2026-05-08 –, IFEN room 1, Workshops and Detection Engineering village (Building D)
The purpose of this panel is discuss where the participants see the still-young, still-emergent discipline of Detection Engineering going.
The tools and know-how presented over the last 2 days in the village will be pitted against ideas from Diana (moderator) and the audience.
The panelists will try to explore together how the detection engineering landscape might evolve over the next few years,
Panel discussion with leading Detection Engineering experts:
- Ondrej Nekovar: Ondrej and the Boss have released innovative tooling and know-how on how to do detection engineering in 2026 in their talk - see 'CT(C)I-Driven detection against internal and external threats'
- Andrii Bezverkhyi: Found of SOCPrime, multiple innovative open-source tool releaser latest 'DetectFlow' which enables detection engineering at the end of your pipeline before SIEM ingestion
- Remi Seguy: Runs and operates the OpenTide project, which is a one-stop-shop for detection engineering teams and integrates with CTI and offensive teams + enables Multi-SOC collaboration
Diana Waithanji believes data privacy is a human right. She works as a cybersecurity professional at SAP specifically SAP Cloud Infrastructure in Germany. She is a TechWomen USA fellow 2025 at Google and an AFRIKA KOMMT Germany alumni 2022. Diana sits in two technical committees at the Kenya Bureau of Standards (KEBS) and serves as a board member at Nivishe Foundation. Diana is also a founder of Wahandisi La Femme, an initiative that mentors girls in rural Kenya to get into tech and engineering.
Ondrej Nekovar is an experienced executive manager responsible for the cyber security of critical information infrastructure and the state. His areas of expertise include research into the use of advanced technologies for active cyber defense, deception, detection engineering and cyber counterintelligence.
LinkedIn profile:
https://www.linkedin.com/in/onekovar/
With over 20+ years in the cybersecurity field, I have dedicated my career to safeguarding organisations by developing robust SOC and effective incident response teams. As a passionate advocate for knowledge sharing and collaboration - "sharing is caring"- I have actively contributed to the cybersecurity community and related open-source projects, such as MISP. In my current role, I have led the OpenTide initiative, turning it into a project at the core of the Detection Engineering team. I am looking for exchanging and collaborating with other Detection Engineering teams to develop repeatable, traceable, and pragmatic processes, effectively bridging the gap between Threat Intelligence, Threat Hunting, and Threat Detection.
I am a successful entrepreneur with cyber security, hardware and AI as my hobbies and work specialties. Did my first blue team cyber gig in 2001, founded SOC Prime in 2014 together with Alex and Ruslan, which we've built from a small rented apartment in Kyiv to venture backed profitable company which operates across 4 continents, who's products and content are used by over 11,000 organisations. In cyber domain I am specializing in threat detection, sigma rules, MITRE ATT&CK, detection engineering and cyber threat intelligence, with a goal to build better tools for people who work in same niche. I consider two most successful contributions to such community projects Uncoder and DetectFlow which both can be found on GitHub.