Building Secure AI and Identity-Aware Platforms
Details
We’re excited to announce the second edition of Cloud Native Platform NL.
Join us on Wednesday, July 15, 2026 at Wibautstraat 200, Amsterdam, for an evening of practical talks, good conversations, pizza, and drinks with the fellow platform engineers and cloud-native enthusiasts.
This edition focuses on two themes that are becoming increasingly important for modern engineering teams: securing AI systems in production and microservice architecture modernization with authorization and access management.
Talk 1: How to Secure & Optimize Your RAG pipelines with Fine Grained Authorization
It’s time for Day 2 Ops in the world of AI.
Building enterprise-ready AI poses challenges around data security, scalability, and integration, especially in compliance-regulated industries. The primary mitigation strategy is to build guardrails around Retrieval-Augmented Generation (RAG) to safeguard data while also optimizing query response efficiency.
This session will cover how modern permissions systems can safeguard sensitive data in RAG pipelines. We'll start with why Authorization is critical for RAG pipelines to protect sensitive data from potential vulnerabilities and also the various techniques for permissions-aware data retrieval including prefiltering, and post-filtering vector databases. The principles in this talk can also be used to apply authorization for AI Agents.
The talk will also include a practical demo implementing fine-grained authorization for RAG using Pinecone, Langchain, OpenAI, and SpiceDB.
About the speaker:
Sohan is a Lead Developer Advocate at AuthZed, based in the Netherlands. He started his career as a developer building mobile apps and has been living in the cloud since 2013, in companies such as Amazon, Fermyon and Gupshup. He is also an O' Reilly author, having created a course on Cloud Concepts for Everyone. He has always been interested in emerging technologies and how it shapes the world around us.
Talk 2: Where architecture modernization and Identity & Access Management meet
This talk dives into the messy reality of evolving monolithic software systems and tackling the headaches of monolithic authorization. We’ll explore why software design mirrors team organization, map out where to strategically "cut" your system, and demystify the growing complexity of modern standards like OAuth 2.1. You'll get a practical look at using OidcProxy.Net as an identity-aware reverse proxy to handle sessions and secure user data, alongside a showcase of how Entrypage.io offers an easier, more affordable approach to B2B auth.
About the speaker:
Albert Starreveld is a hands-on software architect, digital transformation consultant, and startup founder based in Utrecht. He specializes in guiding organizations through complex Agile/DevOps transitions, microservices migrations, and cloud-ready architectures. As a passionate security and identity advocate, he created OidcProxy.Net, an open-source tool with over 100,000 downloads used by companies like Mercedes-Benz. Currently, he is building Entrypage.io, a modern Identity-as-a-Service platform designed to simplify enterprise authentication and B2B access control.
Who should attend?
- Platform engineers
- DevOps engineers
- SREs
- Cloud architects
- Engineering managers
- CTOs
- Developers interested in platform engineering and scalable infrastructure
Agenda
- 18:00 Arrival with pizza and drinks
- 18:45 Talks and discussion
- 20:30 Last round of drinks
- 21:00 Building closes
