Alyssa Miller

Business Information Security Officer - Standard & Poor Global Ratings

A life-long hacker and highly experienced security executive, Alyssa Miller has a passion for security which she advocates to fellow business leaders and industry audiences both as a high-level cyber security professional and through her presence in the security community. She blends a unique mix of technical expertise and executive experience to bridge the gap that can often form between security practitioners and business leaders. Her goal is to change the way we look at the security of our interconnected way of life and focus attention on defending privacy and cultivating trust.

Alyssa has always had a driving curiosity to understand how technology works and how existing technologies can be hacked to function in new ways. At the young age of 12, Alyssa got her start by taking a job as a paper carrier to save up enough money to buy her first computer. From the time she brought that computer home from Best Buy, she has taught herself new skills and pushed the capabilities of digital technologies.

A native of Milwaukee, Alyssa began her IT career as a programmer for a Wisconsin based provider of financial software and services. Her passion for security quickly shaped her career as she moved into a leadership role within the ethical hacking team, conducting penetration testing and application assessments along with her team.

Later, Alyssa would expand her view of the security industry by moving into consulting. With her programming background, Alyssa was able to focus her efforts on Application Security. Her continued role as a leader in multiple consulting organizations allowed her to work with high level business leaders to address security at a strategic level.

Today, Alyssa directs the security strategy for S&P Global Ratings as Business Information Security Officer (BISO), connecting corporate security objectives to business initiatives. Additionally, she shares her message about evolving the way people think about and approach security, privacy and trust through speaking engagements at various conferences and other events. When not engaged in security research and advocacy, she is also an accomplished soccer referee, guitarist and photographer.

Dr. Katie Paxton-Fear

Application Security Engineer - Bugcrowd

Dr Katie Paxton-Fear is an Application Security Engineer at Bugcrowd, a Lecturer and a Security Researcher. Her PhD was titled “Understanding Insider Threats Using Natural Language Processing” and has published her research into insider threats and particularly how to better understand insider threats using a holistic approach. Passionate about education and security she creates video lectures enabling others to grow in security, with over 50 videos and 30,000 subscribers on YouTube in a little over a year. A former developer and data scientist, she finds her success is directly related to being able to understand the technical and human aspects of security.

Gabrielle Botbol

Offensive Security Advisor - Desjardins

Pentester, Cybersecurity Blogger and Podcaster (CyberSecurity by Gabrielle B / CS by GB).Over 8 years of experience in Information Technology, including 3 years as PentesterPassionate about cybersecurity, approaching it in a holistic way encourages me for lifelong learning and sharpens my critical thinking skills.Mindful of everyone's place in society, the promotion of digital security for all and accessibility to digital culture are driving my future.My Mantra : ACTION FOR CYBERPEACE

Rinki Sethi

VP & CISO - Twitter

Award-Winning Leader & ExecutiveExperience leading and developing innovative online security infrastructure for Fortune 500 companies like IBM, PG&E, Walmart.com, and eBay as well as other large companies like Intuit Inc. and Palo Alto Networks. Recognized by CSO Magazine & Executive Women’s Forum with the “One to Watch” award, and in 2010, lead a team at eBay to receive the “Information Security Team of the Year” by SC Magazine.

Natalee Webb

Senior Program Manager - GitHub

Inon Shkedy

Head of Security Research - Traceable AI

Inon has 8 years of experience in application security. He started his career in a red team in a government organization for 5 years, and then moved to the Silicon Valley to learn more about startups, modern applications and APIs. Today he provides consultation to various companies, and leads the research for a startup in the field of API security.

Corey Ball

Author & Sr. Manager - Penetration Testing - Moss Adams

I am a senior manager of penetration testing consulting at Moss Adams. In addition, I am the best selling author of Hacking APIs and winner of the 2022 SANS Difference Makers Award for Book of the Year. In 2022, I helped create the APIsec University and released the API Penetration Testing course.

I have over thirteen years of experience working in IT and cybersecurity across several industries, including aerospace, agribusiness, energy, fintech, government services, and healthcare. In addition to a bachelor’s degree in English and philosophy from Sacramento State University, I hold the OSCP, CCISO, CEH, CISA, CISM, CRISC, and CGEIT industry certifications. I have had the pleasure of being the technical editor of the Kali Linux Pentest Bible (Wiley) and Black Hat GraphQL (No Starch Press).

Harish Kumar

Professional Cloud Architect - Google Cloud

Harish Kumar has over 10 year of experience working in API and Integration space,Led data integration projects at companies. Spearheaded critical customer engagements for early technology adopters, enterprise data warehouses, application migration and consolidation. For the last 3 years working at Google and helping customers implement the best API strategy with the latest and greatest technologies provided by Google Cloud.

Vaishali Nagori

Security Researcher - Appknox

Jeff Crume

Distinguished Engineer, CTO IBM Security - IBM

I am a technical executive with a PhD in Cybersecurity and a focus on security architecture for external clients.
- YouTube videos on cybersecurity with more than 3 million views
- Author of "Inside Internet Security: What Hackers Don't Want You to Know" (Addison-Wesley)
- Member of the inaugural class of the NC State University Computer Science Alumni Hall of Fame
- Contributing author to the "Information Security Management Handbook" Sixth Edition, Volume 7 (Auerbach)
- IBM Master Inventor
- Served on international assignment in Beijing
- Served as member of the NC State University Computer Science Strategic Advisory Board
- Member of the IBM Academy of Technology
- Presented at more than 100 conferences/seminars
- Over 40 years' experience in the IT industry
- Published articles on cryptography, virtual private networking, identity management, LDAP, password security and network security
- Served on editorial board for the "Information Management & Computer Security" research journal, NC State Univ Cyberlaw board, program committee for the International Network Conference
- Experience in software development as a programmer, designer and project leader
- Extensive experience in pre-sales consultative selling, security architecture development and vision setting
- Worked with clients in more than 40 countries across 6 continents

David Sopas

COO - Char49

David Sopas is a security researcher with over 15 years of experience in intrusion testing and vulnerability research. Passionate about sharing knowledge and inspiring others, David has presented at events such as DEF CON, BSides, C-Days, Oposec among others. He recently contributed to the initial draft of projects like the Go-SCP and the OWASP API Security TOP10.

Gary Hayslip

Global CISO for SoftBank Investment Advisers -

Experienced Global Chief Information Security Officer with repeated success delivering innovative security programs to safeguard billion-dollar enterprises at every touchpoint. Intensely focused on driving continuous improvement that maximizes security program efficiency and minimizes costs. An insightful thought leader with proven business acumen and commitment to organizational mission, values, and goals. Demonstrated ability to collaborate at all levels to champion new ideas, gain buy-in, and build consensus. Exceptional communication and public speaking skills; adept at presenting multifaceted security & risk concepts to audiences of varying knowledge levels.

Carolina Ruiz

CEO - Brier & Thorn

John Moehrke

Co-Chair, Security Working Group, Health Level 7 International (HL7) -

Grahame Grieve

Principal - Health Intersections Pty Ltd

Dave DeWalt

Founder & CEO - NightDragon

Paulo Silva

Security Researcher - Char49

Paulo Silva is a Security Researcher with a degree in Computer Sciences. In the last +15 years he has been building software but now he's having fun also breaking it. He's a free and open source enthusiast and a regular OWASP contributor. Apart from IT stuff, you'll find him on his mountain bike mostly doing cross country (XC).

Christine Vanderpool

VP, IT Strategy, Architecture & CISO - Florida Crystals

Experienced Vice President with a demonstrated history of working in Cybersecurity. 2019 Cybersecurity Woman Leader of the Year recipient. Skilled in People Leadership and Development, Cybersecurity, Cyber Technologies, Vendor Management, Enterprise Risk Management, IT Strategy, Management, SAP ERP, and Business Intelligence. Strong professional with a Bachelor of Business Administration (B.B.A.) focused in Business, Management, Marketing, and Related Support Services from The University of New Mexico - Robert O. Anderson School of Management.

Sanjay Nagaraj

Co-Founder and CTO - Traceable AI

Over 20 years of experience as a Senior engineering leader with a proven ability to build and lead global teams to deliver robust and complex enterprise software solutions. Passionate about building and scaling teams from 2 member startup to large scale distributed teams. Entrepreneur at heart with a passion to build and scale products with a customer centric approach.

Robert Wagner

Global Field CISO and Head of Strategy - APIsec

As a passionate cyber security and technology strategist and thought leader, I help companies and sales teams succeed by having customer conversations they can't have on their own. I regularly help sales teams close $75M–$150M by focusing on customer needs. I’m a proactive advocate for clients and collaborate with CROs, Sales VPs, CCOs, and CMOs on GTM strategy. I’m known for delivering high-quality presentations and teaching best-in-class security workshops. I quickly establish trusted partnerships with people at all levels, from C-suite to staff, and novices to experts. I’m respected by the cyber security community, a sought-after highly rated keynote speaker and accomplished podcast host and guest.

There is a magic to having someone like me come in to have the trusted advisor conversation that every company aspires to have with their customers. With extensive experience, I can take the conversation further and discuss what the client really needs to mature their overall security program – beyond the scope of my company’s product. The outcome is successful customers who trust to help them with their overall security program, not just a point solution.

Co-founder of Hack for Kids, a NFP dedicated to teaching kids about internet safety, security, and ethics. Serving on the board of ISSA-Chicago for 10+ years.

Jeff Williams

Founder & CTO - Contrast Security

For over 25 years, my passion has been improving the security of the world's software. I founded three very different but highly successful organizations to help solve the problem.

* Contrast Security (2014) is focused on fully automated application security at the speed and scale of DevOps. We invented a revolutionary technique leveraging dynamic binary instrumentation to assess applications for vulnerabilities *and* prevent vulnerabilities from being exploited. If you called it AppDynamics for security, you wouldn't be too far off.

* Aspect Security (2002) was one of the first consulting firms to focus exclusively on application security. We supported very high profile financials, utilities, government agencies, entertainment, airline, and other industries with manual security code review and penetration testing, hands-on training and eLearning, architecture review and threat modeling, and other services. Aspect was acquired by EY in 2017.

* OWASP (2001) is a worldwide open source application security organization with hundreds of chapters and 50,000 members worldwide. I created the Foundation, set up the Board, started chapters and conferences, and volunteered as Global Chair for 9 years. I also started and led many open-source projects used by millions, including the OWASP Top Ten, WebGoat, ESAPI, ASVS, and XSS Prevention Cheat Sheet.

In the early 1990's, I built high assurance systems for the Navy and taught the INFOSEC curriculum at the NSA during the Orange Book days. Later, I Chaired the Author Group for the SSE-CMM (now ISO 21827). I designed and built a high assurance guard in Java on Trusted Solaris.

Tanya Janca

Founder, CEO, Security Trainer - We Hack Purple Academy

Tanya Janca, also known as SheHacksPurple, is the author of ‘Alice and Bob Learn Application Security’. She is also the head of education and community at Semgrep! As the founder of We Hack Purple, Tanya is bringing her security training to Semgrep customers and beyond. Tanya has been coding and working in IT for over twenty years, won numerous awards, and has been everywhere from startups to public service to tech giants (Microsoft, Adobe, & Nokia). She has worn many hats; startup founder, pentester, CISO, AppSec Engineer, and software developer. She is an award-winning public speaker, active blogger & streamer and has delivered hundreds of talks and trainings on 6 continents. She values diversity, inclusion and kindness, which shines through in her countless initiatives.

Upendra Mardikar

CISO - Snap Finance

“Security is a community sport”

“Solve security as a science and engineering problem. technical problem. Communicate about security as business problem."

A prolific inventor and cyber security & digital identity business-enabler executive with an “art of possible” mindset who led global teams to secure world class organizations and held executive and executive and senior leadership positions at TIAA, American Express, Visa, PayPal and is credited with 99 patents.

Roberto Polli

API Expert & Digital Transformation Department - Italian Government

Transforming public services via API and managing the migration of IT infrastructures to open solutions, I enjoy bleeding edge and new technologies, improving features of opensource projects, to bring social and IT innovation. My experience covers distributed systems design and development.

Ivan Novikov

CEO - Wallarm

API security builder.
Bughunter (Google, Facebook, Twitter).
Master’s in physics.
Blackhat speaker.

Jyoti Bansal

CEO & Co-Founder - Traceable

Jyoti Bansal is a multi-unicorn founder, serial technology entrepreneur and a passionate mentor and investor in the tech space. He is currently the founder and CEO of two high-growth technology companies: Harness, a platform to automate software delivery processes valued at $3.7 billion as of 2022, and Traceable AI — a cybersecurity platform for securing software applications.

Both of these companies reflect Jyoti’s passionate belief that software can change the world for the better and build on the success of his first company, AppDynamics, which was acquired by Cisco for $3.7 billion in 2017. Founded in 2008, AppDynamics is an application intelligence company that provides enterprises with real-time insights into application performance. Jyoti led the company as founder and CEO for the first eight years, and as founder & Chairman for the last year until its acquisition by Cisco.

In addition to running Harness and Traceable, Jyoti is highly involved in developing the next generation of technology companies through mentorship and investment. In 2017 he launched BIG Labs, a startup accelerator aimed at solving extraordinarily difficult technology problems, and in 2018 co-founded VC firm Unusual Ventures with John Vrionis. The firm currently has more than $1 billion under management.

Karl Mattson

Chief Information Security Officer - Noname Security

Karl is a cybersecurity leader and innovator who serves as the CISO for Noname Security. He has over 25 years of experience leading innovative and diverse teams of technology and security professionals in financial services, retail and federal government.Previously, Karl served as the Chief Information Security Officer (CISO) for PennyMac Financial Services and City National Bank. He has a track record of providing CEOs, CTOs, and investors in cybersecurity on strategies for product, market, and customer success.

Megan Bell

CISO - Contra Costa Health Services

Megan Bell is an accomplished cybersecurity, privacy and compliance executive with extensive experience in building and scaling organization and programs for new products, services and cloud-native technologies. This includes addressing high regulatory hurdles, cost-effective programs that grow with an organization, investigations and audting including data breach events, engagement with external parties and regulators, building effective third-party oversight, and recoving from crisis events. She is skilled at translating contracts, regulations and policies for consumption by business leaders and product and engineering teams.

Dan Munro

Author and Forbes Contributor -

Luis Alvarado Day

Associate Manager - Arstar IT

Luis has 20 years of experience in technology and engineering. His main skill is to be able to provide both muscle and vision at all levels of an organization, from the lowest level of engineering (like hardware design) to an strategic-level consultancy for the high management.

After studying System Engineering, he spent his first work years as a Sysadmin and freelance Penetration Tester. In 2005 Luis jumped into the casino gaming technology market achieving the first GLI slot machine certification obtained by a latam based company.

In 2010 he founded his first company mostly focused in Infosec and Software Engineering, servicing Latam, USA and Europe based firms and taking part in the core value chain of 3 of the top 10 world most valuable companies.

Today Luis provides SME level consultancy mostly in Pentesting and Solutions Architecture for several verticals such as Gaming, Localization and Agritech.

In the recent years Luis started to support the Latam startup ecosystem volunteering as a mentor in different government and privately funded programs.