Home GOTO Experts Laurentiu Spilcă...

Laurentiu Spilcă

Java Community Lead at Endava

Laurentiu Spilca is a dedicated development lead and trainer at Endava, where he leads the development of a project in the financial market of European Nordic countries. He has over nine years of experience. Previously, he was a software developer building one of the biggest ERP solutions with worldwide installations. Laurentiu believes it’s important to not only deliver high-quality software but also share knowledge and help others to up-skill, which has driven him to design and teach courses related to Java technologies and deliver presentations and workshops. Outside of work, Laurentiu is passionate about traveling and scuba diving.

Upcoming conference sessions featuring Laurentiu Spilcă

Security Is No Longer For Security Teams. It's For Everyone

This session provides a practical overview of the essential security knowledge every software engineer should have. From cryptography fundamentals and authentication models to secure communication and common vulnerability classes, the talk explores how security connects directly to everyday engineering decisions.

Key Takeaways

  • Understand the core concepts behind cryptography, including hashing, encryption, signatures, and key management
  • Correctly distinguish authentication, authorization, and identity in system design
  • Recognize common vulnerability classes and why they repeatedly appear in modern applications
  • Apply secure communication practices using TLS and mutual TLS
  • Integrate security practices into everyday development workflows including CI/CD and code review

Who Is This For?

  • Developers building modern applications and APIs
  • Engineers responsible for system architecture or platform development
  • Teams integrating security into development workflows

Level

Beginner to practitioner No prior security expertise required.

What This Session Covers

  • Cryptography fundamentals for developers
  • Authentication and authorization models
  • Secure communication with TLS
  • Common application vulnerabilities
  • Practical security standards (OWASP, NIST, CIS)
  • Integrating security into modern development pipelines

What It's Not

Not a deep dive into cryptographic algorithms Not a penetration testing workshop

Full Description

Security is now a core engineering skill, not a niche specialization. Modern developers are expected to understand not only how to build systems, but how to build them securely.

This talk provides a practical, developer-oriented overview of the essential security knowledge every engineer should possess: core cryptography concepts, authentication and authorization models, secure communication with TLS, common vulnerability classes, relevant standards, and secure ways of working in real teams and pipelines.

This session emphasizes how security applies to everyday development decisions, from API design and key management to CI/CD integration and code reviews. The goal is to equip developers with a solid security foundation that improves both code quality and system resilience.

Attendees will leave with a clear mental map of modern application security and concrete guidance they can immediately apply in their daily work.

Thursday Oct 1 @ 15:45 @ GOTO Copenhagen 2026

Get conference pass

Browse all experts

Here