Future Cyber Tech, Application Security & DevOps

Businesses are acutely aware that there is an increasingly sophisticated criminal threat to their systems and data. Being fully protected against these threats has never been more imperative given the legislative and PR implications of high profile breaches. In this theater you can learn from the vendors at the front-line in the battle with cyber criminals about how future cyber tech solutions will counter the evolving threats.

Future Cyber Tech, Application Security & DevOps Speakers

Aditya Balapure
Aditya Balapure

Team Lead, Information Security Grubhub Inc

View

Aditya Balapure

Aditya Balapure is an Information Security Specialist, Author, Speaker who is passionate about the continuously changing threat landscape of the cyber world. He is currently a Team Lead, Information Security at Grubhub Inc. A builder, breaker and cyber defender at heart Aditya likes to evangelize Information Security. With multiple years of experience in all forms of security, some of his core interests are in the field of Application & Cloud Security, Cryptography and Malware Research.

Andy Singer
Andy Singer

VP Product Marketing enSilo

View

Andy Singer
Charles Stockwell
Charles Stockwell

CEO  The Security Stronghold

View

Charles Stockwell

Charles Stockwell believes the human element can be your organization's best defense. While typically thought of as the weakest link, Charles has transformed the human element into a proactive security control countless times. He does this as CEO of The Security Stronghold, LLC where his team works with organizations in a variety of industries to transform their security culture and provide other security services, always focusing on the human element first. Charles has been featured in numerous industry publications and is always looking for the next challenge.

Colin McKinty
Colin McKinty

Vice President of Cyber Security Strategy, Americas BAE Systems Applied Intelligence

View

Colin McKinty

Colin McKinty, VP of Cyber Security Strategy, Americas at BAE Systems Applied Intelligence, has held various roles at the company in the both the US and UK.  Upon completing a Masters of Electrical and Electronic Engineering, he then went on to receive his PhD from the University of Surrey (UK) in 2001.  He has spent more than a decade helping a wide range of customers enhance and protect their organizations with information intelligence and advanced analytic tools and processes.  He moved from the company’s HQ in the UK to the US in 2007 to run BAE Systems Applied Intelligence’s federal business, which led to a new role: Cyber Lead for the Americas. This enabled him to focus on supporting organizations in the commercial sector. Since 2013, he has been the driving force behind BAE Applied Intelligence’s success in breaking into the security market in the Americas. Colin has a strong technical background with many years of practical experience developing analytics coupled with the business experience needed to speak with decision makers at all levels of an organization.

Gretchen Marx
Gretchen Marx

Director of Enablement IBM Security

View

Gretchen Marx
Jonathan Kaftzan
Jonathan Kaftzan

VP Product Marketing and Innovation Deep Instinct

View

Jonathan Kaftzan

Jonathan is a marketing and business development executive with extensive experience in the global tech industry.
 
Before Joining Deep Instinct, Jonathan previously headed marketing for Amdocs Digital, Intelligence & BSS division. He was responsible for defining, creating and implementing the division’s marketing and business strategy, thought leadership and roadmap. His role includes working closely with customers, helping them to devise strategies and business models for their organizations. Before joining Amdocs, Jonathan worked in consultancy, specializing in business and marketing strategy.

Jonathan holds an MBA from Ben-Gurion University of the Negev and a B.Sc. in industrial engineering from Tel Aviv University.
 

Laszlo S. Gonc
Laszlo S. Gonc

Co-Founder and Managing Partner Next Era Transformation Group

View

Laszlo S. Gonc

Laszlo is a recognized senior executive with 30 years of progressive experience in business and information technology. He is responsible for helping organizations, corporate and non-profit alike, navigate the digital frontier advising on cyber security, IT risk mitigation, and building digital technology strategies that drive performance and business value. He has experience across a number of industries advising senior executives, developing security strategies, evaluating IT risk and spearheading critical security projects for senior leadership – including but not limited to healthcare, manufacturing, insurance, legal, mining, and banking.

Laszlo is a member of the Forbes Technology Council, PEER150 and sits on a number of nonprofit boards and committees. He served as Chair of the Project Management Institute (PMI) Chicagoland Executive Council for a number of years. As a member of FBI Infragard, ISSA and ISACA, he currently serves as Executive Vice President for the Chicago chapter of the Association of Information Technology Professionals (AITP) and Board Member for the Society for Information Management (SIM) Chicago.

In early 2016, he helped form the SIM International Cybersecurity SIG for senior technology leaders and continues to serve as Director of Strategic Programming and Content, collaborating to launch their first national virtual Cybersecurity Conference in 2017.

He is a nationally recognized keynote speaker, invited at professional associations, industry conferences and universities providing thought leadership on the state of cyber security, mitigating technology risk, and helping companies “Go Digital”.

Providing coaching and mentoring at Chicago’s technology incubation and innovation areas, he has experience with Business Model Generation, Design Thinking and Blue Ocean workshops. Laszlo holds a Bachelor of Science Commerce degree in Operations Management from DePaul University and is a certified CISSP security professional.

Leerun Laizerovich
Leerun Laizerovich

Director of Cloud Security Symantec

View

Leerun Laizerovich
Meera Rao
Meera Rao

Senior Principal Consultant Synopsys Software Integrity Group

View

Meera Rao
Nathaniel Eliot
Nathaniel Eliot

CEO The Greenfield Guild

View

Nathaniel Eliot

Nathan is the founder and CEO of The Greenfield Guild, a consulting firm designed to bring DevOps, Cloud Native and Open Source practices and tools to wider audiences. Throughout his two decades in the industry he has worked at companies like Bazaarvoice, Infochimps, and Steve Jackson Games as a system administrator and operations engineer where his primary focus has been on building stable and repeatable infrastructure, often from the ground up. In his off time he enjoys tinkering with blockchain and machine learning, medieval war reenactments and dancing.

Peter Chestna
Peter Chestna

DevSecOps Transformation Consultant  CA Technologies

View

Peter Chestna

Pete Chestna has more than 25 years of experience developing software and leading development teams, and has been granted three patents. Pete has been developing web applications since 1996, including one of the first applications to be delivered through a web interface. He led his company from Waterfall to Agile, and finally to DevOps in addition to taking the company from a monolithic architecture to one based on microservices. Since 2006, Pete has been a leader in the Application Security (AppSec) space and has consulted with some of the world’s largest companies on their AppSec programs. In addition to his role as a contributing editor at DevOps.com, he now shares his experience by speaking internationally at both security and developer conferences on the topics of AppSec, Agile and DevSecOps. Buy him a whisk(e)y and he’ll tell you all about it.

Ron Schlecht, Jr.
Ron Schlecht, Jr.

Managing Partner BTB Security

View

Ron Schlecht, Jr.

Ron Schlecht, Jr. is the Founder and Managing Partner of BTB Security, a cyber security focused services firm that specializes in proactively detecting threats as well as defending against and defeating cyber security adversaries. He uses his background in law enforcement, information security, and forensics to help organizations shield their assets, customers, and employees against security breaches.

Ron believes in going beyond the basics to develop and deliver unique services that protect and bring true business value to BTB’s diverse customer base. A frequent speaker at industry events, Ron constantly studies IT trends and developments to determine how every ‘next big thing’ in IT will affect BTB and their customers.

Before devoting his work fulltime to BTB Security, Ron developed and lead professional service teams by architecting and driving security organizations as a CISO at firms such as Ernst & Young, Black Rock, and KPMG. He is a certified CISSP, CCE, and is affiliated with InfraGard Philadelphia and ISFCE.

Ron holds Bachelor of Science degrees in Computer Science and Criminal Justice from Juniata College in Huntingdon, Pennsylvania—where he continues to serve on the college’s IT Advisory Board.

Future Cyber Tech, Application Security & DevOps Seminars

  • Wed 26th Sep 09:30 - 10:00
  • How integrating Coverity Static Analysis IDE empowers developers and helps strengthen DevSecOps teams Meera Rao  |   Synopsys Software Integrity Group  |   Future Cyber Tech, Application Security & DevOps

    Future Cyber Tech, Application Security & DevOps Theatre

    Wed 26th Sep 09:30 to 10:00

    How integrating Coverity Static Analysis IDE empowers developers and helps strengthen DevSecOps teams

    Software development teams use DevOps to accelerate software delivery. A common misconception is that security can slow this process—which is no longer the case. By integrating and automating security solutions early in the DevOps pipeline, teams can scan every build for security weaknesses and vulnerabilities without affecting velocity. This DevSecOps practice stands in sharp contrast to traditional software security methods where dynamic application security testing takes place later in the SDLC. Easily integrated within IDEs, Coverity provides accurate and comprehensive static analysis that finds critical security weaknesses in code with efficiency and agility. This presentation will illustrate just how that works to support DevSecOps.

    Speaker

    Photo Speaker Name Profile
    Meera Rao Meera Rao View Profile
  • Wed 26th Sep 10:10 - 10:40
  • Brought to you by BAE Systems

    Future Cyber Tech, Application Security & DevOps Theatre

    Wed 26th Sep 10:10 to 10:40

  • Wed 26th Sep 10:50 - 11:20
  • Security 2020: Change The Money Gretchen Marx   |   IBM Security   |   Future Cyber Tech, Application Security & DevOps

    Future Cyber Tech, Application Security & DevOps Theatre

    Wed 26th Sep 10:50 to 11:20

    Security 2020: Change The Money

    Gretchen will provide a view of what Security will look like in 2020 and beyond, addressing challenges like AI implementation, the current skills gap and hiring, and new threat vectors that organizations will face.

    Speaker

    Photo Speaker Name Profile
    Gretchen Marx Gretchen Marx View Profile
  • Wed 26th Sep 11:30 - 12:00
  • Evergreen Development: Recent Tech Trends and Their Implications Nathaniel Eliot  |   The Greenfield Guild  |   Future Cyber Tech, Application Security & DevOps

    Future Cyber Tech, Application Security & DevOps Theatre

    Wed 26th Sep 11:30 to 12:00

    Evergreen Development: Recent Tech Trends and Their Implications

    Recent innovations in open source software orchestration tools (e.g. Kubernetes, Terraform), and widespread adoption of the SRE model, have democratized a path for reliable online services. This session will explore what these changes are about, how to take advantage of them, and what this means for the shape of existing and new business in the coming years.
     
    It will discuss a development model called evergreen development, which relies on the capabilities these social and technical tools unlock. Evergreen uses simple, proven, and principled methods to reduce attack surfaces organization-wide. Standardized build pipelines, rapidly building immutable images that are automatically pinned to the latest stable version, can turn dependency drift from a hard-to-manage problem into an expected (and easily managed) exception. By defaulting builds to using the latest available version, security patches are more regularly deployed to production. Since the vast majority of exploits are known ones, this common sense approach can mitigate or prevent a wide variety of attacks.
     
    The session will also cover the non-security aspects of evergreen development, and how those might help pioneer this style of development at your organization.

    Speaker

    Photo Speaker Name Profile
    Nathaniel Eliot Nathaniel Eliot View Profile
  • Wed 26th Sep 01:00 - 01:30
  • Cyber Security: a modern tale of a dissonant relationship Ron Schlecht, Jr.  |   BTB Security  |   Future Cyber Tech, Application Security & DevOps

    Future Cyber Tech, Application Security & DevOps Theatre

    Wed 26th Sep 01:00 to 01:30

    Speaker

    Photo Speaker Name Profile
    Ron Schlecht, Jr. Ron Schlecht, Jr. View Profile
  • Wed 26th Sep 01:40 - 02:10
  • Everything you always wanted to know about incident response (*but were afraid to ask and for a good reason) Andy Singer  |   enSilo   |   Future Cyber Tech, Application Security & DevOps

    Future Cyber Tech, Application Security & DevOps Theatre

    Wed 26th Sep 01:40 to 02:10

    Everything you always wanted to know about incident response (*but were afraid to ask and for a good reason)

    The threat landscape has changed yet again. What was several years ago an era of advanced attackers seeking valuable data, has transformed to be global disruptive data related plagues, backwinded by nation-states seeking to dictate agenda and terms. In respect to the evolving threat landscape, organizations came to realize that compromise is inevitable and have started to look for ways to respond quickly, automatically and in real-time in order to prevent the next data breach or disruption. The evolving incident response process holds in store a great challenge as the process effectiveness metric is fairly easy to measure. Do you actually know how effective is your current SOC/IR/MDR in detecting, validating, containing and remediating infections in the environment? Are you ready to win the race to your own data?

    Speaker

    Photo Speaker Name Profile
    Andy Singer Andy Singer View Profile
  • Wed 26th Sep 02:20 - 02:50
  • Too Fast Less Furious - Accelerating Application Security with small teams in high flux environments Aditya Balapure  |   Grubhub Inc  |   Future Cyber Tech, Application Security & DevOps

    Future Cyber Tech, Application Security & DevOps Theatre

    Wed 26th Sep 02:20 to 02:50

    Too Fast Less Furious - Accelerating Application Security with small teams in high flux environments

    The presentation is based on learnings of developing  an Application Security Program in small and medium sized companies. The talk discusses some of the challenges and fun times faced with evolving and scaling security with a small team. The conventional security in Continuous Integration/Continuous Delivery, vulnerability management and penetration testing have always been important for security but companies do need to plan for unconventional attack scenarios. The presentation focusses on how we start with the  conventional AppSec fundamentals and at the same time scale a small team to keep an eye on every aspect of high flux environments.

    Speaker

    Photo Speaker Name Profile
    Aditya Balapure Aditya Balapure View Profile
  • Wed 26th Sep 03:00 - 03:30
  • The Intersection of Cybersecurity & Digital Transformation: Strategic DevSecOps for Senior Leaders Laszlo S. Gonc  |   Next Era Transformation Group  |   Future Cyber Tech, Application Security & DevOps

    Future Cyber Tech, Application Security & DevOps Theatre

    Wed 26th Sep 03:00 to 03:30

    The Intersection of Cybersecurity & Digital Transformation: Strategic DevSecOps for Senior Leaders

    Tremendous technology changes in recent years have made exponential leaps in the way we will communicate, interact and transact with each other for generations to come. Firewalls are becoming permeable, our data now lives in the cloud and it’s impractical to protect everything. With these technology risks, how do we balance culture change and innovation while implementing the highest security measures? How do we build in cybersecurity resilience? How do we securely engage our customers in an ever evolving marketplace?

    Learn about DevSecOps. This presentation is designed to provide senior leaders with strategic information on securing your organizations end-to-end value chain using DevSecOps, integrating cybersecurity with the alignment of development and operations. We have now entered the Transformative Age – are you ready to do business in the future?

    Speaker

    Photo Speaker Name Profile
    Laszlo S. Gonc Laszlo S. Gonc View Profile
  • Thu 27th Sep 09:30 - 10:00
  • Preventing the Threats of Tomorrow and Beyond Jonathan Kaftzan  |   Deep Instinct   |   Future Cyber Tech, Application Security & DevOps

    Future Cyber Tech, Application Security & DevOps Theatre

    Thu 27th Sep 09:30 to 10:00

    Preventing the Threats of Tomorrow and Beyond

    AV based solutions that isolate suspicious files based on signatures, heuristic analysis and file reputation is only effective against known malware. As AI technologies mature, we entered the era of Machine Learning: Endpoint protection, detection & response based on features extraction – A big step forward but still limited by the knowledge of a security expert. Learn about the differences between deep learning and machine learning, and how deep learning is revolutionizing cybersecurity.
     

    Speaker

    Photo Speaker Name Profile
    Jonathan Kaftzan Jonathan Kaftzan View Profile
  • Thu 27th Sep 10:10 - 10:40
  • How integrating Coverity Static Analysis IDE empowers developers and helps strengthen DevSecOps teams Meera Rao  |   Synopsys Software Integrity Group  |   Future Cyber Tech, Application Security & DevOps

    Future Cyber Tech, Application Security & DevOps Theatre

    Thu 27th Sep 10:10 to 10:40

    How integrating Coverity Static Analysis IDE empowers developers and helps strengthen DevSecOps teams

    Software development teams use DevOps to accelerate software delivery. A common misconception is that security can slow this process—which is no longer the case. By integrating and automating security solutions early in the DevOps pipeline, teams can scan every build for security weaknesses and vulnerabilities without affecting velocity. This DevSecOps practice stands in sharp contrast to traditional software security methods where dynamic application security testing takes place later in the SDLC. Easily integrated within IDEs, Coverity provides accurate and comprehensive static analysis that finds critical security weaknesses in code with efficiency and agility. This presentation will illustrate just how that works to support DevSecOps.

    Speaker

    Photo Speaker Name Profile
    Meera Rao Meera Rao View Profile
  • Thu 27th Sep 10:50 - 11:20
  • The Evolution of Cyber Crime: A new approach to risk is critical Colin McKinty  |   BAE Systems Applied Intelligence  |   Future Cyber Tech, Application Security & DevOps

    Future Cyber Tech, Application Security & DevOps Theatre

    Thu 27th Sep 10:50 to 11:20

    The Evolution of Cyber Crime: A new approach to risk is critical

    Evolution never stops. This is most evident in the world of cyber crime. Threats constantly mutate, technology progresses and the lines of responsibility blur. Protecting against new forms of attack requires experience of how criminals change their methods. Defenders must use intelligence on adversaries and understand the vulnerabilities of their organization to build a picture of the situation.

    Speaker

    Photo Speaker Name Profile
    Colin McKinty Colin McKinty View Profile
  • Thu 27th Sep 11:30 - 12:00
  • Maginot Line – Common AppSec Anti-Patterns Preventing your Success Peter Chestna  |   CA Technologies  |   Future Cyber Tech, Application Security & DevOps

    Future Cyber Tech, Application Security & DevOps Theatre

    Thu 27th Sep 11:30 to 12:00

    Maginot Line – Common AppSec Anti-Patterns Preventing your Success

    Is your AppSec program stalled? Is it failing to meet your expectations? You may be victim of some common anti-patterns that are keeping you from reaching your goals.  Are you achieving your goals or meeting your metrics but have a sinking suspicion that your ultimate goal of reducing your company’s risk isn’t being met? As the French learned in WWII, a partial defense is no defense at all. The Maginot Line will serve as our metaphor for failed or suspect AppSec programs.

    Speaker

    Photo Speaker Name Profile
    Peter Chestna Peter Chestna View Profile
  • Thu 27th Sep 01:00 - 01:30
  • Secure All your Cloud Workloads in a Modern Enterprise Leerun Laizerovich  |   Symantec  |   Future Cyber Tech, Application Security & DevOps

    Future Cyber Tech, Application Security & DevOps Theatre

    Thu 27th Sep 01:00 to 01:30

    Speaker

    Speaker Name Profile
    Leerun Laizerovich View Profile
  • Thu 27th Sep 01:40 - 02:10
  • The Future of Crypto Crime and the Threat it Poses to Organizational Security Charles Stockwell   |   The Security Stronghold  |   Future Cyber Tech, Application Security & DevOps

    Future Cyber Tech, Application Security & DevOps Theatre

    Thu 27th Sep 01:40 to 02:10

    The Future of Crypto Crime and the Threat it Poses to Organizational Security

    Crypto Crime has existed for almost 30 years. Since Bitcoin's emergence in 2008, however, crypto crime has seen exponential growth that shows no signs of stopping. Now, in 2018, organizations face a plethora of crypto-related threats. As these threats continue to mature and multiply, it is vital that organizations understand and plan for what is to come. In this talk, Charles Stockwell, CEO of The Security Stronghold, will explore the future of crypto crime. He will then talk about the potential impacts to organizational security and best practices for mitigating risk.

    Speaker

    Photo Speaker Name Profile
    Charles Stockwell Charles Stockwell View Profile
Top