Wednesday
Room 3
10:20 - 11:20
(UTC+01)
Talk (60 min)
MITRE ATT&CK for Developers
While OWASP has become the gold standard for application security, the MITRE ATT&CK framework offers developers a powerful complementary perspective for building truly defensible applications.
This session bridges the gap between threat intelligence and practical development, showing how to apply adversarial thinking to your code.
OWASP focuses on vulnerabilities, but MITRE ATT&CK focuses on adversary behavior. While OWASP tells you what can go wrong, ATT&CK tells you what attackers actually do. This combination creates more robust, defendable applications that can withstand sophisticated attacks.
We'll explore practical applications of ATT&CK techniques in development scenarios.
Perfect for developers who want to elevate their security mindset beyond traditional vulnerability scanning, security engineers working with development teams, and anyone building systems that need to withstand sophisticated, persistent attacks.
Chris Ayers
Chris Ayers is a Senior Software Engineer at Microsoft, where he builds AI-driven tooling to analyze outages and incidents across Azure. His work focuses on improving the way engineers understand failures, uncover risks, and strengthen reliability at cloud scale.
With a background spanning DevOps, cloud architecture, and modern application design, Chris brings both engineering depth and practical experience to the challenge of making large systems more resilient. He’s also a frequent international speaker who loves sharing real-world lessons about developer productivity, reliability, containers, and automation.
Outside of work, Chris is a proud dad, lifelong gamer, avid reader, and unapologetic nerd.