Ortelius Events and Resources

Join a Meeting or an Event, download logos and Zoom backgrounds

Job Seekers Webinar Series Episode 2 On-demand

View Now

Previous Episodes:

Episode 1 - View Now Building Your LinkedIn Personal Brand to Get Noticed, Presented by Darrin Straff, CareerStation

Secrets Unveiled

How Employers Find (and Hire) Top Talent

A panel discussion with Erin Lovern and Buffi Gresh

This panel discussion brings together two experienced technical recruiters who will share insights into how they leverage LinkedIn to identify and connect with top talent. They will reveal the strategies they use to search for candidates, what makes a profile stand out, and the common red flags they encounter.

For job seekers, the panelists will provide practical tips on networking effectively, the importance of LinkedIn, and applying for jobs in a way that captures recruiters’ attention. They will also discuss the do’s and don’ts of job applications, including how to navigate applicant tracking systems (ATS) and tailor applications for maximum visibility.

This interactive session will provide attendees with actionable advice to enhance their job search or recruitment process, bridging the gap between hiring managers and candidates in the digital age.

About the Presenters:
Erin Lovern is CEO and Founder of Grove Talent Group. Erin has extensive experience leading exponential growth within technology companies, both pre and post IPO. She brings a passion for helping organizations leverage talent acquisition as a competitive advantage by using a data-driven approach to hiring, eliminating biases through the development of core competencies and success measures to build the strongest, most inclusive teams possible.

Buffi Gresh is Chief of Staff, VP Global Business Operatons for Ensono. Buffi is a DevOps Leader, speaker working with hyper-growth companies on Business Value Modeling, Enablement, Thought Leadership, Business Development and Product GTM. Buffi has an MS Degree in Computer Science - Lehigh University / BS Physics & Mathematics / MSFT Certification / Cloud Certification

SecureChainCon, May 16th, 2025

Level Up Your Security Skills

Welcome to SecureChainCon, the premier online micro-conference for DevOps and Security professionals, proudly hosted by the Ortelius open-source community!

Get ready for a half-day of engaging sessions, hands-on workshops, and invaluable learning experiences designed to keep you ahead in the fast-paced world of software security and DevOps automation. Our lineup of expert speakers from top organizations will share their insights, best practices, and real-world case studies on seamlessly integrating security into DevOps workflows.

From secure coding practices and container security to supply chain management and threat modeling, our sessions cover a broad spectrum of topics tailored to DevSecOps professionals at all levels. Whether you’re a seasoned expert or just starting your DevSecOps journey, there’s something for you at SecureChainCon.

Join us on May 16th for this dynamic online knowledge exchange and take your DevSecOps skills to the next level!

Keynotes

Tracy Bannon
#NoHobbyists – What’s Really Needed to Shift CyberSecurity?

Cybersecurity in software development is often treated as an afterthought, left to developers who must self-educate and experiment in their spare time. The #NoHobbyists movement challenges this status quo, advocating for a fundamental shift where cybersecurity is not a side project but a core discipline, fully integrated throughout the Software Development Lifecycle (SDLC). This presentation outlines a holistic approach to embedding security across people, process, technology, and culture. Instead of merely shifting security “left” in the SDLC, the proposal argues for shifting security everywhere, making it an inherent responsibility for all stakeholders, from developers to executives. Key strategies include the adoption of the Secure Software Development Framework (SSDF), threat modeling as a collaborative practice, and leveraging industry best practices such as OWASP, NIST SP 800-218, and secure coding standards. @tracylbannon

John Willis
AI-Powered Code Parsing and Semantic Analysis for DevOps Pipelines

As software development ecosystems grow increasingly complex, the need for intelligent DevOps automation in script analysis and dependency management becomes critical. Join Jon Willis as he explores cutting-edge tools and techniques that leverage AI-driven code parsing and semantic analysis to enhance DevOps workflows. He will discuss the application of Large Language Models (LLMs) such as GPT-4, CodeBERT, and OpenAI Codex in parsing infrastructure and automation scripts, including Jenkinsfile, Dockerfile, Makefile, GitHub Actions, and Terraform. These models facilitate the identification of dependency installations (e.g., apt-get install, pip install, npm install) and pinpoint update points within scripts. @Botchagalupe

Key Takeaways/Why attend this one:

Security in the DevOps Pipeline Discover the critical role of integrating security tooling within the DevOps pipeline to proactively identify and remediate vulnerabilities from code to cloud.
Vulnerability Management Master strategies for controlling vulnerabilities, including SAST, DAST, SBOMs, and continuous vulnerability scanning. Learn how to automate compliance checks and policy enforcement to enhance efficiency and consistency.
Culture of Collaboration Understand the importance of fostering a culture of shared responsibility between development, operations, and security teams to successfully implement DevSecOps best practices.
Threat Intelligence & Risk Management Explore how to leverage threat intelligence and risk management frameworks to prioritize security efforts, allocate resources effectively, and mitigate emerging threats before they escalate.

More Info

CDCon and Open Source Summit - Denver June 23-25

Let's Get Together in Denver for CDCon

It is time to meet in person.

Open Source Summit is the premier event for open source developers, technologists, and community leaders to collaborate, share information, solve problems, and gain knowledge, furthering open source innovation and ensuring a sustainable open source ecosystem. It is the gathering place for open-source code and community contributors.

Open Source Summit is a conference umbrella, composed of a collection of events covering the most important technologies, topics, and issues affecting open source today including CDCon where DevOps is explored and improved.

Attend

Why you should attend:

A place for our contributors to meet face-to-face for problem-solving, discussions and collaboration
Share knowledge around latest trends in open source
Meet the experts to learn how to navigate the complex open source environment
Learn how others have built their career around open-source development

Community Meetings

Attend a meeting to keep up to date, or to get started as a contributor. We look forward to your help and input on the Ortelius project:

Ortelius General Community Meeting – this monthly meeting is an ‘all hands’ meeting giving the everyone an opportunity to share their progress. This is a good meeting for new contributors to meet the teams and hear what’s up.
Ortelius Architecture Meeting – This group is driven to help define the future roadmap of Ortelius and Emporous including a global evidence store for sharing security profiles, SBOMs, open-source libraries, with historical data.
Ortelius Outreach Meeting – This group helps drive adoption and messaging of the Ortelius platform.