​Join us for an evening of deep-dive technical talks and networking at the Ocado Technology offices in Poblenou. We’re bringing together the local AppSec community to tackle two of the most pressing challenges in modern security: Software Supply Chain integrity and the reality of enterprise tool selection.

​🛡️ The Presentations

​1. Understanding Software Supply Chain: What it is and best practices to keep it secure

• ​Speaker: Julio Vargas, Head of Solutions Engineering at Xygeni.

• ​The Gist: An essential primer on SSC. We’ll cover why it’s the current "hot" attack vector, explore maturity frameworks, and walk through actionable best practices to keep your pipeline secure.

​2. Evaluating security tools in practice: Objectives, methodology, and real-world challenges

• ​Speaker: Fabio Giangrande, Senior Application Security Engineer at Ocado Technology.

• ​The Gist: We’ll get a "behind the scenes" look at how Ocado evaluates Software Composition Analysis (SCA) tools while focusing on reachability analysis, architectural fit, and the trade-offs required to reduce noise in a massive enterprise environment.

​📅 Agenda

• ​18:00: Doors Open

• ​18:45: Welcome & OWASP Barcelona Introduction

• ​18:50: Xygeni - Software Supply Chain Security

• ​19:25: Ocado Technology - Evaluating Security Tools in Practice

• ​20:00+: Networking, Food & Drinks (sponsored by Ocado Technology)

​📍 Logistics & Important Notes

• ​Location: Ocado Technology (Carrer de Badajoz, 112, Barcelona).

• ​Language: Both talks will be delivered in English.

• ​Attendance: This is an on-site only event. There will be no recording or livestream.

• ​RSVPs: Required. To ensure seamless building security access and to help us coordinate catering, please make sure to register in advance. Entry will be granted based on the attendee list.

• ​Code of Conduct: We follow the OWASP Code of Conduct.

​Ocado Technology is generously providing food and drinks for the networking session following the talks. Come for the knowledge, stay for the community!