Lance James CEO, Unit 2221b
Lance James is a highly experienced information security specialist with over 25 years in the field. He has a programming, network security, digital forensics, malware research, cryptography, counterintelligence, and executive leadership background. He provides advisory services to government agencies and Fortune 500 companies and is known for his contributions to the evolution of security practices and counterintelligence tactics. James has written for several industry publications and is a sought-after keynote speaker globally. He has been featured on MSNBC and an episode of "Mr. Robot" and delivered a Ted Talk on "How Attackers Can Use Your Brain Against You in Psy-Ops."
Marcus Hallberg
My name is Marcus, a security engineer at heart, and I work for Spotify in Stockholm, Sweden. My childhood hero was Sherlock Holmes and as an adult I've tried to fill those shoes by working with cybersecurity detection and response. When I have time off I enjoy rock climbing, folk dancing and cross-country skiing. Looking to meet all the awesome minds at BSidesNYC!
Michael Bargury
Michael Bargury is a security researcher passionate about all things related to cloud, SaaS and low-code security, and spends his time finding ways they could go wrong. He is the Co-Founder and CTO of Zenity, where he helps companies secure their low-code/no-code apps. In the past, he headed security product efforts at Azure focused on IoT, APIs and IaC. He also leads the OWASP low-code security project and writes about it on DarkReading. Michael is a regular speaker at RSAC, OWASP, BSides and DEFCON.
Brian Contos
Brian Contos, Chief Strategy Officer, Sevco Security
With two IPOs & eight acquisitions, Brian has helped build some of the most successful security companies in the world. He has over 25 years in the security industry as a security company entrepreneur, board advisor, investor, and author. After getting his start with the Defense Information Systems Agency (DISA) and later Bell Labs, Brian began the process of building security startups and taking multiple companies through successful IPOs and acquisitions, including Riptech, ArcSight, Imperva, McAfee, Solera Networks, Cylance, JASK, Verodin, and Mandiant.
Brian has worked in over 50 countries across six continents. He authored the book Enemy at the Water Cooler and co-authored Physical & Logical Security Convergence with former NSA Deputy Director William Crowell. He was featured in the cyberwar documentary 5 Eyes alongside General Michael Hayden, former NSA, and CIA Director. Brian writes for Forbes and regularly presents at conferences like Black Hat, RSA, OWASP, and BSides.
Dmitry
Dmitry Bestuzhev is BlackBerry's Senior Director, leading the Cyberthreat Intelligence team responsible for tracking large-scale cyber incidents, espionage, and cyber-crime-motivated campaigns.
In addition to producing contextual cyberthreat intelligence reports, he prepares analytical articles and forecasts. He is a trainer in various topics: threat hunting, malware analysis, threat intelligence, and OpSec. Dmitry frequently presents in educational initiatives, webinars, and international security events.
Before joining BlackBerry, Dmitry oversaw the Global Research and Analysis Team in Latin America in anti-malware and threat intelligence research of financially motivated attacks. He has more than 20 years of experience in different fields of cybersecurity.
Beck (blither)
Beck (blither) has spent over a decade in cyber security, with a consistent blue-team theme of protecting internal assets, platforms, technologies and people throughout the duration of her career. She's passionate in making the world a more risk-averse place through effectively implementing cyber security practices, in both the literal and figurative sense. In her non-cyber life, she enjoys playing with machinery of various sorts and to varying degrees, fixing broken things, creating things, and spending time with her favorite people and four-legged friends.
Alex Holden
Alex Holden is the founder and CISO of Hold Security, LLC. Under his leadership, Hold Security played a pivotal role in information security and threat intelligence, becoming one of the most recognizable names in its field. Mr. Holden researches minds and techniques of cyber criminals and helps our society to build better defenses against cyber-attacks.
François Proulx
François is a Senior Product Security Engineer for BoostSecurity, where he leads the Supply Chain research team. With over 10 years of experience in building AppSec programs for large corporations (such as Intel) and small startups he has been in the heat of the action as the DevSecOps movement took shape. François is one of founders of the NorthSec conference in Montreal, Canada and a challenge designer for their CTF.
Mike McCabe
Michael McCabe is the founder and President of Cloud Security Partners. He founded Cloud Security Partners in 2017 where he uses his 15 years of experience to help create and implement security solutions for clients. Michael’s focus on Cloud Native software security coupled with his experience in Cloud Infrastructure and Security enables Mike to help companies navigate their security challenges by creating unique and client-tailored solutions.
Michael has led teams within startups and large financial institutions, guiding them through their security journeys. Michael’s experience in secure code review and dynamic security testing allows him to help clients identify their risk across applications and infrastructure alike.
Michael is a chapter leader of the OWASP Northern Virginia chapter, where he coordinates speakers and meetups which hosted industry-leading experts. In a addition to that, he has spoken at numerous conferences about subjects across Application Security, Cloud Security and more. He is also the co-host of the Relating to DevSecOps podcast focusing on how to create security solutions that work for real world problems.
When not chasing his two young sons around, he enjoys biking and being an amateur mechanic.
Matteo Rosi
Matteo Rosi, Security Researcher at Contrast Security, is a passionate cyber-security professional with 20 years of experience in the field. Prior to Contrast, he worked as Cyber Security Expert and SOC Manager at Telepass, helping organisations to design and implement all security capabilities and particularly the incident response process. Matteo holds a PhD in Computer Engineering from The University of Florence, the city where he lives with Corinna and their two sons. When Matteo isn't working hard at Contrast Security, you'll find him enjoying dying again and again in Elden Ring.
Mao Sui
Mao Sui and Oxana are Senior Analysts at LookingGlass Cyber Solutions. With their multi-lingual skills and deep understanding of cultural nuances, they conduct research into Chinese and Cantonese – speaking cyberspace, and Russian-speaking cybercrime world, respectively. Their other focus areas include tracking threat actor behaviors, TTPs, ransomware groups, and cybercrime toolkits to develop actionable analyses that provide valuable insights for decision-makers.
Jackie Burns Koven
Jackie Burns Koven is the Head of Cyber Threat Intelligence at Chainalysis, leading the team that tracks cybercriminals and nation state actors stealing, scamming, and extorting cryptocurrency. She spends most of her time combing the blockchain for financial signatures of threat actors and mapping out the underground economy. She is a member of the Ransomware Task Force, which unites key stakeholders across industry, government, and civil society to innovate new solutions countering the ransomware threat. Prior to Chainalysis, she served in the U.S. Intelligence Community.
Eric Olson
Eric helped pioneer the Cyber Intelligence space beginning in 1999, when he worked to develop some of the world's first technologies and methods for mass-scale collection and exploitation of online content for threat identification. Since then, Eric has led technology, development, and product management teams delivering hardware, software and services at a variety of cybersecurity and defense firms. He currently oversees the Threat Intelligence, Threat Hunting, SOC and CSIRT for JetBlue Airways in New York.
Aditya Patel
Aditya is a Security Leader at Amazon, with over 15 years of experience in software and cybersecurity. He is an expert in cloud security, vulnerability and risk management, and threat modeling for enterprises. As a member of the Security Technical Field Community within AWS, Aditya has led numerous enterprise customers in building their cloud security programs. He is also an Amazon Certified Senior Speaker and speaks at local security and global AWS events on various technical topics related to security, privacy, and compliance. He also writes a popular security blog at https://secwale.com.
Ian Davila
Ian Davila is a Lead Adversary Emulation Engineer for Tidal Cyber who is passionate about helping organizations adopt a Threat-Informed Defense. Before joining Tidal Cyber, Ian was a Cyber Security Engineer for The MITRE Corporation.
Ian advanced MITRE ATT&CK® where he researched, developed, and reviewed techniques for the Enterprise domain as a Technique Research Lead. He also supported the software development team of ATT&CK. Ian was part of ATT&CK Evaluations for two Enterprise offerings where he led evaluations and emulated malware used by adversaries.
Ian began his career in Cyber Security in 2015 by competing in CTFs while completing his Bachelor of Science in Computer Science from the University of Puerto Rico, Rio Piedras. He was a Research Assistant for the University of Puerto Rico and interned at the National Institute of Standards and Technology and Carnegie Melon University. After completing his Bachelor of Science, he obtained a Master of Science in Information Security from Carnegie Melon University in 2020 while being an intern for The MITRE Corporation.
Oxana
Mao Sui and Oxana are Senior Analysts at LookingGlass Cyber Solutions. With their multi-lingual skills and deep understanding of cultural nuances, they conduct research into Chinese and Cantonese – speaking cyberspace, and Russian-speaking cybercrime world, respectively. Their other focus areas include tracking threat actor behaviors, TTPs, ransomware groups, and cybercrime toolkits to develop actionable analyses that provide valuable insights for decision-makers.
Anita D'Amico
Dr. Anita D’Amico is Vice President of Cross-Portfolio Solutions and Strategy at Synopsys Software Integrity Group, where she is responsible for software supply chain risk management. Prior to that, she was CEO of Code Dx, Inc., an application security startup. Her roots are in experimental psychology and human factors. She has conducted extensive research and published work on the intersection of technology and human decision making, including how to visualize complex cybersecurity data. She got her start in cybersecurity at Northrop Grumman, where she launched its first Information Warfare team. Anita was named as one of "100 Fascinating Females Fighting Cybercrime” in the book “Women Know Cyber.”
Jacob Faires
Jacob Faires is a Senior Threat Researcher with BlackBerry’s Threat Research & Intelligence team. Jacob collaborates with data scientists, engineers, and intelligence analysts to actively monitor threats and develop cutting edge research focused internally and externally on the evolving threat landscape. Jacob has nearly two decades of experience in the information and technology security sector. Prior to joining BlackBerry, Jacob was a Senior Threat Researcher with NTT’s Global Threat Intelligence Center (GTIC) where he tracked threat actors and advanced persistent threats (APTs), incident response, extended detection and response (XDR) data, and data net flow analysis to effectively identify threat actors and provide detection to NTT clients.
Patrick Matthews
A chaotic good lead security consultant with Nettitude. Who tends to get distracted with hardware, malware and trying to do well to those around me. Over my career I have held positions in most areas of IT, such as a programmer, SOC operator, network, and system administrator. I currently hold a number of industry certificates that allows me to bypass HR role qualification filters. When I'm not on my computer, I pretend to be a farmer and beekeeper.
D Niu
D is a software engineer at Datadog, working mostly on dependency security, kubernetes runtime integrity, and threat intel research. She graduated from Duke University with a degree in Computer Science in 2021 and spends most of her free time doing yoga.
Tom Goodheart
Tom Goodheart started in security after studying economics at Wagner College on Staten Island. A life longer tinkerer Tom spends a majority of his time working on his home lab, hiking, scuba diving, and cooking. Currently, Tom works on JP Morgan and Chase's Attack Analysis Team triaging the variety of alerts an organization of that size offers.
Harry Halikias
As a seasoned professional with over 15 years of experience in cybersecurity and privacy, I am a frequent public speaker and thought leader on the importance of protecting sensitive information. I hold a Master’s Degree in Cybersecurity and numerous certifications, including the CISSP, which have enabled me to comprehensively understand the latest technologies and best practices in the industry.
I am passionate about privacy and believe it is a fundamental right for everyone. I am committed to protecting personal and sensitive data and ensuring that people's information is secure and kept confidential.
As a senior leader in the field, I am dedicated to staying at the forefront of emerging trends and technologies to provide the best possible defense against cyber threats. I am constantly seeking new opportunities to learn, grow, and share my expertise with others, so let's connect.
Abi Waddell
Abi is the founder of Inquirix which provides tailored OSINT services having more than two decades of experience in open source data gathering, attack surface testing, threat assessment and investigations. Abi's recent research has focused on improving OSINT techniques in forensic investigations and vulnerability assessments, attack recon behaviour detection and credential analysis and testing. She has made a number of vulnerability findings which have facilitated data exposure assessments, blue teaming and created tools to help in this work.
Susan Peediyakkal
With nearly 20 years of IT and cybersecurity experience, focused primarily on Cyber Threat Intelligence (CTI), V. Susan Peediyakkal draws on her significant knowledge from working with various intelligence operations in the federal government, commercial, and international domains. Susan's career began in the US Air Force where she has served 20 years, both active and reserve, before retiring in 2021. She joined NASA in October 2020 as the InfoSec Operations Manager for Ames Research Center and recently transitioned to her new role as Service Management Practice Lead for the Cybersecurity Services (CyS) Service Line. An active member of the cybersecurity community; Susan is the founder and director of BSides Sacramento, was named a 2020-2022 technologist fellow for the National Security Institute (NSI) at George Mason University, and appointed to the advisory board for CSU Chico's Executive Program. In March 2018, Susan was named one of “10 Women in Security You May Not Know But Should” by one of the most widely-read cyber security news sites on the Web, Dark Reading.
Dennis Murphy
Dennis Murphy started his career in 1993 as a Control System Engineer, specializing in designing, installing, and maintaining process automation networks in dozens of industry segments, including the Electric Utility sector. In 2005, Mr. Murphy shifted his focus to from designing to securing control system networks, working on R&D projects to secure US critical infrastructure as a member of BAE Systems. In 2015, Mr. Murphy joined SecurityMatters as the first US employee, responsible for the design, installation and support of Intrusion Detection Systems built specifically for OT networks. Mr. Murphy has installed OT specific IDS systems at multiple US electric utility and oil & gas companies, specializing in the integration of OT specific alerts into existing Security Operation Centers and creation of bespoke workflows and playbooks. In 2021, Mr. Murphy joined National Grid as the Lead OT Security Engineer for the Digital Substation group in the US, responsible for securing OT networks with IDS systems and adapting IT-based security solutions to install an edge compute element to field sites. Mr. Murphy, a father of three who currently resides in New Hampshire with his wife, is an active member of the Appalachian Mountain Club, seeking to hike all forty-eight 4000-ft. peaks in NH. Mr. Murphy also enjoys sailing the New England coastline in his free time.
Kevin Apolinario
I worked for an MSP environment, apple store, department of education, and multiple hedge funds. I also have about 12 years of restaurant experience and did 4 years for the NYPD volunteer. Train students, military veterans and provide hands-on training. Tech Trainer for Jobskillshare and Boots to books. My passion is helping others break into IT/Cybersecurity. I recently created a Udemy course which has helped over 12,000 students learn the on demand skills needed to work IT Support.
Ariel Robinson
After a multi-year hiatus of zoom birthdays and remote happy hours, nationally-recognized security speaker Ariel Robinson is back on the circuit with a host of new talks, trainings, and pandemic puppy pics. (He was planned before the pandemic, okay?) With an academic background in cognitive science and linguistics, Ariel has built a career out of using pictures and small words to translate highly technical concepts between vastly different stakeholders (most of whom have little in common besides appearing vaguely humanoid). Ariel's work has brought her face-to-face with some of society's most dangerous members, from Marines, to lawyers, to seven year old's at a birthday party after cake. Outside of her current role as a senior security product manager, Ariel draws, paints, and climbs really big rocks.
Adrianna Iadarola
Adrianna Iadarola is a seasoned cybersecurity professional and business leader with over 15 years of experience in the industry. As the Managing Director at CyberSN, a leading cybersecurity staffing and recruitment firm, Adrianna is responsible for overseeing the company's day-to-day operations, strategic planning, and business development initiatives.
Throughout her career, Adrianna has established herself as a respected thought leader and expert in the field of cybersecurity. She is widely recognized for her ability to navigate the complex and ever-evolving cybersecurity landscape, and her deep knowledge of industry trends, best practices, and emerging technologies.
Prior to joining CyberSN, Adrianna held a variety of senior leadership roles in the IT and Cybersecurity industry,
Adrianna is also a passionate advocate for diversity and inclusion in the cybersecurity industry. She is an ambassador for Secure Diversity, a non-profit organization dedicated to empowering and supporting women in cybersecurity.
Jacob Colacion
Meet Jacob, CyberSN's Lead Recruiter and job-matching platform champion. Jacob stumbled into the cybersecurity field via referral after college, and since then, he's been captivated. He appreciates being part of the community and has had some of the most enlightening conversations with cybersecurity professionals. As the lead of a team of four recruiters, Jacob thrives on placing candidates into their next career move. From kick-off calls with hiring managers to crafting job descriptions and offering resume advice, he and his team strive to provide value wherever applicable.
One of Jacob's proudest accomplishments is the opportunity to train and educate junior recruiters. He's watched them transform and develop, serving the community with a positive and genuine attitude. Jacob's passion for matching professionals to their dream job led him to champion CyberSN's Job Matching Platform. By creating a shared taxonomy between hiring managers and professionals, the platform fosters transparency and stronger matching.
In his free time, Jacob loves attending Bay Area events, especially OWASP, and tinkering around with TryHackMe. He's also an avid reader and enjoys exploring new topics in psychology, science fiction, and buddhism. You'll often find him strolling through San Francisco, enjoying some dim sum and stumbling upon live music.
Adam Mayer
Adam Mayer is a longtime NYCR member and former 3D printer manufacturer. They currently teach classes in electronic salvage and SMT soldering techniques. They spend way too much time thinking about manufacturing, repurposing e-waste, and building robots out of trash.
Gene Radin
Gene Radin is the Head of Product for a startup that collects and processes sensitive data. He’s spent the last 15 years working in Product Management roles where he’s been responsible for the design and delivery of web-based services that depend on and generate sensitive data. He’s been involved in many aspects of new and mature product development, ranging from strategy to content, design and a lot of testing! He is a proponent of digital privacy rights and volunteers his time to support related initiatives through education, advocacy on public policy, and art.
Glenn P. Edwards Jr. is an Incident Response Engineer at Block where he specializes in Incident Response and Digital Forensics. Glenn holds a M.S degree in Digital Forensics from the University of Central Florida as well as a B.S. degree in Information Security and Privacy from High Point University.
Dave Giancaspro
Jamie Levy is the Director of R&D at Huntress. Jamie is also a senior researcher, developer and board member of the Volatility Foundation. She has worked over 15 years in the digital forensics industry, conducting investigations as well as building out software solutions. Jamie is also a co-author of The Art of Memory Forensics, the first book of its kind covering various facets of how to investigate RAM artifacts.
I design security solutions and shepherd them to a sustainable state. I used to be hands-on in many areas of cybersecurity and IT. Now I focus on strategy and leadership, treating security as an enabler that helps people and companies achieve their goals. As the CISO of Axonius, I lead the security program to earn customers’ trust and fuel the company’s growth. Earlier, I built security products and services. I’m also a Faculty Fellow at SANS Institute, where I help professionals develop malware analysis skills.
To learn more about me, explore my blog at zeltser.com. You can connect with me on Twitter at https://twitter.com/lennyzeltser or Mastodon at https://infosec.exchange/@lennyzeltser.
Shweta Jain
Shweta Jain is Professor and Graduate Faculty at John Jay College, a Doctoral faculty at The Graduate Center of CUNY, and Graduate Director of the Digital Forensics and Cyber Security Master’s program. She has served as PI and Co-PI of NSF CISE and IIP grants. Her most recent work is in creating a blockchain backed technology to support media authentication with applications in digital forensics. She has 15+ years of experience in R&D and has mentored several undergraduate and graduate students during her career as an educator. She has 20+ publications in the area of network architectures, wireless network protocols, and blockchain applications.
Janine Medina
Coordinator extraordinaire who makes things go at BSidesNYC. If you want to know more, you’ll have to ask her yourself
