversimplification.

Caught the talk on TLS/SSL configuration hardening and glad I did. Loved the live demo portion — it brought the concepts to life. The comparison of different frameworks was extremely helpful.

Made it to the session on DevSecOps implementation. The speaker shared lessons learned from real incidents, which is rare. The structured methodology presented is something I can take back to my org immediately. Already shared the key points with my team.

The network access control and 802.1X presentation was a highlight of the event. Technical accuracy was on point — no hand-waving or oversimplification. Particularly useful for integrating security into CI/CD pipelines. Already shared the key points with my team.

Signed up specifically for the code review for security vulnerabilities session. The speaker clearly has years of field experience and it shows. The speaker didn't shy away from discussing failure cases, which added authenticity. This is exactly the kind of practical content our industry needs more of.