Sharon Ohayon Pshoul
Iggy
Michael Goberman
Think you know what your GitHub Actions are doing? Think again. This talk breaks down GitHub Actions security risks, exposes real-world exploits, and reveals hidden threats. We’ll compare existing security tools and introduce a new one to help secure workflows and detect vulnerabilities.
Sharon Ohayon Pshoul
Axonius, Product Security Architect and Team Leader
I’m a security architect and team leader at Axonius, and a board member of the OWASP Israel chapter. I lead cross-functional security initiatives and support teams in building secure, scalable systems. Before stepping into architecture, I spent seven years in hands-on penetration testing, which gave me a strong foundation in understanding how real-world threats work—and how to approach them effectively. I’m passionate about bridging the gap between security and development, making security more approachable, and creating space for curiosity, collaboration, and continuous learning.
Iggy
Axonius, Security Engineer
I'm Igor Stepansky, a Product Security Engineer at Axonius for more than 3 years with a background as a cybersecurity analyst. My expertise includes integrating security solutions such as SAST, IaC, SCA, secrets detection, malicious package identification, and more. I'm also responsible for penetration testing, securing cloud and Docker environments, GitHub hardening, and building cool tools to enhance security workflows. I'm passionate about sharing practical knowledge and insights gained from working with diverse security solutions in a modern enterprise environment like Axonius.
Michael Goberman
Director of Product Security at Axonius
