Vicente Herrera

About me

• Control Plane Principal Consultant, AI & Kubernetes Cybersecurity
• Loyola University Lecturer GenAI, AI Ethics, Blockchain. Master AI and Data Analytics
• ML Author, O'Reilly Building Intelligent Cloud Applications

Active in

• Community Founder Cloud Native Sevilla
• Core Maintainer AI Readiness (FINOS)
• Community Founder AI Safety London
• YouTube channel This is Exponential

Connect with me

• Email: vicenteherrera@vicenteherrera.com
• LinkedIn: linkedin.com/in/vicenteherrera
• More:

Published Author

• 
  Building Intelligent Cloud Applications
  Azure Machine Learning and Serverless Cloud Services
  O'Reilly Media

Personal Blog Posts

• Log4j 2 vulnerability, part III: Prevention, mitigation and fixing
• Log4j 2 vulnerability, part II: Kubernetes POC
• Log4j 2 vulnerability, part I: History
• What is a CVE?
• Introduction to MITRE ATT&CK

External Blog Posts

• Future Open Source LLM Killchains! A Talk by Vicente Herrera
• Bringing light to risks lurking in the black boxes of AI models
• Entrevista a Vicente Herrera: Un todo terreno del mundo IT
• Cloud Infrastructure Entitlements Management (CIEM) with Sysdig Secure
• AWS CIS: Manage cloud security posture on AWS infrastructure
  
• Unified threat detection for AWS cloud and containers CSA AWS
• Preventing malicious use of Weave Scope
  
• SOC 2 compliance for containers and Kubernetes security
  
• NIST 800-53 compliance for containers and Kubernetes
  
• Image scanning for Google Cloud Build
  
• AWS threat detection using CloudTrail and Sysdig Secure
  
• Automate Fargate image scanning AWS
• Securing Tekton pipelines in OpenShift with Sysdig
  
• Protection From Malicious Python Libraries Jeilyfish and Python3-dateutil
  

Open Source

• Fintech Open Source Foundation - AI Readiness (core team)
• Fintech Open Source Foundation - Common Cloud Controls (maintainer)
• psa-checker: Pod Security Standards static checker (creator)
• Falco Workshop virtual machines (creator)
• Falco: Cloud-Native runtime security
• Azure Kubernetes Service audit log Sysdig integration

Participations

• 🔥Coming soon!: Best practices for a multicloud strategy in the context of AI, Quantum Computing and cibersecurity
  Speaker, Digital Enterprise Show, Malaga, 11th June 2025
• Open Source Tools To Empower Ethical and Robust AI Systems
  Speaker, Cloud Native + Kubernetes AI Day, London, 1st April 2025

• 🎬 Future Open Source LLM Killl Chains
  Speaker, Secure AI Summit (CloudNative SecurityCon NA), Seattle, June 2024
  

• 🎬 Bringing light to risks lurking in the black boxes of AI models
  Speaker, State of Open Con 2024, London, February 2024
  

• AI Safety London - Inaugural Talks
  Host, AI Safety London, London, 27 February 2025
• 🎬 RIESGOS.AI : ¿Peligro o evolución para la humanidad? (Spanish)
  Debate, xHubAI, Agosto 2024
• Ejecuta Modelos de IA sin riesgos de seguridad
  Masterclass, Openwebinars, June 2024
• Blockchain: Qué es, y qué soluciona
  Masterclass, Colegio Oficial de Ingenieros Informáticos Andalucía Occidental, May 2024
• 🎬 TESCREAL : El acrónimo de los sueños y pesadillas sobre Inteligencia Artificial (Spanish)
  Debate, xHubAI, April 2024
• 🎬 Seguridad AI: ¿Es la era de la Inteligencia Artificial segura para la Humanidad? (Spanish)
  Interview, xHubAI, March 2024
• Evita crear a Skynet: inteligencia artificial segura y justa
  Speaker, IA Generativa Sevilla, Sevilla, January 2024
• 🎬 Advanced EKS Networking (Spanish)
  Speaker, Kubernetes Community Days Spain, December 2023
• Navegando por el Nuevo Horizonte: Inteligencia Artificial, Oportunidades de Negocio y Riesgos Asociados
  Speaker, Foro Internacional Visiones Comerciales Globales, Universidad Nacional Mayor San Marcos, November 2023
• 🎬 Minikube flash talk (Spanish)
  Founder, Speaker, Cloud Native Sevilla, November 2023
• 🎬 Presentación comunidad Cloud Native Sevilla (Spanish)
  Founder, Speaker, Cloud Native Sevilla, October 2023
• Nuevas oportunidades de negocio en la IA
  Speaker, Cudacu, May 2023
• Historia de la vulnerabilidad Log4j
  Speaker, ESOLIUPO, March 2023
• Seguridad de cero a cien con containers y Kubernetes
  Speaker, Full Stack Sevilla, March 2023
• 🎬 Pod Security Standards and Admission (Spanish)
  Speaker, Cloud App Developers, December 2023
• 📻 Ecosistema Profesional - Inteligencia Artificial (Spanish)
  Expert guest, Giralda FM Radio, July 2022
• 📻 Ecosistema Profesional - Metaverso (Spanish)
  Expert guest, Giralda FM Radio, June 2022
• Startup Weekend Sevilla 2021
  Mentor, SevillaUp & Techstars, 2021
• Containers and Kubernetes Security
  Speaker, InnoSoft Days - University of Seville, 2021
• Cloud Native Compliance and Benchmarks
  Speaker, Cloud Native Days with Kubernetes, 2021
• 🎬 Detecting cryptomining with Falco (Spanish)
  Speaker, Kubernetes Community Days Spain, 2021
• From DevOps to DevSecOps
  Speaker, CodeMotion, 2020
• 🎬 Detecting Anomalous Activity in Rancher with Falco
  Speaker, Kubernetes Master Class, Rancher Labs, 2020
• Bins in the cage Falco is watching
  Speaker, BSides Berlin, 2020
• 🎬 Falco kernel and Kubernetes security (Spanish)
  Speaker, HackMadrid 2020
• 🎬 Azure serverless for data intelligence (Spanish)
  Speaker, Seville DataBeers, 2019
• Introduction to project management with Scrum
  Speaker, University of Seville, 2017
• Startup Weekend Sevilla Videogames 2016
  Mentor, SevillaUp & Techstars, 2016
• GesProSev: Seville Project Management group
  Founder and regular speaker, 2016 to 2019
• Manage yourself as a team
  Speaker, Sevilla Developers Conference 2º Edition, 2016
• Cómo hacer una web en dos horas a coste cero
  Teacher, Espacio Coworking Colaborando, 2014
• Startup Weekend Sevilla 2013
  Mentor, SevillaUp & Techstars, 2013
• +more

Training

• 🎬 Falco course: Runtime security on hosts, containers, Kubernetes and cloud (Spanish)
• Kubernetes tutorial: Azure, Terraform, Key Vault, Helm, Skaffold, Prometheus and Grafana
• Web development: HTML, CSS, responsive web design, Bootstrap, JavaScript and PHP (Spanish)