October 20 2022

Speakers

We are updating this page regularly –> please keep checking!

Robert HansenRobert Hansen

Robert is a 27-year veteran in computer security, known to many in the industry by handle “RSnake”. Robert started his career at eBay, where he was responsible for authentication as well as most anti-fraud systems and anti-phishing technologies. His work at eBay was later built into every modern web browser and is now protecting every Internet user as a result. His ha.ckers.org was at one point responsible for a third of all the top-ranked web vulnerabilities.
At SecTheory he hacked into the back ends of over 2,100 banks, credit card processors, flight control systems, SCADA (water and power) control systems, and other security companies. During this time, Robert also built the most secure web application security hosting platform in the world at Falling Rock Networks, surviving over 15 million attacks in 8 years.
Most recently, Robert’s corporate intelligence platform, OutsideIntel, was acquired by Bit Discovery after which he became the CTO. Robert has worked as a floating CISO for multiple companies and sits on advisory boards of multiple technology and security companies such as Arkose Labs. Robert is most recently the host of The RSnake Show.

Robert Hansen became the CTO of Bit Discovery after his company OutsideIntel was acquired. Mr. Hansen has worked for Digital Island, Exodus Communications and Cable & Wireless beginning as a Sr. Security Architect and eventually leading managed security services product management. He also worked at eBay as a Sr. Global Product Manager of Trust and Safety, focusing on anti-phishing, anti-malware and anti-virus. Later he was the VP of Labs for Whitehat Security. Robert currently sits on the technical advisory board of and contributes to the security strategy of several startup companies as a virtual CISO and Innovation Officer. Mr. Hansen ran the web application security lab at ha.ckers.org, and authored/co-authored several books.

Jeff WilliamsJeff Williams

Jeff brings more than 20 years of security leadership experience as co-founder and Chief Technology Officer of Contrast Security. Previously, Jeff was co-founder and CEO of Aspect Security, a successful and innovative application security consulting company acquired by EY.  Jeff is also a founder and major contributor to OWASP, where he served as Global Chairman for 10 years and created the OWASP Top 10 and several other popular open-source projects. Jeff serves as an advisor to the PCI Council, NIST, OASIS, CycloneDX, OWASP Foundation, Eclipse Foundation, Linux Foundation, and many companies and agencies on application security. Jeff has a BA from Virginia, an MA from George Mason, and a JD from Georgetown.
Please connect on LinkedIn: https://www.linkedin.com/in/planetlevel/

Ksenia PegueroKsenia Peguero, PhD

Ksenia Peguero, Ph.D. is a Senior Research Manager with Synopsys Software Integrity Group, where she leads a team of researchers and engineers working on static analysis and security of programming languages, frameworks, and technologies. Her expertise ranges from web stack, to mobile languages, to cloud environments, to infrastructure as code. Before diving into research, Ksenia had a consulting career in a variety of software security practices covering penetration testing, threat modeling, code review, and static analysis tool customization and deployment. During her decade in application security, she performed numerous engagements for clients in financial services, entertainment, telecommunications, and enterprise security industries. Throughout her journey, Ksenia has established and evolved secure coding guidance and practices for many firms, developed and delivered numerous software security trainings, and presented at conferences around the world, such as RSA, OWASP AppSec Global, TheWebConf, BSides Security, Nullcon, and LocoMocoSec. She has also served on review boards of OWASP AppSec USA, EU, and Global conferences. Ksenia holds a Ph.D. from George Washington University.

Adriana SanfordAdriana Sanford

Award-winning global threats and privacy expert, California Lawyer, and a professor.
Even the most sophisticated professionals can feel overwhelmed with this ever-changing security landscape and the workforce shortage. Adriana Sanford is on the cutting-edge of international and comparative privacy security developments and is working to help reduce the workforce gap. She provides C-suite level training throughout the Americas on the nuances of data privacy law (on a country-by-country basis), including Latin American countries—Panama, Peru, Mexico, Chile, Colombia, and Ecuador, among others.
Born in Orange County, Sanford is highly attuned to the needs of LA local businesses, minorities, professional women, and mothers. In addition to being the Cyber Awareness Month of October, we are also in National Hispanic Heritage Month. (Sept. 15 – Oct. 15) She is a Chilean American California lawyer, who specializes in Global Data Privacy Laws and Crisis Management, holds multiple law degrees (from Georgetown and Notre Dame) and was recently featured in Top Cyber News magazine. She serves as Of Counsel (remotely) for one of the leading law firms in Chile, is serving a three-year term as a Senior Research Fellow with Claremont Graduate University. Earlier this year, Sanford provided the opening keynote address at the CSWY Awards gala and is the recipient of the Cybersecurity and Privacy Woman Law Professional of the Year – 2019 CSWY Award.
Most workers seek to work for a company that values Diversity, Equity, and Inclusion (DEI). Minority and gender gaps are among some of the cybersecurity workforce’s most persistent challenges. Only 4% of cybersecurity workers self-identify as Hispanic, 9% as Black, and 24% as women. Los Angeles is also home to one of the largest number of women-owned businesses in the country. LA has also the largest Hispanic population in the United States.
Sanford is focused on providing training on data privacy to Hispanic and other minority groups through CGU to help address this complex problem. She is spearheading a program that will provide credit and non-credit training on cybersecurity and data privacy, along with Certificate programs for train-to-hire to help address this business and societal concern for the LA community. She has reached out to ISSA-LA to help CGU with this project, which is expected to launch in Spring 2023.
Last month, Sanford served as the opening Keynote Speaker for ISSA-LA Security Summit XII, where she spearheaded the WOMEN of INFLUENCE in LA to assist women that were disproportionately impacted by COVID-19 in our local LA community.
Female mentors are instrumental to help address the vast shortage of qualified IT and InfoSec professionals, and this is particularly important in underrepresented communities. Sanford is also a Chilean American international TV commentator, who regularly appeared as a CNN en Español analyst to 93 million viewers. She is a strong voice in the local, national, and global InfoSec and Hispanic communities

Adam ShostackAdam Shostack

Adam is a leading expert on threat modeling, and a consultant, author and game designer. He has decades of experience delivering security. His experience ranges across the business world from founding startups to nearly a decade at Microsoft.
His accomplishments include: Helped create the CVE. Fixing Autorun. Lead the design and delivery of the Microsoft SDL Threat Modeling Tool (v3). Created the Elevation of Privilege threat modeling game. Wrote Threat Modeling: Designing for Security. Co-authored The New School of Information Security.
While not consulting or training, Shostack serves as an advisor to a variety of companies and academic institutions and is an Affiliate Professor at the Paul G. Allen School of Computer Science and Engineering at the University of Washington.

Micky BolandMicki Boland

Micki Boland is a global cyber security warrior and evangelist with Check Point Technologies Office of the CTO. Micki has over 20 years in ICT, system engineering and cybersecurity. Micki’s focus is helping customers, system integrators, and service providers reduce risk through the adoption of emerging cybersecurity technologies. Micki is an ISC2 CISSP and holds a Master of Science in Technology Commercialization from the University of Texas at Austin, and an MBA with global security concentration from East Carolina University.

Richard GreenbergRichard Greenberg

Richard, a well-known Cyber Security leader, evangelist, advisor, and speaker, brings over 30 years of management experience, including being a CISO for 15 years. He is an ISSA International Distinguished Fellow, is on their Honor Roll, and is president of the ISSA Los Angeles Chapter. He has been on the OWASP Global Bd, and led the OWASP LA Chapter for many years.

You may have heard Richard’s interview as a Cyber Security expert on Will Ferrell’s Ron Burgundy podcast:

Richard is the Founder and CEO of Security Advisors LLC, which offers security risk assessments and network and application penetration testing, allowing organizations to continuously assess their internal and external cyber risk posture and meet compliance requirements.

No stranger to the boardroom, analyst, and investor community, Laz is an early stage investor and advisor to some of the most innovative companies in technology and cyber security. He is a Tech Partner at Rally Ventures and advises companies about trends with technology, cyber security, and go-to-market strategies.

Sam StepanyanSam Stepanyan

Sam Stepanyan is an OWASP London Chapter Leader and an Independent Application Security Consultant with over 20 years
of experience in the IT industry with a background in software engineering and web application development.
Sam has worked for various financial services institutions in the City of London specializing in Application
Security consulting, Secure Software Development Lifecycle (SDLC), developer training, source code reviews and
vulnerability management. He is also a Subject Matter Expert in Web Application Firewalls (WAF) and SIEM systems.
Sam holds a Master’s degree in Software Engineering and a CISSP certification.

John DicksonJohn Dickson, CISSP

John Dickson is the Vice President of Security Solution Architecture at Coalfire. John, along with his two business partners Sheridan Chambers and Dan Cornell, led the successful acquisition of Denim Group by Coalfire in June 2021. He currently sits on the White House Working group for Software Security to implement the software supply components of the President Executive Order. John has been a trusted security consultant for Fortune 1000 companies for over two decades at companies such as Trident Data Systems, KPMG, SecureLogix Corporation, Denim Group, and now Coalfire. John is a former U.S. Air Force officer where he served in the Air Force Information Warfare Center and was a member of the Air Force Computer Emergency Response Team. A Distinguished Fellow of the International Systems Security Association, he has been a Certified Information Systems Security Professional (CISSP) since 1998.

Dan KuykendallDan Kuykendall

Dan has been focused on application security and building application security software for more than 20 years as one of the founders, Co-Ceo and CTO of NT OBJECTives and then into Rapid7. He leads the development of Rapid7’s InsightAppSec & AppSpider (formerly NTOSpider) products and is responsible for the innovation and leadership of application security products at Rapid7.

Bilyana LillyBilyana Lilly, PhD, CISSP

Dr. Bilyana Lilly is a Director of Security Intelligence and Geostrategy at the Krebs Stamos Group. She is a leader on cybersecurity and information warfare with over fifteen years of managerial, technical and research experience. Dr. Lilly helps boards and senior executives to make strategic decisions while accounting for evolving cyber and geopolitical risk. She is a mentor, keynote speaker and best-selling author. She has spoken at DefCon, CyCon, the Executive Women’s Forum and the Warsaw Security Forum. She has worked at the United Nations, Deloitte, and the RAND Corporation. She is the author of the books “Russian Information Warfare” and “Russia’s Foreign Policy toward Missile Defense.” She has a PhD and three master’s degrees, including a master’s degree from the University of Oxford which awarded her with a distinction. She has been denounced by Russia’s Ministry of Foreign Affairs.
Follow her on Twitter and LinkedIn: @BilyanaLilly

Marnie WilkingMarnie Wilking

Marnie Wilking is a board member and Fortune 250 CISO with more than twenty years of experience aligning cybersecurity strategy with business objectives. Most recently she was the Global Head of Cybersecurity and IT Risk for Wayfair. Marnie currently serves on the Board of Directors for Robert Half, International; non-profit organizations RH-ISAC and CyberCrime Support Network; and advises several cybersecurity startup companies. Prior to Wayfair, Marnie was Global CISO for Orion Health; Director of Security Governance and Compliance for Early Warning; and Business Information Security Officer for Wells Fargo Mortgage. She holds the CISSP, CISA, and CISM designations, as well as an MBA in Technology Management and a Bachelor of Arts in Mathematics and Statistics.

Mary WangMary Wang

Ms. Mary Wang is a software engineering manager at Northrop Grumman Space Systems. She has over 20 years of software engineering and cybersecurity experience. She holds a Bachelor of Science degree in Computer Science and Master’s in Business Administration. Her certifications include an ISC2 Certified Information Systems Security Professional (CISSP), EC-Council Certified Ethical Hacker (CEH), and CompTIA Security+. She is the winner of the 2019 Women’s Society of Cyberjutsu (WSC) President’s Award. She is also the WSC Southern California Chapter Operations Lead.
Ms. Wang has given multiple software engineering presentations at technical symposiums and cybersecurity presentations at local security organizations and conferences. She is an active member of OWASP Los Angeles, OWASP Orange County, ISSA Los Angeles, Cloud Security Alliance (CSA) Los Angeles, South Bay Web App Security Project (SBWASP) and Women’s Society of Cyberjutsu organizations.
She likes nature, travel and working out in a gym.

Savanah FriskSavanah Frisk

Savanah Frisk is an application security engineer at Snap Inc. where she builds novel tools to eliminate classes of security vulnerabilities. She is an industry speaker, appearing at conferences such as Grace Hopper and LocoMocoSec. Her security certifications include Giac Incident Handler (GHIC) and Web Application Defender (GWEB). She runs a security education instagram channel with the handle @changeurpw and educates about personal security best practices.

Gadi BashvitzGadi Bashvitz

Gadi Bashvitz, CEO at Bright Security.
Gadi is a highly effective executive with 20+ years experience holding product, marketing, customer success and sales positions. Experience selling and partnering with enterprises globally. Founded, successfully grew and sold multiple companies in various industries.
He started his career in Cyber more than 25 years ago in the 8200 unit of the IDF and continued in various roles across the Cybersecurity & other industries for the past 25 years.
Gadi graduated from Tel Aviv university with a BA in Information Systems & Management & from the NYU Stern School of Business with an MBA, Magna Cum Laude.

Robert CuddyRobert Cuddy

Rob is a Solution Architect at HCL Software, providing thought leadership for application security, DevOps and DevSecOps. Rob is also one of the hosts of the Application Paranoia podcast. Prior to this, Rob was with IBM for 14 years with roles in Application Security, Sales Enablement, and Field Services. Rob has worked with clients all over the world to address challenges in ways that bring a positive impact to the business bottom line.
Rob has spoken at numerous events and conferences, including the Agile DevOps West, StarEast, the DevOps Enterprise Summit, All Day DevOps, and GDS CISO Summits. Rob graduated from USC with a degree in Aerospace Engineering and is an avid fan of college football. When not working, Rob enjoys spending time with family, serving at church, running and cycling. You can connect through the podcast, LinkedIn or by joining the “Robservatory” on twitter using the handle @Robservatory.