Workshop: Security Architecture in Practice
Stanislav Klevtsov, Security Engineering Lead at Creatio, 11+ years of experience in information security: from the Armed Forces of Ukraine to building security processes in global SaaS products.
In 2026, knowing the OWASP Top 10 is no longer enough to think like a Senior Engineer or Architect. Real expertise begins when you don't just fix vulnerabilities after a pentest, but design systems so that entire classes of attacks are impossible.
In this workshop, you will analyze real-world attack scenarios on web and SaaS systems and see how to move from individual bugs found to secure architectural solutions.
You will see how Senior / Architect thinking changes the approach to security: from reactive "patching holes" to Secure by Design — designing systems that take risks into account from the very beginning.
- After the workshop, you will:
Who will be interested?
- Senior Software Engineers
- Backend / Full-stack developers
- DevOps / Platform engineers
- Security engineers
- TechLeads
- Software Architects
Format:
Date and time:
Theory and practice: 50/50, before the start we will send you a selection of materials to familiarize yourself with key concepts. There will be homework to consolidate the material and understand the concepts.
Platform: Zoom. You will receive a link to the broadcast on the eve of the workshop, and it will also be available on this landing page. In addition, all materials and lecture recordings will be available on the learning platform.
Language of the event and presentations: Ukrainian
Program
1. Offensive View: How systems are really broken
- Analysis of typical web and SaaS attack scenarios.
- Where exactly in the architecture do critical vulnerabilities arise (at the code and infrastructure levels).
- Why do developers repeat the same mistakes over and over again.
2. Root cause: Why scanners don't save
- Why implementing SAST/DAST doesn't solve the problem systematically.
- Analysis of typical security anti-patterns in architecture (using real-world examples).
3. Threat Modeling: Design through the eyes of a hacker
- Practical exercise: how to model threats at the stage of drawing diagrams.
- How to integrate the attacker's mindset into the process of making technical decisions.
4. Security Architecture Patterns (Defensive View)
- From patching holes to "Secure by design".
- Segmentation, isolation, trust boundaries (trust zones).
- How to turn found vulnerabilities into fundamental architectural solutions.
5. Business and trade-offs: How a Senior/Architect makes decisions
- Balance between security, system complexity and delivery speed (Time-to-market).
- Typical mistakes teams make when assessing risks.
- How to argue the need for security refactoring to the business.
6. Security as part of SDLC
- Where and how to painlessly integrate security checks into the development pipeline.
- How to systematically work with pentest findings so that they do not turn into endless tech debt.
Ментор: Станіслав Клевцов
— Security Engineering Lead у Creatio
— 11+ років досвіду в інформаційній безпеці: від ЗСУ до побудови security-процесів у глобальних SaaS-продуктах.
— Допоміг закрити enterprise-угоди на суму понад $2M завдяки вибудові risk-resilient архітектури та проходженню аудитів SOC 2 та ISO 27001.
— Сертифікації: Cybersecurity For Business, Application Security (OWASP), Microsoft Azure Security, Offensive Security Penetration Professional (course).
— Співавтор National Cybersecurity Guidelines для ЗСУ (mil.gov.ua).
— Naval Postgraduate School (Monterey, US), Postgraduate Degree, Cyber Security Defence. UCU Business School (LvBS), Leadership & Management, 4-month leadership program.
Event price
Access to online course sessions
Access to course recordings for a year
Presentations
Access to TG chat, where the speaker will answer questions
Participant certificate (subject to passing the test)
Free month in Fwdays Club for those who receive a certificate
10% discount on participation in Fwdays conferences
If after the first lesson you realize that your expectations do not match, we will refund your money in full.