This site is the archived OWASP Foundation Wiki and is no longer accepting Account Requests.
To view the new OWASP Foundation website, please visit https://owasp.org

Summit 2011 Attendee Bios

From OWASP
Revision as of 14:46, 9 February 2011 by Mchalmers (talk | contribs) (Durkee, Ralph)

Jump to: navigation, search

: Top - 0–9 A B C D E F G H I J K L M N O P Q R S T U V W X Y Z


Back to Attendee List | Back to main Summit 2011 page

Add a bio using the page edit link; change a bio using the section edit link.

Adamski, Lucas

Adamski, Lucas.png
Lucas Adamski heads up the product security team at Mozilla, works on security architecture and features, and generally tries to make the Internet a happier and safer place. Previously, Lucas was a Security Architect at Adobe focused on Flash Player and AIR. He also worked at @stake and developed security managed services software at Breakwater Security.

Agarwal, Anurag

Agarwal, Anurag.png
Anurag Agarwal, the founder of MyAppSecurity, has proven record in providing customers with solutions related to security risk management. Anurag is a former Director of Education Services at WhiteHat Security and has over 15 years of experience designing, developing, managing and securing web applications with companies like Citigroup, Cisco, HSBC Bank, and GE Medical Systems to name a few. He is an active contributor to the web application security field and has written several articles on secure design and coding for online magazines. A frequent speaker on web application security at various conferences, Anurag is actively involved with organizations such as the WASC (Web Application Security Consortium) and OWASP (Open Web Application Security Project). He started the project on Web Application Security Scanner Evaluation Criteria and is currently a project leader for OWASP developer’s guide and OWASP Common Vulnerability List.

Aguilera, Vicente

Aguilera, Vicente.png
Born in Badalona (Spain), Vicente is the OWASP Spain Chapter Leader, co-founder of Internet Security Auditors and member of the Technical Advisory Board in the RedSeguridad magazine. He is an enthusiastic of the application security, a regular speaker at industry conferences and has published several articles and vulnerabilities in specialized media.

Agustini, Alexandre

PicComingSoon.jpg
I am senior lecturer and currently academic coordinator

of Informatics Faculty at the Catholic University of Rio Grande do Sul (PUCRS). I have a Ph.D. in Computer Science from Universidade Nova de Lisboa (2006) and my primary research interest is in Natural Language Processing, acting on the following topics: text mining, machine learning, syntactic and semantic analysis of natural language.


Akhmad, Zaki

PicComingSoon.jpg
Born in Jakarta, Indonesia, 1982, Zaki holds a master degree from

Bandung Institute of Technology, Indonesia, with major Electrical Engineering. Currently he works at indocisc, a small consultant company focus on information security, as a Junior Security Analyst. On professional certification, he had passed the CISA exam which he took on June 2010. He has lead the OWASP Indonesia Chapter since December 2008. The first translation project completed by OWASP Indonesia Chapter team is the Top 10 OWASP 2010. He enjoys very much working on information security industry. On the leisure time, Zaki loves reading, writing, listening to music and for some time taking photos. He also enjoy sports, especially running and swimming. He can be contact at za at owasp dot org.


Alamri, Lorna

PicComingSoon.jpg
Lorna is a consultant at a large financial institution and resides in Minneapolis, Minnesota, USA. She is Vice President of the Minneapolis OWASP Chapter, a member of the Global Industry Committee, Editor of the OWASP Newsletter, and a member of the Summit Planning Committee.

AlBasha, Talal

PicComingSoon.jpg
Application Development Management, Application Security Consultation (GWAPT Certified)

Alremh company at ICT Incubator Product Manager at Innovaive Solutions

Riyadh,Saudi Arabia OWASP Involvement: Syria Chapter Leader Past • Presenter for Internet Security at ITDigest • Senior Developer at King Faisal Specialist Hospital • Senior Developer at KFSHRC Education • Damascus University • SANS Summary Portal Development with J2EE technology IBM Websphere portal server, application server (with clustering) Bea Weblogic SMS, MMS and Mobile Banking projects Application Security (SANS GIAC standards, OWASP standards, (ISC)2 CSSLP standards) GWAPT Certified

Specialties: J2EE, Websphere clustering, Weblogic, JBoss, Struts, JSF SMS, MMS, Mobile Banking SMS Gateway Application Security


Angal, Rajeev

PicComingSoon.jpg
Rajeev currently works as an Architect at Oracle (Sun Microsystems) and lives in the San Francisco Bay Area, California, USA.

Past • Founder & VP Engineering at Intellifabric Inc • Director of Technology at Infospace Inc • Architect, Portal Server at SUN Microsystems Education • University of California, Santa Cruz • IIT Delhi • Delhi Public School - R. K. Puram


Aniceto, Alexandre

PicComingSoon.jpg
Information Security Consultant, CISSP, CISM, CISA, ISO27001/LA

Partner at Willway, S.A.; Lisbon Area, Portugal Past Senior Security Consultant at Glintt Security Advisor at Archeocelis, Lda Security & Systems Engineer at Nokia Siemens Networks Education Royal Holloway, U. of London , (ISC)² , ISACA - Information Systems Audit and Control Association Specialties: Information Security Management Security Architecture Design & Implementation Auditing and Regulatory Compliance


Aryavalli, Gandhi

PicComingSoon.jpg
Having Honors in Engineering (CS & Mech. Engg.) enriched by MBA (finance), have been working in Information Security space for the last 10+ years in the fields of Application Security, State Assessment, Data cum Network Security, Security Governance and Compliance areas. Currently part of McAfee family for the last 5+ years, providing technical expertise and support in the performance of architecture and application risk assessments for IT developed applications and third party solutions, review of applications for security vulnerabilities, perform penetration tests and enforcing Secure QA cum Coding practices. Key achievements include providing technical support to Department of Defence to install a Common Criteria lab in India for the first time, and established Vulnerability Accessment Center as per SSE-CMM Guidelines. Providing organisation wide trainings and conducting secure code reviews, as a Secure Core Team member of McAfee. Has played a key role in Application security in various CMM companies like Microsoft (v-id), Mahindra BT..etc.

Barbato, L. Gustavo C.

PicComingSoon.jpg
Gustavo is Ph.D. (application security) and M.Sc. (intrusion detection) in Information System Security as well as Bachelor in Computer Science. He has worked in security projects for the Brazilian Government for many years involving software programming, network and systems administration, computer and network security, application and network penetration testing, software security assessments, code review, malware analysis, intrusion detection, forensics analysis and others activities. During that time, he has also worked as security professor at college and postgraduate by teaching subjects about network and information security. In the beginning, he used to work as software developer and system administrator. However, the last years were dedicated to security consulting on areas aforesaid. Nowadays, he is the Technical Application Security Lead at Dell and Secure Programming Professor at UNISINOS University. As voluntary work, he is the Porto Alegre (Brazil) OWASP Chapter Founder/Leader and member of OWASP Global Chapter Committee.

Barnett, Ryan

PicComingSoon.jpg
Ryan Barnett is a Senior Security Researcher at Trustwave. He is a member of Trustwave's SpiderLabs -the advanced security team focused on penetration testing, incident response, and application security where he focuses on web application defensive research and serves as the ModSecurity web application firewall project lead. In addition to his work at Trustwave, Ryan is also a SANS Institute certified instructor and a member of both the Top 20 Vulnerabilities and CWE/SANS Top 25 Most Dangerous Programming Errors teams. He is also a Web Application Security Consortium (WASC) Member where he leads the Web Hacking Incidents Database (WHID) and Distributed Web Honeypots Projects, as well as, the OWASP ModSecurity Core Rule Set (CRS) project leader. Mr. Barnett has also authored a Web security book for Addison/Wesley Publishing entitled Preventing Web Attacks with Apache and is a frequent speaker at industry conferences such as Blackhat and OWASP.

Baso, Sarah

PicComingSoon.jpg
Sarah is a licensed attorney living in Minneapolis, Minnesota, USA. She currently works as a teacher for at risk youth (grades 5-8) at an after school and summer kids program, in addition to volunteering at an ESL school that provides English, computer, math, and citizenship classes to immigrants and refugees. Most recently, Sarah has been involved with OWASP, providing logistical support, travel planning and wiki foo for the Global Summit and serving as the secretary for the Global Industry Committee.

Batista, Marco

PicComingSoon.jpg
Marco is a 26 year old from Portugal with a Network and Communications Engineer degree. He has worked for 2 years in Carrier Sales Support / Customer Premises Equipment (CPE) Broadband Access (xDSL, FTTH), and is currently taking a MSc in Information Security.

Bergling, Mattias

PicComingSoon.jpg
Mattias Bergling works as a Senior Security Consultant at 2Secure in Stockholm, Sweden. Mattias has been working with IT security for 12 years and has been focusing on security testing for the last 8 years. Mattias is the co-leader for the Swedish OWASP chapter and was on the Organizing Committee for AppSec EU 2010.

Bernik, Joe

PicComingSoon.jpg
Mr. Bernik is the Chief Information Security Officer for Fifth Third Bank, responsible for protecting Fifth Third Bank and its clients’ information systems from risks. He is also responsible for defining and implementing Enterprise-wide information security strategies for the Bank.

Mr. Bernik has more than 16 years of experience as a risk professional. He has developed risk management practices, procedures and standards for several Fortune 100 companies including several global banking organizations. Prior to his role at Fifth Third Bank, Mr. Bernik served in roles including Director of Operational Risk at the Royal Bank of Scotland and Chief Information Security Officer of ABN AMRO, and its subsidiary, LaSalle Bank. Mr. Bernik received his bachelor’s degree from the University of Mary Washington in Fredericksburg, Virginia, and completed graduate work in business administration at the City University of New York. Mr. Bernik currently serves as an advisor to the Federal Reserve on matters of information security and is on the steering committee of the Financial Services Sharing and Analysis Center (FS-ISAC).


Biagiotti, Massimo

PicComingSoon.jpg
Project Manager and Business Developer of consulting activities for network and application security analyses concerning Ethical Hacking, Secure Software Development Lyfecycle, Security Processes, Risk Analyses and Business Impact Analyses. Since 2009 is also responsible of the Internship Program of Business-e.

Bonver, Edward

PicComingSoon.jpg
Edward Bonver is a principal software engineer on the product security team under the Office of the CTO at Symantec Corporation. In this capacity, Edward is responsible for working with software developers and quality assurance (QA) professionals across Symantec to continuously enhance the company’s software security practices through the adoption of methodologies, procedures and tools for secure coding and security testing. Within Symantec, Edward teaches secure coding and security testing classes for Symantec engineers, and also leads the company’s QA Security Task Force, which he founded. Prior to joining Symantec, Edward held software engineering and QA roles at Digital Equipment Corporation, Nbase and Zuma Networks. Edward is a Certified Information Systems Security Professional (CISSP) and a Certified Secure Software Lifecycle Professional (CSSLP). He holds a master’s degree in computer science from California State University, Northridge, and a bachelor’s degree in computer science from Rochester Institute of Technology. Edward is a Ph.D. student at NOVA Southeastern University.

Booth, Rex

PicComingSoon.jpg
Rex is a Senior Manager in Grant Thornton’s Public Sector practice and leads their Cybersecurity Solution group. He has over ten years of experience providing application development, risk management and information security services to government agencies, private industry, and financial institutions.

Since joining Grant Thornton, Rex has led various information security and risk management engagements including FISMA, IV&V, SOX, and OMB A-123 engagements as well as identity management and system certification and accreditation efforts. During his tenure at previous employers, Rex designed and developed complex distributed web-based applications. As a member of a managed security services team performing research and development, he co-architected and implemented a scalable information detection and prevention information aggregation solution for use in a real-time 24/7 information security monitoring system, correlating and reporting on thousands of devices. He has presented on the topic of information security and assessment methodologies to various institutions and is currently a global committee member for the Open Web Application Security Project (OWASP).


Brennan, Tom

PicComingSoon.jpg
Brennan started with technology in 1986 when 8-bit and CP/M was cool <grin>. After a career ending injury with United States Marines Corps., during Gulf War I Era he has dedicated his life to information security. Was elected and served with the FBI Infragard program 2002-2004 and then founded the OWASP New Jersey Chapter that today includes NYC Metro. In 2007 Brennan was appointed by his application security peers to the OWASP Global Board of Directors. Tom was the managing partner of Proactive Risk that routinely assessed technology, people and process used in finance, e-commerce, oil/gas, power generation/transmission, water, and global enterprise networks before joining Trustwave Spiderlabs in 2011. A father of 4 great kids and is a frequent and entertaining speaker at information security conferences and bars around the world ;)

Brewer, Deb

PicComingSoon.jpg
LXstudios Inc., Owner/Director

Deb has provided branding, corporate identity and collateral design solutions to institutional and retail clients for over twenty years. On a Fine Arts Scholarship, she obtained a bachelor of Fine Arts in Graphic Design with a Minor in Professional Writing from Carnegie Mellon University in Pittsburgh, PA. She began her career as a Senior Designer in the Creative Services department at Thomson Financial in Boston, MA. After Thomson, Deb became a partner at Patric Ward Design in Boston, managing accounts such as Janus Institutional, Reebok, Standard & Poor’s, and Thomson Financial. In 1999, Deb opened LXstudios, providing branding, corporate identity, print collateral, advertising, web and event support to financial services, medical, technology, management consulting, mortgage/banking and retail clients.


Bristow, Mark

PicComingSoon.jpg
Mark Bristow works as an Industrial Control Systems (ICS/SCADA) Security consultant with Securicon LLC for a US Government client. Before getting involved with ICS, Mark was heavily involved in web application vulnerability research, penetration testing and building application security programs as a consultant with SRA International. Mark is an active member of the Open Web Application Security Project (OWASP) as Global Conferences Committee Chair, AppSec DC Organizer, and Co-Chair of the OWASP DC chapter.

Brzozowski, Daniel

PicComingSoon.jpg
Daniel is a web security enthusiast with broad knowledge in web applications development and web security. He has been working in banking and financial industry for the last few years. He is doing his Masters Degree in Artificial Intelligence at Warsaw University of Technology. He is currently working on his final master’s thesis, whose title is “Web Application Penetration Tests”. Right now he is based in London, UK and works for a worldwide financial company. His interests covers all aspects of web security, web development and public speaking. In his free time he enjoys practicing Krav Maga, listening to music and following Web Security news.

Buetler, Ivan

PicComingSoon.jpg
Founder and CEO, Compass Security AG (since 1999)

Founder of Swiss Cyber Storm Security Conference (since 2007) Founder of Hacking-Lab community site / Alias E1 (since 2006) Founder and board member of Cyber Tycoons foundation (since 2010) Board member Information Security Society Swizerland ISSS (since 2010) Member /ch/open foundation. After completing his degree in Electrical Engineering at the Technical College of Rapperswil focusing on computer science, control technology, electronics, energy engineering, and motion technology, Ivan Buetler worked for 2 years in St.Gallen at AGI Service, a company which provides services for banks. He provided plans for high-availability Unix and NT server systems including, among other things, a platform for the stock market and foreign exchange dealers based on Reuters, Bloomberg and FIMS (Telekurs). Afterwards, while working for 3r security engineering ag/Entrust Technologies, Ivan supported security consultants in technical matters, analysed clients' technical problems, local network and computer systems throughout Europe. This security work included penetration tests, security reviews, the development of secure architectures, Internet and Intranet security, as well as security solutions for e-Commerce. In particular, he was involved in the cross-certification of the Canadian Entrust PKI with Europe. During these activities he completed post-graduate studies at the Management School of St.Gallen/Zurich in Business Management.


Calderon, Juan Carlos

PicComingSoon.jpg
Juan currently works as Application Security Research Leader/Sr Auditor at Softtek and lives in the Aguascalientes Area, Mexico. Prior to this he was a Project Leader at Softtek, as well as a Sr Application Security Auditor and Sr Web Developer at Soft tek. Juan also worked as a Web Application Security Specialist and Web Developmer at GE DDEMESIS and as the IT Manager at Gabatti. Juan received his education from the Instituto Tecnológico y de Estudios Superiores de Monterrey and the Instituto Tecnológico de Zacatecas. Juan Specializes in: Application Security, Security Source Code Review, Vulnerability assessments, security trends analysis, Penetration Testing, Secure SDLC, App

Sec consultancy.


Campbell, David

PicComingSoon.jpg
Founder and Principal Consultant, Electric Alchemy

DC has been immersed in technology since elementary school. Early experiences with Microsoft Flight Simulator on an 4.77MHz 8086 IBM got him interested in computers as well as aviation. Campbell went on to become a well respected figure in the information security community as well as a FAA certificated pilot. DC joined Andersen Consulting after graduating from University and his aptitude for hacking quickly led him to the forefront of the Firm's then nascent information security practice. At Andersen, Campbell worked as a security architect for a series of high profile projects while simultaneously providing penetration testing expertise on short engagements all over the world. Since founding EA Campbell has embraced application security and mobile security and continues to be involved in the community. DC leads the Denver chapter of the Open Web Application Security Project and organizes the successful annual FROC application security conferences.


Casey, Larry

PicComingSoon.jpg
Director of IT, OWASP.

Causey, Brad

PicComingSoon.jpg
Brad Causey is an active member of the security and forensics community

worldwide. Brad tends to focus his time on Web Application security as it applies to global and enterprise arenas. He is currently employed at a major international financial institution as a security analyst. Brad is the President of the OWASP Alabama chapter, a member of the OWASP Global Projects Committee and a contributor to the OWASP Live CD. He is also the President of the International Information Systems Forensics Association chapter in Alabama. Brad is an avid author and writer with hundreds of publications and several books. Brad currently holds certifications in the following arenas: MCSA, MCDBA, MCSE, MCT, MCP, GBLC, GGSC100, C|EH, CIFI, CCNA,IT Project Management+, Security+, A+, Network+, CISSP, CGSP.


Chalmers, Matthew

PicComingSoon.jpg
Matthew Chalmers has been doing information security and related work his entire professional career, since earning his bachelor's degree from MST. Matt has worked for large organizations in the defense, financial and manufacturing industries including the US Navy, the National Security Agency, JPMorgan Chase and, presently, Rockwell Automation. Matt currently performs risk, threat, control and vulnerability assessments; regulatory & policy/standard compliance audits; process improvement audits; and general & application control audits. Matt holds the CISA, GSNA, GCFA, CEH and CHS certifications and is ITIL v3 Foundation certified. Matt has been involved with OWASP since about 2002 and can be reached at matthew dot chalmers at owasp dot org.

Chandra, Pravir

PicComingSoon.jpg
Pravir Chandra is Director of Strategic Services at Fortify where he leads software security assurance programs for Fortune 500 clients in a variety of verticals. He is responsible for standing up the most comprehensive and measurably effective programs in existence today. Creator and leader of the Open Software Assurance Maturity Model (OpenSAMM) project, Pravir also works extensively with OWASP and on other open projects to promote effective application security practices. As a thought leader in the security field for over 10 years, Pravir has written many articles, whitepapers, and books and is routinely invited to speak at businesses and conferences world-wide.

Cheng, Steven

PicComingSoon.jpg
Steven Cheng is currently the product manager for CodeSecure at Armorize Technologies, Inc. He has been with the company for more than five years spanning early from the development phase to current product management role. His job primarily involves requirement gathering and specification design. Recently the focus also shifted into development process in order to have better control of release schedule.

In the past year Steven had led the CodeSecure team to undergo a major product transformation in terms of distribution method from appliance to pure software based, and complete UI redesign. The beta version is now available for download and final release date is scheduled on 4th March.


Clarke, Justin

PicComingSoon.jpg
Justin is a Director and Co-Founder of Gotham Digital Science, based in London. Justin has extensive international risk management, security and secure development consulting and testing experience in the United Kingdom, United States and New Zealand. He is the lead author/technical editor of "SQL Injection Attacks and Defenses" (Syngress), co-author of "Network Security Tools" (O'Reilly), and a contributor to "Network Security Assessment, 2nd Edition" (O’Reilly), as well as a speaker at various security conferences and events such as Black Hat, EuSecWest, ISACA, BruCON, OWASP, OSCON, RSA and SANS. Currently Chapter leader of the OWASP London chapter, and a member of the OWASP Connections Committee, he has a Bachelors degree in Computer Science from the University of Canterbury in New Zealand. He’s also a CISSP, CISM, CISA, CEH, and still has his MCSE if you have a Windows NT 4.0/Exchange 5.5 network.

Coates, Michael

PicComingSoon.jpg
Michael Coates has extensive experience in application security, security code review and penetration assessments. He has conducted numerous security assessments for financial, enterprise and cellular customers worldwide. Michael holds a master's degree in Computer Security from DePaul University and a bachelor's degree in Computer Science from the University of Illinois.

Michael is the creator and leader of the AppSensor project and a contributor to the 2010 OWASP Top 10. He is a frequent speaker at OWASP security conferences in the US and Europe and has also spoken at the Chicago Thotcon conference and provided security training at BlackHat. As the web security lead at Mozilla, Michael protects web applications used by millions of users each day.


Coimbra, Paulo

PicComingSoon.jpg
Paulo has begun working for OWASP in July 2007 assuming the Spring of Code closing process. In the beginning of 2008, he has become OWASP part-time employee assuming the role of Project Manager. After completing his IELTS course, his status has changed again when in July 2008 he moved into a full-time position. He answers directly to the OWASP Board and has been working closely with the OWASP Global Projects Committee since it has been institutionalized in November 2008.

A few of his OWASP’s heterogeneous contributions are as follows: • OWASP Spring of Code 2007, • OWASP Summer of Code 2008, • OWASP EU Summit 2008, • OWASP Assessment Criteria 1.0 & 2.0, • OWASP 'Project About' Templates, • OWASP Projects Dashboard, • OWASP Project Reviewers Database, • OWASP Training. Paulo Coimbra has a M.S. in Management (Technical University of Lisbon), a Post-Graduation in Political Science (University of Lisbon), and a B.S. in Management and Social Development (Portuguese Catholic University). He has worked in management since 1992. He has performed different roles, from Economist (IAPMEI/Portuguese Ministry of Economy) to Teacher of Finances, Accountancy and M&A (Polytechnic Institutes of Setúbal and Santarém), to Marketing Director and Teacher of Project Finance, Corporate Communication and Political Science (Piaget Institute).


Cornell, Dan

PicComingSoon.jpg
Dan Cornell has over twelve years of experience architecting and developing web-based software systems. He leads Denim Group's security research team in investigating the application of secure coding and development techniques to improve web-based software development methodologies. Dan was the founding coordinator and chairman for the Java Users Group of San Antonio (JUGSA) and currently serves as the OWASP San Antonio chapter leader, member of the OWASP Global Membership Committee and co-lead of the OWASP Open Review Project. Dan has spoken at such international conferences as ROOTs in Norway and OWASP EU Summit in Portugal.

Corry, Bil

PicComingSoon.jpg
Information Security Engineer at PayPal

I have extensive experience in information security, information technology and web application development. I bring integrity and accountability to all of my projects. Beyond my technical skills, I also have experience managing people and resources, budgeting, metrics, legal issues, strategic planning, and public speaking.

Information Security: access controls, disaster recovery, network security, web application security, HIPAA, PCI, application lifecycle, penetration testing, auditing, security research and more. Information Technology: server administration, hardware/software installation/configuration, help desk/technical support, product evaluation, and more. Web Application Development: entire development cycle, from design to implementation to quality assurance to deployment. Specialties: Contributor to HTML5 (http://www.whatwg.org/specs/web-apps/current-work/multipage/acknowledgements.html#acknowledgements) Contributor to WASC Threat Classification v2 (http://projects.webappsec.org/Threat-Classification-Authors)


Cruz, Dinis

PicComingSoon.jpg
Dinis Cruz is a Security Consultant based in London (UK) and specialized in: ASP.NET/J2EE Application Security, Application Security audits and .NET Security Curriculum Development.

For the past couple years Dinis has focused on the field of Static Source Code Analysis and Dynamic Website Assessments (aka penetration testing), and is the main developer of the OWASP O2 Platform which is an Open Source project that is focused on 'Automating Security Consultants Knowledge/Workflows' and 'Allowing non-security experts to access and consume Security Knowledge'. Dinis is currently focused on making the O2 Platform the industry standard for consuming, instrumenting and data-sharing between: the multiple WebAppSec tools, the Security consultants and the final users (from management to developers). Past industry experience include: running a small Software/Consultancy business, acting as CTO for a Portuguese University, being part of a Security Assessment team (Pentesting and Source Code Assessment) for a global Bank (ABN AMRO), taking the role of Directory of Advanced Technologies at Ounce Labs (acquired by IBM) performing Web Application security assessments on a large number of languages/technologies/frameworks and being a very active participant and enabler at OWASP.


Cruz, Sarah

PicComingSoon.jpg
Sarah Cruz is an award winning graphic designer working in London for Lewis Moberly www.lewismoberly.com. She Is responsible for the design of such global icons as Glenmorangie whisky, Johnnie Walker director’s blend, Sport England, and the new Gatwick Airport identity. She designed the OWASP Summit '08, and the OWASP Summit 2011 identity. In 2008 she founded the charity Abundance London www.abundancelondon.com, which works with school groups to harvest surplus local fruit from city gardens and parks, and supplies it to local restaurants. English by birth, she grew up in the US. Sarah went to Choate and has a BA (hons) from Carnegie Mellon University. She can speak a bit of Portuguese. Sarah has two daughters 7 and 5 with husband Dinis Cruz.

Dawson, Isaac

PicComingSoon.jpg
I am interested in all forms of application/network security. I mainly

enjoy trying to think of unique ways of breaking applications from a business logic stand point. I have published the following papers: • Blind Buffer Overflows in ISAPI extensions: http://www.securityfocus.com/infocus/1819 - This article was released on the main page of the leading security news and information site, Security Focus in January 2005. • The Benefits of Combining Automated and Manual Penetration Testing (Japanese Only): https://www4.symantec.com/Vrt/offer?_requestid=22090&a_id=42747 – This white paper was written to aid our sales team in educating our customers as to the benefits of combining manual testing with automated tools. I felt that the Japanese market relied too heavily on tool based analysis so the paper was written to show what automated tools cannot find. Specialties: application assessments, network assessments, some reverse engineering


De Win, Bart

PicComingSoon.jpg
Bart is a security enthusiast with an extensive academic background. He is a master in Computer Science. Afterwards, he has spent over a decade researching and improving techniques for the analysis and development of secure software, among others in the context of his Ph.D. He authored more than 60 articles published in international journals or conferences. He is specialized in methodological and constructive software security techniques, with a specific focus on application security. Because of his background, he has an in-depth knowledge of the state-of-the-art in the area. Bart currently works as a security consultant in the domain of application security. He works on a daily basis on application assessments and on helping customers improving their software security practices. Bart is one of the OWASP chapter leaders of the Belgian OWASP chapter. He co-organizes the OWASP BeNeLux events.

Deleersnyder, Seba

PicComingSoon.jpg
Sebastien Deleersnyder (Seba), Managing Technical Consultant SAIT Zenitel. Starting up the ICT Security bussines line for SAIT Zenitel BeNeLux-France (www.saitzenitel.com). I started the Belgian OWASP Chapter in 2005, have started the OWASP Education project and participate in the global chapters committee and the Board of the OWASP Foundation. I co-organize the yearly security & hacker BruCON conference and trainings in Brussels (www.brucon.org). As security project leader and information security officer for multiple customers I have build up extensive experience in Information Security related disciplines, both at strategic and tactical level. I specialise in (Web) Application Security, combining both my broad development and information security experience.

DiPaola, Stefano

PicComingSoon.jpg
Stefano Di Paola is the CTO and a cofounder of Minded Security, where he is responsible for Research and Development Lab. Prior to founding Minded Security, Stefano was a freelance security consultant, working for several private and public companies. He also worked in collaboration with University of Florence at the Faculty of Computer Engineering. Stefano is recognized as one of the top application security researchers. In the past years he released several advisories including the ones that are not publicly disclosed but patched and several open source tools. He has also contributed to OWASP testing guide and is also the Research & Development Director of OWASP Italian Chapter.

Donovan, Fred

PicComingSoon.jpg
Fred is an application security researcher and the founder of Attack Logic, a U.S. based AppSec consultancy. He spent 3 years as a private researcher on campus at UNL’s Technology Park in the field of InfoSec and for the past 11 years has provided executive level IT services to public and private organizations. Application Security has been his exclusive focus for the past seven with a general focus on information warfare and the uses of counter intelligence for purposes of corporate defense. He is a regular guest lecturer and speaker at Universities, Conferences, and professional organizations. Mr. Donovan is alumni of the University of Missouri -- Columbia (Mizzou) and the American Military University (AMU).

Durkee, Ralph

PicComingSoon.jpg
Ralph Durkee, CISSP, GSEC, GCIH, GSNA, GCIA, GPEN is the principal security consultant and president of Durkee Consulting, Inc since 1996. Ralph founded the OWASP Rochester, NY chapter since 2004 and currently serves as a member of the OWASP Global Conferences Committee. Ralph also serves as president of the Rochester ISSA Chapter and chairs the annual Rochester Security Summit. He performs a variety of security audits and software security assessments and software development consultations for clients in the Rochester, NY area. His expertise in penetration testing, incident handling, secure software development and secure Internet and web applications is based on over 30 years of both hands-on and technical training experience. He has developed and taught a wide variety of professional security seminars including custom web application security training, and SANS SEC401 & SEC504 - Hacker Techniques and Incident Handling and CISSP bootcamp courses since 2004. Ralph regularly leads development of a wide variety of security standards such as application security, database encryption and security consulting for compliance with the Payment Card Industry Data Security Standard.

Dworakowski, Wojciech

PicComingSoon.jpg
Enter bio here.

Elias, Wagner

PicComingSoon.jpg
Enter bio here.

Eng,Chris

PicComingSoon.jpg
Enter bio here.

Evans, Arian

PicComingSoon.jpg
Enter bio here.

Falkenberg, Andreas

PicComingSoon.jpg
Enter bio here.

Fazli Azran, Mohd

PicComingSoon.jpg
Enter bio here.

Fedon, Giorgio

PicComingSoon.jpg
Enter bio here.

Ferraz, Felipe

PicComingSoon.jpg
Enter bio here.

Ferreira, Lucas C.

PicComingSoon.jpg
Enter bio here.

Fette, Ian

PicComingSoon.jpg
Enter bio here.

Fitzgerald, Alexis

PicComingSoon.jpg
Enter bio here.

Fitzhugh, Justin

PicComingSoon.jpg
Enter bio here.

Flores, Mauro

PicComingSoon.jpg
Enter bio here.

Fontes, Antonio

PicComingSoon.jpg
Enter bio here.

Fort, Julio Cesar

PicComingSoon.jpg
Enter bio here.

Fortuna, Pedro

PicComingSoon.jpg
Enter bio here.

Frosch,Tilman

PicComingSoon.jpg
Enter bio here.

Galvao, Pedro

PicComingSoon.jpg
Enter bio here.

Gao, Helen

PicComingSoon.jpg
Enter bio here.

Garrancho, Bruno

PicComingSoon.jpg
Enter bio here.

Garg, Vishal

PicComingSoon.jpg
Enter bio here.

Gomes, Leandro Resende

PicComingSoon.jpg
Enter bio here.

Gondrom,Tobias

PicComingSoon.jpg
Enter bio here.

Greene,Collin

PicComingSoon.jpg
Enter bio here.

Hansen, Robert

PicComingSoon.jpg
Enter bio here.

Hartmann, Kate

PicComingSoon.jpg
Enter bio here.

Heiderich, Mario

PicComingSoon.jpg
Enter bio here.

Heyes, Gareth

PicComingSoon.jpg
Enter bio here.

Hinojosa, Kuai

PicComingSoon.jpg
Enter bio here.

Hodges, Jeff

PicComingSoon.jpg
Enter bio here.

Hoff, Jerry

PicComingSoon.jpg
Enter bio here.

Hoffman, Achim

PicComingSoon.jpg
Enter bio here.

Hofmann, Chris

PicComingSoon.jpg
Enter bio here.

Hogben, Giles

PicComingSoon.jpg
Enter bio here.

Ichnowski, Jeff

PicComingSoon.jpg
Enter bio here.

Jimenez, Juan Jose Rider

PicComingSoon.jpg
Enter bio here.

Jorge, Eduardo

PicComingSoon.jpg
Enter bio here.

Kang, Abraham

PicComingSoon.jpg
Enter bio here.

Keary, Eoin

PicComingSoon.jpg
Enter bio here.

Knobloch, Martin

PicComingSoon.jpg
Enter bio here.

Kosturjak, Vlatko

PicComingSoon.jpg
Enter bio here.

Koussa, Sherif

PicComingSoon.jpg
Enter bio here.

Kuivenhoven, Marinus

PicComingSoon.jpg
Enter bio here.

Kumar, Nishi

PicComingSoon.jpg
Enter bio here.

Li, Jason

PicComingSoon.jpg
Enter bio here.

Lindsay, David

PicComingSoon.jpg
Enter bio here.

Long, Jeremy

PicComingSoon.jpg
Enter bio here.

Loureiro, Nuno

PicComingSoon.jpg
Enter bio here.

Luptak, Pavol

PicComingSoon.jpg
Enter bio here.

Lyon, Chris

PicComingSoon.jpg
Enter bio here.

Manico, Jim

PicComingSoon.jpg
Enter bio here.

Maor, Ofer

PicComingSoon.jpg
Enter bio here.

Mancini, Lucilla

PicComingSoon.jpg
Enter bio here.

Martinez, Mateo

PicComingSoon.jpg
Enter bio here.

Martorella, Christian

PicComingSoon.jpg
Enter bio here.

Matatall, Neil

PicComingSoon.jpg
Enter bio here.

McGeehan, Ryan

PicComingSoon.jpg
Enter bio here.

Melo, Ricardo

PicComingSoon.jpg
Enter bio here.

Mendo, Tiago

PicComingSoon.jpg
Enter bio here.

Meucci, Matteo

PicComingSoon.jpg
Enter bio here.

Nagra, Jasvir

PicComingSoon.jpg
Enter bio here.

Neaves, Tom

PicComingSoon.jpg
Enter bio here.

Paiva, Sandra

PicComingSoon.jpg
Enter bio here.

Pegorelli, Marta

PicComingSoon.jpg
Enter bio here.

Perego, Paolo

PicComingSoon.jpg
Enter bio here.

Potjes, Linda

PicComingSoon.jpg
Enter bio here.

Reinhart, Ralf

PicComingSoon.jpg
Enter bio here.

Richler, Heiko

PicComingSoon.jpg
Enter bio here.

Rohr, Mathias

PicComingSoon.jpg
Enter bio here.

Ross, David

PicComingSoon.jpg
Enter bio here.

Roth-Mandutz, Elke

PicComingSoon.jpg

I am working as research assistant at the Georg-Simon-Ohm University of Applied Sciences in Nuremberg, Germany. The research project started in September 2010 with the objection to detect and evaluate the privacy impact of web-sites based on client-side analysis. The privacy impact should be made user visible.

Prior to the research project, I worked for many years in the mobile communication sector, mostly as system engineer for GSM and UMTS infrastructure.



Saario, Mikko

PicComingSoon.jpg
Enter bio here.

Samuel, Michael

PicComingSoon.jpg
Enter bio here.

Schmidt, Chris

PicComingSoon.jpg
Enter bio here.

Schuh, Justin

PicComingSoon.jpg
Enter bio here.

Schwartz, Stephen

PicComingSoon.jpg
Enter bio here.

Searle, Justin

PicComingSoon.jpg
Enter bio here.

Secker, Tanya

PicComingSoon.jpg
Enter bio here.

Serrao, Carlos

PicComingSoon.jpg
Enter bio here.

Stasinopoulos, Anastasios

PicComingSoon.jpg
Enter bio here.

Sterne, Brandon

PicComingSoon.jpg
Enter bio here.

Steven, John

PicComingSoon.jpg
Enter bio here.

Su, Cecil

PicComingSoon.jpg
Enter bio here.

Tasar, Vehbi

PicComingSoon.jpg
Enter bio here.

Taylor, Jason

PicComingSoon.jpg
Enter bio here.

Tesauro, Matt

PicComingSoon.jpg
Enter bio here.

Thomas, Mark

PicComingSoon.jpg
Enter bio here.

Tomhave, Benjamin

PicComingSoon.jpg
Enter bio here.

Turpin, Keith

PicComingSoon.jpg
Enter bio here.

Tusha, Ervis

PicComingSoon.jpg
Enter bio here.

UcedaVelez, Tony

PicComingSoon.jpg
Enter bio here.

Uhley, Peleus

PicComingSoon.jpg
Enter bio here.

van der Baan, Steven

PicComingSoon.jpg
Enter bio here.

Vasilopoulos, Kyprianos

PicComingSoon.jpg
Enter bio here.

Vela, Eduardo

PicComingSoon.jpg
Enter bio here.

Vilares Da Silva, Luis

PicComingSoon.jpg
Enter bio here.

Vlachos, Vasileios

PicComingSoon.jpg
Enter bio here.

Watson, Colin

PicComingSoon.jpg
Enter bio here.

Weston, David

PicComingSoon.jpg
Enter bio here.

Wichers, Dave

PicComingSoon.jpg
Enter bio here.

Wilander, John

PicComingSoon.jpg
Enter bio here.

Williams, Jeff

PicComingSoon.jpg
Enter bio here.

Wilson, Doug

PicComingSoon.jpg
Enter bio here.

Wysopal, Chris

PicComingSoon.jpg
Enter bio here.

Yeo, John

PicComingSoon.jpg
Enter bio here.

Zusman, Mike

PicComingSoon.jpg
Enter bio here.