Philippe De Ryck helps developers protect companies through better web security. His Ph.D. in web security from KU Leuven lies at the basis of his exceptional knowledge of the security landscape. As the founder of Pragmatic Web Security, Philippe delivers security training and security consulting to companies worldwide. His online course platform allows anyone to learn complex security topics at their own pace. Philippe is a Google Developer Expert and an Auth0 Ambassador for his community contributions on the security of web applications and APIs.
Pascal Schulz is an IT security engineer at Dynatrace Austria, the world's leading provider of application performance management solutions. After completing his master's degree in "Secure Information Systems" in Hagenberg, Pascal was involved in the foundation of the Dynatrace security team. Currently, he focuses on managing and executing penetration tests, both internally and externally. Additionally, Pascal engages in automating security checks and he trains employees continuously. He also runs the Hacksplained YouTube channel.
Thomas Konrad has been part of SBA Research's software security team since 2010. He focuses on secure software development, web application security, penetration testing, secure software design, architecture, and process, and trains software development teams in those areas.
Reinhard Kugler is senior security consultant at SBA Research. His main focus is software security, and additionally he has a background in electronics. His current work in IoT security is to provide professional services for customers, to assess hardware systems in a limited timeframe and to contribute to research projects in the field of industrial systems.
Mathias works as an information Security consultant at SBA research specialising in Penetration Testing, Linux Security and Applied Cryptography. He is also a lecturer at FH Campus Wien teaching in the master program of IT Security. He has has publications accepted at several events and gives talks on national and international platforms.
Dr. Lukas Feiler, SSCP, CIPP/E, has more than eight years of experience in IP/IT and is a partner and head of the IP and IT team at Baker McKenzie • Diwok Hermann Petsche Rechtsanwälte LLP & Co KG in Vienna. He is a lecturer for data protection law at the University of Vienna Law School and for IT compliance at the University of Applied Science Wiener Neustadt. Prior to joining the Firm, Lukas was an associate at the Austrian headquarter of an international law firm, vice director at the European Center for E-Commerce and Internet Law, and an intern at the European Commission, DG Information Society & Media. Having worked at IT companies in Vienna, Leeds, and New York, he has experience as a system and network administrator. In April 2014, Lukas has been named as Cyber Security Lawyer of the Year for Austria in the 2014 Finance Monthly Law Awards. In 2011, he received the Jus-Top-League Award from Die Presse and the Academy for Law, Taxes & Business as one of the five most promising up-and-coming lawyers.
Dimitrij Klesev is a Senior DevOps Engineer in the IT-Consultants Tech Team of WhizUs GmbH. His primary focus are distributed systems, such as Kubernetes, but also IT security relevant topics. Together with the ÖBB operations team, he implements various on-premise and cloud kubernetes setups from concept to production.
Johanna is key researcher at SBA Research and leads the Networks and Critical Infrastructures Security Research Group. Based on Johanna’s interdisciplinary background, her research focuses on security at the intersection of computer science and classical engineering. Recently, she worked on attacks against the power grid and aspects of network security, in particular measuring experiments and IPv6. Among others, she has proven that the IPv6 Privacy Extension as specified in RFC 4941 and implemented in major operating systems is vulnerable.
Tanya Janca, also known as SheHacksPurple, is the author of "Alice and Bob Learn Application Security". She is also the founder of We Hack Purple, an online learning academy, community and weekly podcast that revolves around teaching everyone to create secure software. Tanya has been coding and working in IT for over twenty years, won numerous awards, and has been everywhere from startups to public service to tech giants (Microsoft, Adobe, & Nokia). She has worn many hats; startup founder, pentester, CISO, AppSec Engineer, and software developer. She is an award-winning public speaker, active blogger & streamer and has delivered hundreds of talks and trainings on 6 continents. She values diversity, inclusion and kindness, which shines through in her countless initiatives.
Founder: We Hack Purple (Academy, Community and Podcast), WoSEC International (Women of Security), OWASP DevSlop, OWASP Victoria, #CyberMentoringMonday
Alyssa Miller (CISM) is a life-long hacker, security advocate, author, and public speaker with almost 15 years of experience in security roles. She has always had a passion for deconstructing technology, particularly since buying her first computer at the age of 12 teaching herself BASIC programming. Alyssa’s professional track record includes over a decade of penetration testing, leading the security testing and vulnerability management program for a Fortune 500 Financial Technologies firm, and heading the application security program practice for an application security consulting firm. In her current role as BISO, Alyssa now directs the security strategy for S&P Global Ratings.
Alyssa is committed to advocating for improving security practices and the community. Not only does she speak internationally at various industry, vendor and corporate events, Alyssa also engages in the community through her online content, media appearances, and security community activism. Her views, research, and career journey have been featured in “Tribe of Hackers: Blue Team”, SC Magazine, and Cybercrime Magazine respectively. Alyssa is chapter leader for Women of Security (WoSEC), Advisory Board Member for BlueTeam Con, and a member of the WiCyS Racial Equity Committee.
Martin's current main activities are penetration testing of web applications and company networks. His specialist domains are Windows Active Directory and cloud computing infrastructure security.
Rudolf is senior researcher at SBA Research and leads the Machine Learning and Data Management Research Group. He is a lecturer at TU Wien as well as University of Applied Sciences Technikum Wien.
Tanja’s research interests focus on privacy-preserving data analysis, including techniques such as data anonymisation. Her research interests also include data and machine learning models leakage detection by mechanisms such as watermarking and fingerprinting, focusing on the robustness and effects on data utility for fingerprinting schemes.
Julien Vehent is a security engineer, DevSecOps advocate and author of the book Securing DevOps. He works on Cloud security in Google's Detection and Response team. Previously, Julien ran the Firefox Operations Security team at Mozilla.
Artem was responsible for running end-to-end application security programs for several major financial institutions in Russia and was focused on every aspect of it, from design to security testing to process supervision. Now working as a principal security engineer at Advanced Software Technology Lab at Huawei.
Ph.D. in Computer Science, CISSP, CSSLP. Over ten years of working experience in IT security evaluation and application security. Current position is a Principal Security Engineer at Advanced Software Technology Lab, Huawei. Associate Professor at Bauman Moscow State Technical University, OWASP contributor.
Thomas has been active in the field of information security for over 20 years. As principal security consultant and team leader at SEC Consult he is currently engaged in projects concerning Secure Software Development, where he incorporates his experience as a former penetration tester and security architect.
Amir Sharif received his Degree in Secure Communication at the Imam Reza International University, Mashhad, Iran, in 2015.
He is a Ph.D. student at the University of Genova, working in the Security & Trust Research Unit of Fondazione Bruno Kessler in Trento (Italy).
His research focuses on Identity and Access management.
Christine Wahlmüller started her career in journalism (OÖN, Kurier, Profil, Die Presse, ORF), but soon switched to marketing and PR. She worked as Marketing and PR-director for well-known companies in the ICT industry. Since 2003 she has been working as an IT specialist editor since, initially for the IT magazine Monitor (Bohmann Verlag) and since 2016 for the IT specialist magazines Computerwelt and it & tbusiness. In addition, the Upper Austrian, who has a doctorate in communication science, has been a successful moderator of IT expert groups and at business events, including the CIO Congress, LSZ Events, the Forum Alpbach or the ReMep Legal Tech Conference, for many years. In 2012 she founded her own company with CWS Communications. In addition to her work, she has been supporting the Association of Austrian Software Industry (VÖSI) in Marketing & Communication since August 2019. Increasing the visibility of women in the ICT industry has been a concern of her for many years. In February 2020 she founded the special interest group WOMENinICT in VÖSI together with some other women.
Daniela is a Technical Product Manager at Dynatrace. She is currently focusing on the integration of OpenTelemetry data into Dynatrace. Before that she's been responsible for broadening and deepening monitoring capabilities for enterprise cloud platforms. Before joining Dynatrace, she conducted research in the area of variability modeling. Daniela holds a Master’s and a Ph.D. degree in Computer Science from Johannes Kepler University Linz. In her free time, she’s mostly chasing after her 18 months old daughter.
Evelyn Haslinger is co-founder and COO of the software testing startup Symflower. Her company employs mathematical models and artificial intelligence to fully automate the entire software quality assurance process. Prior to founding Symflower she worked as a senior developer and scrum master at Sophos in the domain of encryption. After finishing her MSc in Computer Science she worked as a researcher in the area of software product lines at Johannes Kepler University.
Pia is a software developer based in Linz mainly working on business applications implemented with the Spring Framework in Java/Kotlin and web applications implemented with Angular. Furthermore, she teaches part-time at a coding Bootcamp located in Linz.
Pia is passionate about technology, the environment, enabling women in the IT industry and education and therefore can be frequently found at one of Linz' local meetups or mentoring at the CoderDojo. Moreover together with some female colleagues, she started a programming club for women aimed to encourage more women to join the IT industry.
Hannah Wundsam is Managing Director of AustrianStartups, Austria's largest platform for promoting entrepreneurship in Austria.
Previously, she took her first steps in the world of tech CEOs herself as the founder of a green tech startup. In her current role, her goal is to give more young people the courage to pursue their own ideas.
Maha is an information and cyber security expert and works at Vienna University of Economics and Business as Chief Information Security Officer.
She obtained her bachelor’s degree in integrated security and safety management at the University of Applied Sciences in Vienna. Currently, she focuses on embedding cybersecurity into digital transformation and leads trainings about IT security. Her ambition is to sensitize to information security and data privacy for an increasingly digitized world.
Martina Lindorfer is an Assistant Professor in the Security and Privacy Group at TU Wien. She is also a key researcher at SBA Research, the largest research center in Austria which exclusively addresses information security. She received her PhD degree from TU Wien in 2016 and spent two years as a postdoctoral researcher in the SecLab at the University of California, Santa Barbara before starting her tenure track in 2018.
Her research focuses on systems security and privacy, with a special interest in static and dynamic malware and app analysis, as well as mobile system vulnerabilities. She is passionate about building large-scale analysis systems and providing them to the community.
Picture Copyright @ Luiza Puiu
Abdessamad Temmar is an appsec engineer at Siris Advisory, an french consulting company, and an active contributor to the OWASP community. Previous speaking engagements include both DevOps and Security/Hacking conferences.
Adela Mehic-Dzanic is a businesswoman, female tech leader, speaker and a mentor. Originally from Bosnia, 7 years ago she moved to Vienna with her husband and started building her career from scratch. Today, she works at the executive level of the software company MAVOCO AG and serves as Vice President of the Female Leaders Network of the WU Executive Academy as well the Vice President of Business Women of BiH.
Adela’s mission for 2020 was to impact 1000 women and girls in IT and beyond with her career story. This experience allowed her to meet women from all walks of life, who are determined, ambitious, supportive and very often the only woman in the room.
In December 2020 she launched a YouTube Channel – Making it in Austria, where she interviews real people who made a successful career in Austria, starting from scratch.
She strongly believes in the power of networking and building long-lasting relationships for advancing one’s career and she had been very vocal about it through her extensive LinkedIn network.
As Vice President of WU EA Female Leaders Network, she is committed to serving the global community of WU MBA Alumnae and finding the right tools to support them on taking their career to the next level. Under the motto “Together we are stronger!”.
Magno Logan works as an Information Security Specialist for Trend Micro Cloud and Container Security Research Team. He specializes in Cloud, Container and Application Security Research, Threat Modelling, Red Teaming, DevSecOps, and Kubernetes Security, among other topics. He has been tapped as a resource speaker for numerous security conferences around the globe including Canada, USA, Portugal and Brazil. He is also the founder of JampaSec and a member of the CNCF SIG-Security team.
Michael’s consulting activities are focused on the technical aspects of information security. He frequently conducts penetration tests on a wide range of computer systems, including:
Michael is also one of the organizers of sec4dev, SBA Research’s security conference and bootcamp for developers.
Dani is the leader of the Cyber Security EMA practice and is the Head of the Cyber Security practice in Ireland. She previously led the Cyber Security and Emerging Technology Risk Practices for KPMG Malaysia and ASPAC region. Dani also led KPMG’s global IoT working group. Dani has worked with government agencies on national cyber security strategies and with international regulatory bodies on cyber risk agenda and regulatory landscape. She has extensive experience of working with clients on improving board understanding of cyber security matters and building up cyber security teams in her acting CISO roles for telecommunications and power companies in Asia. She is an advocate for inclusion & diversity, and women participation in computer science and cyber degrees.
Jan has been a pre-sales consultant for application security for 2 years and is always happy to take care of new projects for customers in the DACH region.
Dr. Maria Leitner is a Scientist in the Center for Digital Safety & Security at AIT Austrian Institute of Technology. Dr. Leitner is topic lead of the AIT Cyber Range and has designed and implemented strategic and technical trainings and exercises with altogether more than 350+ participants. Her research is located on the intersection of cyber security, information systems and human computer interaction and aims to support organisations to increase awareness and information security by applying novel methods such as strategic awareness games or cyber security exercises. She is a member of ACM and IEEE, has edited 2 books and has published over 40 refereed articles and conference papers.
As an IT Project Manager and IT Change Manager, Doris Schlaffers' work activities focus on the human aspects of digital transformation such as employee acceptance or the successful integration of new technologies into already existing corporate cultures and processes. Also, she's specialized in various Microsoft 365 services such as Microsoft Teams, Yammer and SharePoint Online.
Doris graduated from the Graphische in Vienna for Multimedia Design and only found her way into IT by accident. Since then, she has put her heart and mind into it and founded the IT women's network #TheNewITGirls.
Currently employed as Senior Manager in the Cyber Security unit of KPMG Netherlands, and responsible for business development and growth of our Microsoft Security practice both nationally and globally. Besides that, in my role as engagement manager and subject matter expert, I lead projects at large organisations in various industry sectors such as Finance, Energy, Construction and Public. Furthermore, I have leading role in both Identity and Access Management and Cloud Security propositions.
Besides my work at KPMG, I am a Board Member of the Cloud Security Alliance in The Netherlands. My core activities concern organising periodic Cloud Security conferences and enabling the development and exchange of thought leadership.
In recent years, I have performed and published research on Cloud Security, Cloud Risk Management and Identity and Access Management and facilitated presentations, trainings and lectures related to these topics.
Juarez Barbosa Junior has +20 years of experience in several IT-related roles throughout his career, currently working for Microsoft as the Azure Developer Relations Lead in Ireland.
Previously, he's worked for Oracle as a Principal Blockchain Developer Advocate and as Thought Leader and Technical Evangelist in IBM Mobile and IBM Watson.
He's passionate about engaging developers and communities to present and discuss the latest technologies related to Blockchain, IoT, Cloud Native, AI and other Emerging Technologies, with a particular focus and interest in Microsoft Azure.
Timon has been working with Fortify for almost 6 years, knows some basic programming in different languages and in his free time he likes to go searching for missing semicolons.
Mitun has a wealth of experience in DevSecOps architecture, development and management. Currently working with Global Enterprise Organisations, Mitun helps protect Enterprise company software by remediating risk and preventing vulnerable software components entering your software supply chain.
Martin is a security engineer and responsible for the internal IT security at Bitpanda. Employee awareness, SIEM alert investigations, vulnerability scanning and browsing twitter for new OSINT techniques are near and dear to his heart. Previously, Martin led the Security Operations team for an Austrian Service Provider.