Kristy Edwards is a recognized thought leader in cybersecurity, information risk and privacy. She has led cybersecurity and data privacy discussions with technical audiences and government authorities in the US, the EU and Africa. She is a co-inventor of US patents in database security. Kristy joined Lookout in 2015 as Director of Product Management for Security Intelligence. Recognizing mobile as the new endpoint and as both a top enabler and risk for enterprises and government, she’s merged her interests in security and mobile. Kristy has built Information Security and Data Privacy teams in enterprise software, Cloud and HealthIT organizations. She has been an advisor on product development, information risk and architecture, and has served on cybersecurity advisory boards. Her career started in mobile, holding positions at Psion (Symbian) in San Francisco and London -- long before happily returning to mobile in joining Lookout.
Ainsley Braun is the Cofounder and CEO at Tinfoil Security, providing security tools for developers and DevOps teams at enterprise companies. She cofounded Tinfoil Security with MIT alumnus, Michael Borohovski, and since its launch in 2011, the company has provided security for tens of thousands of clients, ranging from SMB’s to Fortune 500 companies. Ainsley earned two Bachelor of Science degrees, one in Brain and Cognitive Sciences and the other in Writing, from Massachusetts Institute of Technology (MIT) in 2010. She has co-authored four patents and has published two papers.
Ainsley is a member of the Silicon Valley Leadership Group (SVLG), which represents more than 400 of Silicon Valley’s most respected employers on issues, programs, and campaigns that affect the economic health and quality of life in Silicon Valley. She also mentors early-stage startup founders at StartX (a Stanford affiliated accelerator program), as well as sits on the Female Founders Board Member, and is part of their Selection Committee. Ainsley is also part of the California Technology Council as a Women's Cyber Initiative Board Member. There is a shortage of women in cybersecurity professions, and the purpose of this initiative is to discover ways in which to encourage women of all ages to find an interest in careers within information technology.
Ainsley is also a co-Captain of the Samurai Capture The Flag (CTF) team, winning the DEF CON tournament in 2012, which has been referred to as the “World Hacking Olympics”. After winning this competition the team continued to recruit members with the mission to support offensive cybersecurity education and mentorship. Members of the group have since competed in CTF competitions across the world (including Korea, Japan, China and the US).
Ainsley also volunteers by fostering orphaned kittens for the Humane Society of Silicon Valley, where she also mentors and trains other volunteers.
Carolyn Lear is an IT and Security Executive with broad experience implementing information security, risk and compliance systems, and strategies across multiple business sectors with global operations. Her expertise includes managing enterprise-wide technical processes, performing detail security assessments, and aligning security best practices with business solutions to affect measurable improvements.
Currently, Carolyn serves as Senior Leader, Products and Services Cyber Security for GE Digital, an IoT Cloud division of GE Corporation. Carolyn brings more than 16 years of direct IT and security management experience to this role, and currently leads the SDLC program for GE Digital.
Previously, Carolyn directed and delivered major security initiatives within the Cloud, Financial and Insurance industries, and served as a guest panelist at the 2013 RSA Security Conference and 2013 BSides Los Angeles Security Conference, and CFP Committees for Bsides Las Vegas and San Francisco. Recognized as a thought leader in Information Security, Carolyn has led the delivery of numerous client-facing engagements requiring strategic oversight and assessment of complex enterprise vulnerabilities.
Carolyn earned an MBA from Franklin University, a BS in Information Systems from DeVry University, and a BA in English from Muskingum University. She has held the Certified Information Systems Security Professional (CISSP) certification since 2006.
Carolyn is actively involved in the Information Systems Security Association (ISSA) and participates in quarterly Executive CISO Executive Network Roundtables and ISE (Information Security Executive) events.
Jyothsna is a Full-stack engineer with 13 years of IT experience in various platforms from embedded systems to industrial internet, focusing on security technologies. Jyothsna is currently a full time Staff Product Security Analyst at GE Digital.
Prior to transitioning to a full time cyber security career path, she worked on and managed Test Automation of security features in several computing technologies including firmware, enterprise software, mobile, cloud, and Industrial IoT. During this time, she was instrumental in understanding several security features, and providing automation solutions involving mobile and cloud enterprise software.
Jyothsna earned a Masters degree from San Jose State University in Computer engineering and recently acquired Certified Information Systems Security Professional (CISSP) in addition to being an AWS Certified Solutions Architect.
Eva Galperin is EFF's Director of Cybersecurity. Prior to 2007, when she came to work for EFF, Eva worked in security and IT in Silicon Valley and earned degrees in Political Science and International Relations from SFSU. Her work is primarily focused on providing privacy and security for vulnerable populations around the world. To that end, she has applied the combination of her political science and technical background to everything from organizing EFF's Tor Relay Challenge, to writing privacy and security training materials (including Surveillance Self Defense, Digital First Aid Kit, and Security Education Companion), and publishing research on malware in Syria, Vietnam, Kazakhstan, and Lebanon. When she is not collecting new and exotic malware, she practices aerial circus arts and learning new languages.
Amanda absolutely loves malware. She works as a Senior Malware Researcher at Endgame who focuses on dynamic behavior detection both on Windows and OSX platforms. She worked as a malware researcher at FireEye before joining Endgame. She previously worked a reverse engineer and computer forensic examiner working for DoD forensic investigations and commercial incident response engagements. She received her MS in Information Systems Engineering from Johns Hopkins University. Research interests include malware evasion techniques, dynamic behavior classification, and developing runtime detections.
Jason Haddix is the VP of Trust and Security at Bugcrowd where he works to improve the security industry’s relations with researchers. Jason started at Bugcrowd as the Director of Technical Operations where he trained and worked with internal security engineers to triage and validate hardcore vulnerabilities in mobile, web, and IoT applications.
Jason's interests and areas of expertise include mobile penetration testing, black box web application auditing, network/infrastructure security assessments, and static analysis. Jason lives in Santa Barbara with his wife and three children. Before joining Bugcrowd Jason was the Director of Penetration Testing for HP Fortify and also held the #1 rank on the Bugcrowd leaderboard for 2014-2015. He is currently ranked 14th world-wide.
Leif is an Application Security Engineer at Segment, and has previously worked at Bugcrowd and Redspin. At Redspin his primary focus was performing application security assessments using Burp Suite. He is a founding organizer of the AppSec California conference and member of the Bay Area OWASP Chapter. He has presented at security conferences including BlackHat Arsenal and various B-Sides events.
Arianna Willett is the Security Risk, Trust & Compliance leader at Twilio. Over the course of her career, she has created and run security programs for companies ranging in size from startup to Fortune 200. She is passionate about using transparency as the foundation of a successful business relationship. Ari graduated from Bentley University with a degree in information systems.
Shelley Wu is an Infrastructure Security & Incident Response Software Engineer at Twilio. She recently graduated from Duke University, where she studied Computer Science and Public Policy. As someone who has always been fascinated by the intricacies behind protecting people and their information, she strives to develop tools and capabilities to seamlessly integrate security controls into business processes.
Kelly Albrink (GWAPT, GCIH, GSEC, OSCP, CCNA CyberOps, Sec+) is a Security Analyst at Bishop Fox, a security consulting firm providing services to the Fortune 500, global financial institutions, and high-tech startups. In this role, she focuses on network penetration testing and social engineering.
Kelly was a 2017 recipient of the SANS CyberTalent Immersion Academy scholarship. In late 2017, she presented at the DeadDrop San Francisco Meetup on the topic of red teaming. As well, she participated in the NetWars Tournament of Champions, a national competition. She frequently attends OWASP meetings as well as volunteers with her local hackerspace, Noisebridge. At Noisebridge, Kelly organizes Infosec Lab Nights where aspiring penetration testers can practice their craft in a realistic environment. Furthermore, she has ranked highly in several other capture the flag (CTF) competitions.
Prior to Bishop Fox, Kelly worked in the art world for several years as a gallery director. Kelly holds a Bachelor of Arts from New York University with a major in Literature.
Ty Sbano is an Information Security leader with over 12 years of experience mainly in Financial Technology organizations. Ty's career has been focused on developing application and product security programs for LendingClub, Capital One, JPMorgan Chase, and Target. Key areas of knowledge include developing security champions, threat modeling, secure code training, static code analysis, component analysis, dynamic analysis, penetration testing, and red teaming. Ty’s security mentality has been concentrated on enabling engineering and product teams to securely move at the speed of the business to make it a competitive advantage. Ty graduated from Penn State University with a B.S. in Information Science & Technology and from Norwich University with a M.S. in Information Assurance.
Manju Mude is an industry Security leader with nearly 20 years of experience in building information security, risk management, security investigations, and vulnerability reduction programs. She is a “Paranoid” Security Leader at Oath, where she helps lead an essential security team defend against adversaries to protect a billion of users. At Oath, she has launched “Paranoids University”, an internal training program that teaches all employees on building secure code and systems. Prior to joining Oath, Manju held several leadership positions, including Chief Security Officer of Splunk, Security Leader at Apple, RSA, and Bank of America.
Robert Fly is co-founder and CEO of Elevate Security where they are building a security behavior change platform aimed at improving employees security postures through behavioral and data science. Prior to Elevate Security, Robert was an executive advisor for several security startups and built and led security and engineering teams at Salesforce and Microsoft for 17 years. He holds more than a dozen patents in security and was a founding member of the Cloud Security Alliance.
Nicole Fish is a professional dancer turned software engineer passionate about building tools that empower people. In her current incarnation at Elevate Security, she gets to combine her academic background in psychology with her love of coding to facilitate security behavior change through gamification and experiential learning.
As a fierce STEMinist and a proud graduate of an all women’s coding bootcamp/ feminist utopia, Fish is dedicated to paying it forward, including teaching women to code through Girl Develop It SF, mentoring underrepresented minorities one-on-one through tech job searches, and speaking on panels about nontraditional paths into tech.
Fish was lucky enough to be chosen to attend the very first Day of Shecurity, where she won the grand prize to DEF CON 2017.
Surbhi Shah is a Software Engineer at Lyft Security where Surbhi develops tools to enforce authentication and authorization of Lyft Employees
to protect security and privacy of Lyft customers. She also works on static analysis tools to automatically identify vulnerabilities.
Surbhi joined Lyft Security after finishing her Masters in Information Security from Carnegie Mellon University. She found her calling in Information Security after running CTF competitions at Microsoft and pen-testing web applications at Salesforce.
Surbhi loves hiking and exploring new places and tries her hand at sketching and origami every once in a while. Please email email@example.com to contact her.
Divya Natesan is a Senior Security Engineer with NCC Group, a global assurance specialist providing organizations with expert security consulting services. Having been with NCC Group's San Francisco office for over 3 years, she has managed and led complex engagements involving dozens of large enterprise clients and start-ups. Divya’s cumulative experience comprises of testing and analyzing web applications, network security, mobile application security, OAuth implementation security review, AWS configuration review, Azure configuration review, Hadoop configuration review, Virtualization security assessments in addition to performing architecture security reviews and threat modeling. Before NCC, Divya Natesan worked at Google as a security engineer, where she was involved in monitoring and developing the infrastructure for Google's network and systems against threats to information security. Divya Natesan graduated from Carnegie Mellon University with a masters degree in information technology, specializing in information security. Her bachelor's degree was in computer science and engineering from Amrita University, India. Her paper titled, 'A Technique of Leveraging Human Factor to Facilitate Scientific Service Discovery and Recommendation' was selected to appear in the 10th IEEE International Conference on Services Computing.