Who's speaking at sec4dev 2022?
Philippe De Ryck
Philippe De Ryck helps developers protect companies through better web security. His Ph.D. in web security from KU Leuven lies at the basis of his exceptional knowledge of the security landscape. As the founder of Pragmatic Web Security, Philippe delivers security training and security consulting to companies worldwide. His online course platform allows anyone to learn complex security topics at their own pace. Philippe is a Google Developer Expert and an Auth0 Ambassador for his community contributions on the security of web applications and APIs.
- Keynote: How security affects the people behind the code
- A Builder's Guide to Single Page Application Security (2-day Bootcamp A)
- Ask The Experts!
- A Hands-On Take on Modern Web Security
- Common API Security Pitfalls
- Authentication with OpenID Connect in Angular applications
- Token Security in Single Page Applications
- Bootcamp B: Hands-on API Security for Developers
- Bootcamp B: Cutting-edge Security for Modern Web Applications
- sec4dev Special Meetup
Thomas Konrad
Thomas Konrad focuses on secure software development, web application security, penetration testing, secure software design, architecture, and process, and trains software development teams in those areas.
- Hack Yourself: Hands-On-Webapplikationssicherheit aus Sicht des Angreifers
- User Account Security: So macht man das 2019
- End-to-end File Encryption in the Web Browser: A Case Study
- Software Security 101: Secure Coding Basics, Free For Everyone
- Breakout Sessions: Secure SDLC, Security Automation, Cloud Security
- Breakout Sessions: Secure Software Design, Penetration Testing and Bug Bounty, DevSecOps
Tanya Janca
Tanya Janca, also known as SheHacksPurple, is the author of "Alice and Bob Learn Application Security". She is also the founder of We Hack Purple, an online learning academy, community and weekly podcast that revolves around teaching everyone to create secure software. Tanya has been coding and working in IT for over twenty years, won numerous awards, and has been everywhere from startups to public service to tech giants (Microsoft, Adobe, & Nokia). She has worn many hats; startup founder, pentester, CISO, AppSec Engineer, and software developer. She is an award-winning public speaker, active blogger & streamer and has delivered hundreds of talks and trainings on 6 continents. She values diversity, inclusion and kindness, which shines through in her countless initiatives.
Founder: We Hack Purple (Academy, Community and Podcast), WoSEC International (Women of Security), OWASP DevSlop, OWASP Victoria, #CyberMentoringMonday
Daniel Cuthbert
Daniel Cuthbert is the global head of security research for a global bank. With a career spanning over 20 years on both the offensive and defensive side, he's seen the evolution of hacking from a small groups of curious minds to organized criminal networks and nation state we see today. He is the original co-author of the OWASP Testing Guide, released in 2003 and now the co-author of the OWASP Application Security Verification Standard (ASVS).
Clint Gibler
Clint Gibler (@clintgibler) is the Head of Security Research for r2c, a startup working on giving security tools directly to developers. Previously, Clint was a Research Director at NCC Group, a global security consulting firm, where he helped companies implement security automation and DevSecOps best practices as well as performed penetration tests for companies ranging from large enterprises to new startups. Clint has previously spoken at conferences including BlackHat USA, AppSec USA/EU/Cali, BSidesSF, and many DevSecCons. Clint holds a Ph.D. in Computer Science from the University of California, Davis. Want to keep up with security research? Check out *tl;dr sec*, Clint’s newsletter that contains summaries of artisanally curated, top talks and useful security links and resources from around the web.
Lukas Weichselbaum
Lukas is a Staff Information Security Engineer at Google with 10+ years of industry experience who frequently speaks at international infosec and developer conferences.
He's passionate about securing Web applications from common Web vulnerabilities and leads the Google-wide CSP adoption effort. Lukas also co-authored the CSP3 W3C specification and is the creator of the CSP Evaluator, a tool for developers and security experts to check if a Content Security Policy serves as a strong mitigation against XSS attacks.
Before joining Google, Lukas worked as a Security Consultant and graduated from Vienna University of Technology in Austria where he researched dynamic analysis of Android malware and founded Andrubis - one of the very first large scale malware analysis platforms for Android applications.
Susan McGregor
Susan McGregor is an Associate Research Scholar at Columbia University’s Data Science Institute, where she also co-chairs its Center for Data, Media & Society. McGregor’s research is centered on security and privacy issues affecting journalists and media organizations.
Michael Koppmann
Michael’s consulting activities are focused on the technical aspects of information security. He frequently conducts penetration tests on a wide range of computer systems, including:
- Web application security
- Mobile app security
- Infrastructure security
- Spear phishing attacks
- Source Code Audits
- Architecture Reviews
Michael’s research interests include secure software engineering, and online privacy, as well as functional programming, and mobile security. Currently his main activities concentrate on penetration testing.
Michael is also one of the organizers of sec4dev, SBA Research’s security conference and bootcamp for developers.
