You Are Not Netflix: How to learn from conference talks
Rami McCarthy
fwd:cloudsec North America 2025 · Day 2 · Track 2 - Crestone
Rami McCarthy, a security researcher at **Wiz**, delivered a meta-talk about how security practitioners should critically evaluate conference presentations to extract genuine value rather than blindly copying architectures, tools, and approaches that may not fit their organizations. The talk's thesis is that public security information — whether conference talks, blog posts, or social media — is always partial, shaped by organizational constraints, contractual obligations, social incentives, and time limitations. McCarthy argues that practitioners should come to conferences with specific problems to solve rather than treating talks as a buffet of things to build, and that speakers should provide more organizational context about why they made the choices they did.
AI review
A meta-talk about how to critically evaluate conference talks. The thesis is correct — speakers omit context, conference advice often does not apply to your organization, Netflix's architecture is not for you. But it is an awareness talk with no technical substance, no tools, and no new research. The message could be a blog post.