Alina Dorina, IAM Consultant, Canadian Tire Company
Alina Dorina works as Identity and Access Management Consultant for various clients in Canada, implementing new IAM solutions from scratch as well as upgrading existing IAM programs in large financial institutions, retail chains, and transportation agencies. Prior, she worked as a Cyber Security Consultant for one of the Big Four companies on various information security projects.
Alex Reshetniak, Staff Security Intelligence Engineer, Lookout
Alex is a Staff Security Intelligence Engineer at Lookout, where he focuses on finding and analyzing mobile malware. Prior to joining the company, Alex worked at Deloitte, serving as an information security investigator at a large financial institution. His experience includes malware analysis, forensics, and incident response.
Apurva Kumar, Staff Security Intelligence Engineer, Lookout
Apurva Kumar is a Staff Security Intelligence Engineer at Lookout that spends most of her time uncovering and exposing threats as they emerge in and around the mobile space. Her work incorporates threat hunting, reverse-engineering and penetration testing. Kumar also enjoys speaking and writing about her work.
Arezou Hosseinzad, Security Researcher, Lookout
Arezou is a security researcher at Lookout with experience working in different domains of security: software vulnerability research, threat intelligence and incident response. Since 2017, she's been focusing on chasing and reversing mobile malware!
Brynna Nery, Senior Cyber Security Architect, BlackBerry
I am currently a Senior Cyber Security Architect at BlackBerry. For over a decade I've been leading the architecture and implementation of security controls in both on-prem and cloud environments. I am currently residing in a lakeside suburb of Toronto with my husband and three children.
Dennis Chaupis, Cyber Risk Senior Manager, Deloitte
Dennis is Senior Manager at Deloitte (Cyber Risk Advisory), with over 12 years of combined industry and consulting experience. He currently specializes in delivering Cyber Security & Operational Risk related services. Dennis’ has been a member of teams in each line of the 3 Lines of Defense model. In his current role, Dennis is leading the Vulnerability Management & Penetration testing practice in Toronto from where he supports engagements across Canada and globally. He focuses on helping organizations identifying, managing, and remediating vulnerabilities that could lead to a business impact.
Kate Broussard, Senior Security Analyst, Bishop Fox
Katie Murphy, Security Engineer, Credit Karma
Katie Murphy is a community forester, compost educator, rock climber, yogi, and cat parent. When not speaking or writing about infrastructure and IT security, Katie is involved in inclusion and belonging efforts at their day job and participating in events for women in security.
Kristina Balaam, Security Intelligence Engineer, Lookout
Kristina is a Security Intelligence Engineer at Lookout where she reverse engineers mobile malware. Prior to Lookout, she worked as an Application Security Engineer at Shopify focusing mostly on Android mobile security. She blogs about computer security on Instagram, Twitter and Youtube under the handle @chmodxx.”
Lisa Hartman, Associate Privacy Counsel, Shopify
At Shopify, Lisa helps build products that are compliant with privacy laws, is the point of contact for law enforcement requests for data, helps to negotiate contracts that involve data, and advises on security incidents. She attended McGill University and Osgoode Hall Law School, loves the big ethical questions that remain in privacy law, and spends her time listening to true crime podcasts.
Lela Draganic, Data Privacy and Security Consultant, Data Privacy Agency
Lela is about to complete her graduate program at York University’s Department of Politics, where she is researching data privacy laws and the nature of information itself. She started her Master’s program at York after working internationally for 6 years, both in the private and non-profit sectors in Cyprus, Bosnia and Serbia. 4 out of those 6 years were spent implementing US Department of State public diplomacy programs in South East Europe, where she advised offices in 4 countries on data regulation and cyber security procedures. She currently works as a cyber security and data privacy consultant, specializing in enabling small and medium-sized businesses to protect themselves, and become and stay compliant with relevant legislation. Currently in the final semester of her graduate program, Lela expects to receive her MA in Political Science in August of 2019. She speaks 5 languages and has a background in martial arts.
Margaret Syms, Senior Security Engineering Manager, Shopify
Margaret Syms leads a team of security analysts, engineers and software developers in the areas of security compliance, anti-abuse and privacy engineering at Shopify. She is passionate about helping technology companies embed security and compliance practices into engineering teams in a way that supports speed of execution and start up culture.
Marmara El Masri, Cyber Risk Consultant, Deloitte
Marmara is a member of the Cyber Incident Response Team at Deloitte. She completed an undergraduate degree in Computer Security from York University, where she partook in three years of academic cyber security-focused research and presented her work at a number of top-tier cyber security conferences such as ACM Computer and Communications Security (ACM CCS) and IEEE Communication and Network Security (IEEE CNS). Marmara’s work at Deloitte is focused on merging her technical and business knowledge to help organizations detect, contain, and recover from cyber incidents such as data breaches and ransomware. In addition, Marmara helps organizations identify their gaps and implement cyber security controls to proactively protect themselves against possible cyber incidents. In her free time, Marmara enjoys reading, longboarding, and spending time outdoors with friends.
Neetika Bhargava, Manager Cybersecurity, Prodigy Game
Neetika Bhargava is a Manager at Prodigy Game. She is building the information security program from the ground up at Prodigy Game. With her past work experiences at TD Bank and Deloitte Canada, she honed her skills in information security. Neetika has advised clients in financial services, public, and private sectors. Her core skill set includes conducting cyber security assessments, application security, cloud security, and translating data privacy laws into information security initiatives.
Outside work, Neetika is the co-organizer of Leading Cyber Ladies - Toronto chapter and she is a volunteer at Hack Student, a non-profit organization that organizes cybersecurity workshops for middle and high school students.
Opheliar Chan, Director of Advisory, Security Compass Ltd.
Opheliar Chan spends most of her time trying to make software security more accessible, pragmatic, and FUD-free. For over a decade, she has focused on software security, SDLC process consulting and implementations, program building, penetration testing/vulnerability assessments, and related. Prior to her career in consulting, she worked in security research, software development, and technical writing.
Her current 'hats' include: Director of Advisory at Security Compass Ltd. (A software security company), Co-lead of the OWASP Toronto Chapter (Global not-for-profit software security community and advocacy group), SecTor Advisory Committee member (Security Education Conference in TORonto), Advocate for HackStudent (Not-for-profit cybersecurity school for teens).
Peter Yaworski, Application Security Engineer, Shopify
Peter Yaworski is the author of Real-World Bug Hunting: A Field Guide to Web Hacking and Web Hacking 101. He's also a successful bug bounty hunter with thanks from GitHub, Salesforce, Twitter, Airbnb, and the United States Department of Defense, among others. He's currently ranked as a top 100 hacker on HackerOne and a member of the Synack Red Team. He's currently employed as an Application Security Engineer at Shopify, helping to make commerce more secure.
Shenalie Fernando, Cyber Risk Analyst, Deloitte
Shenalie is a member of the Cyber Incident Response Team at Deloitte. She graduated from the Lassonde School of Engineering at York University with a Specialized Honors Bachelor in Space Engineering. As a Space Engineer, her interest in cyber security stems from realizing the current limitations of satellite security and the increasing need to improve resiliency to mitigate attacks on satellites and space based assets. Shenalie’s work at Deloitte focuses on helping organizations mitigate and recover from cyber-attacks and protect their assets, by combining her technical knowledge with her business acumen. In addition, Shenalie focuses on R&D initiatives to create innovative tools to support her team and clients. Prior to joining Deloitte, Shenalie worked as a back end developer at IoT and SaaS companies and founded a startup in the space sector.
Suzanne Dunn, University of Ottawa - Faculty of Law
Suzie Dunn is a PhD student and a part-time professor at the University of Ottawa, Faculty of Law. Her research centers on the intersections of gender, equality, technology, and the law, with a specific focus on the non-consensual distribution of intimate images, deepfakes, and impersonation in digital spaces. She has published several articles and book chapters focused on gender-based violence and privacy laws and has been awarded multiple scholarships for her research, including one of Canada’s top awards, the Joseph-Armand Bombardier Scholarship. Her most recent publication was titled “Data Privacy Laws Response to Ransomware Attacks: A Multi-Jurisdictional Analysis”. In 2018, she advised Global Affairs Canada in drafting two international commitments to end gender-based violence in digital contexts, including a commitment by the G7 and a resolution by the United Nations Human Rights Committee, both of which were adopted. In that same year, she was part of the legal team intervened in the Supreme Court of Canada case R v Jarvis. This case involved a high-school teacher who had used a secret camera pen to take images of his female students for a sexual purpose. In its decision, the Court clarified the term “reasonable expectation of privacy” in the criminal voyeurism provision and convicted Jarvis. This was a key case in the jurisprudence related to image-based abuse. Currently, she sits on Women’s Legal Education and Action Fund’s cybermisogyny working group.
Tarika Chawla, Mobile Application Security Engineer, Lookout
Four years of extensive experience in native mobile development and release management gave me an opportunity to share my learning experience through talks at multiple conferences. I have given talks on Firebase for Push Notifications, Integration using Product Flavours etc. Being a solo mobile developer at a start-up after college encouraged me to share my knowledge through blogs and meetups. I have been an active member of GDG Android Philadelphia and a co-organizer for Philly Cocoaheads for two years. Currently, I am exploring my new passion in Mobile Application Security and Canada.
Teodora Niculae, Legal Counsel, Behaviour Interactive
Teodora Niculae is a Legal Counsel at Behaviour Interactive, a video game publisher and developer based in Montreal. Since graduating from the University of Ottawa, she has advised companies in the entertainment industry and has helped them negotiate commercial agreements that involve technology and data. At Behaviour Interactive, she is also in charge of international privacy compliance and internal policies. Teodora is passionate about achieving a balance between commercial interests related to data and the protection of individual freedoms and rights. In free time, she also likes to practice yoga and attempt to be a home chef.
Vincent Lee, Vulnerability Researcher, Trend Micro
Vincent Lee is a vulnerability researcher at Trend Micro’s Zero Day Initiative (ZDI) program. His primary role involves performing root cause analysis and determining the exploitability of ZDI submissions. Prior to joining ZDI, Vincent served as a researcher at TELUS Security Labs, where he looked at known security issues to provide detection guidance to a variety of security solution vendors.
Vincent has a BASc in Computer Engineering from the University of Toronto and is working towards his CISSP designation. He has previously presented at the BSidesTO, the Mexican and Chilean chapters of the 8.8 security conference, published numerous blogs posts on security issues in various enterprise software, and discovered vulnerabilities in products from Microsoft, Adobe, and Hewlett Packard Enterprise.