#security

Subscribe
Feross Aboukhadijeh
Feross Aboukhadijeh
Socket, USA
Talk: It's a Jungle Out There: What's Really Going on Inside Your Node_Modules Folder
Feross is the founder and CEO of Socket, where he's working on a new approach to supply chain security by auditing every package on npm to detect suspicious changes and block supply chain attacks without slowing the development process. Feross is the author and maintainer of WebTorrent, StandardJS, and 100s of other open source projects. His software is downloaded 500+ million times per month. He was a lecturer at Stanford where he created the course CS 253 Web Security.
Matthew Salmon
Matthew Salmon
Snyk, Romania
Talk: Finding, Hacking and fixing your NodeJS Vulnerabilities with Snyk
Engineer Graduate, Software testing ISTQB certified and professional experience as a Software Developer. Current Solutions Engineer as Snyk.
Vandana Verma Sehgal
Vandana Verma Sehgal
Snyk, India
Talk: New Way of Envisioning Security in the Dependencies
Vandana is a Security Relations Leader at Snyk with a current focus on DevSecOps. She has extensive experience in Application Security, Vulnerability Management, SOC, Infrastructure Security and Cloud Security. Vandana is a seasoned speaker and trainer. She presented at various public events ranging from Global OWASP AppSec events to BlackHat events, to regional events such as BSides events in India. She is on the OWASP Global Board of directors (Vice-Chair). She also works in various communities towards diversity initiatives such as InfosecGirls, InfosecKids and WoSec. She is a recipient of multiple awards and is listed as one of the top women leaders in technology and cybersecurity in India. She won the Indian Achievers’ Award for contributing to the community's enablement.
Scott Gerlach
Scott Gerlach
StackHawk, USA
Talk: Automated Application Security Testing
Scott Gerlach is Co-founder and Chief Security Officer at StackHawk, a Denver-based startup focused on empowering engineers to easily identify and remediate security bugs. Scott brings over two decades of security and engineering experience to his current role, having served as CSO, CISO, and in other executive leadership functions at companies like SendGrid, Twilio, and GoDaddy. When he's not at work, you'll find Scott spending time with family, brewing beer, and playing guitar.
Adam Abramov
Adam Abramov
DoubleVerify, Israel
Talk: Finding Stealthy Bots in Javascript Hide and Seek
Adam Abramov is an 8200 alumni, cybersecurity professional and DoubleVerify’s one and only reverse engineer. In his job he deconstructs ad fraud schemes and creates systems that detect them at scale. Previously he researched vulnerabilities, mainly focused on browser security.
Liran Tal
Liran Tal
Snyk, Israel
Talk: How React Applications Get Hacked in the Real-World
Liran Tal is a software developer, and a GitHub Star, world-recognized for his activism in open source communities and advancing web and Node.js security. He engages in security research through his work in the OpenJS Foundation and the Node.js ecosystem security working group, and further promotes open source supply chain security as an OWASP project lead. Liran is also a published author of Essential Node.js Security and O'Reilly's Serverless Security. At Snyk, he is leading the developer advocacy team and on a mission to empower developers with better dev-first security.
Liran Tal
Liran Tal
Snyk, Israel
Talk: Security Controls in the JavaScript Supply Chain
Liran Tal is a software developer, and a GitHub Star, world-recognized for his activism in open source communities and advancing web and Node.js security. He engages in security research through his work in the OpenJS Foundation and the Node.js ecosystem security working group, and further promotes open source supply chain security as an OWASP project lead. Liran is also a published author of Essential Node.js Security and O'Reilly's Serverless Security. At Snyk, he is leading the developer advocacy team and on a mission to empower developers with better dev-first security.
Scott Gerlach
Scott Gerlach
StackHawk, USA
Talk: Automated Application Security Testing
Scott Gerlach is Co-founder and Chief Security Officer at StackHawk, a Denver-based startup focused on empowering engineers to easily identify and remediate security bugs. Scott brings over two decades of security and engineering experience to his current role, having served as CSO, CISO, and in other executive leadership functions at companies like SendGrid, Twilio, and GoDaddy. When he's not at work, you'll find Scott spending time with family, brewing beer, and playing guitar.
Lee Rowlands
Lee Rowlands
PreviousNext, Australia
Talk: Avoiding CSRF with Remix
Lee (larowlan) has been a major contributor to Drupal (🙀) for over 12 years. Lee is a Drupal core Framework manager, member of the Drupal security team and is passionate about code quality. More recently he has turned his focus to JavaScript, most notably React, Gatsby and Next.js, with Drupal's move to being a headless-first CMS. Lee was one of the primary architects of Drupal's testing architecture and champions automated testing and build processes. Lee has worked on several of Australia's largest websites during his 9 years as a Senior Developer with one of Australia's most trusted agencies: PreviousNext.
Elena Vilchik
Elena Vilchik
Sonar, Switzerland
Talk: Bring Code Quality and Security to your CI/CD pipeline
Developer of code quality and security analyzer for JS/TS at Sonar.
E. Dunham
E. Dunham
Okta, USA
Talk: Passwordless Auth to Servers: hands on with ASA
From a background in DevOps, Systems Administration, and SRE, edunham has recently taken the leap into developer advocacy to spread information about which tools and approaches fit which problems well, and to gather real-world feedback that helps Okta improve its products. Outside of work, you'll often find them anonymously automating annoyingly manual workflows in their favorite online games, gardening, and getting interrogated about whether they have or are food by several chickens and a cat.
Scott Gerlach
Scott Gerlach
StackHawk, USA
Talk: Automated Application Security Testing
Scott Gerlach is Co-founder and Chief Security Officer at StackHawk, a Denver-based startup focused on empowering engineers to easily identify and remediate security bugs. Scott brings over two decades of security and engineering experience to his current role, having served as CSO, CISO, and in other executive leadership functions at companies like SendGrid, Twilio, and GoDaddy. When he's not at work, you'll find Scott spending time with family, brewing beer, and playing guitar.
Scott Gerlach
Scott Gerlach
StackHawk, USA
Talk: How to Make GraphQL Security Easier with StackHawk
Scott Gerlach is Co-founder and Chief Security Officer at StackHawk, a Denver-based startup focused on empowering engineers to easily identify and remediate security bugs. Scott brings over two decades of security and engineering experience to his current role, having served as CSO, CISO, and in other executive leadership functions at companies like SendGrid, Twilio, and GoDaddy. When he's not at work, you'll find Scott spending time with family, brewing beer, and playing guitar.
Oliver Moradov
Oliver Moradov
NeuraLegion, UK
Talk: JS Security Testing Automation for Developers on Every Build
Oli is VP of NeuraLegion's developer focussed security testing platform, helping developers understand how they can run seamless, fast and accurate security tests on every build. Oli works closely with security and engineering teams globally to help them ship secure software more efficiently and is passionate about automation, CI/CD and DevOps / DevSecOps. Oli has spoken at many conferences internationally and is a regular at developer and security related events and meetups.
Bar Hofesh
Bar Hofesh
NeuraLegion, Israel
Talk: JS Security Testing Automation for Developers on Every Build
Co-Founder, CTO & Security Researcher at NeuraLegion. Developer and security researcher, I love playing with Neural networks and other ML tools. I'm interested in new programming languages and the potential they bring.
Liran Tal
Liran Tal
Snyk, Israel
Talk: Let Me Show You How React Applications Get Hacked in the Real-World
Liran Tal is a software developer, and a GitHub Star, world-recognized for his activism in open source communities and advancing web and Node.js security. He engages in security research through his work in the OpenJS Foundation and the Node.js ecosystem security working group, and further promotes open source supply chain security as an OWASP project lead. Liran is also a published author of Essential Node.js Security and O'Reilly's Serverless Security. At Snyk, he is leading the developer advocacy team and on a mission to empower developers with better dev-first security.
Nick Teets
Nick Teets
StackHawk, USA
Talk: How Developers Can Use Automated App Security Testing To Protect Vue Apps
Nick Teets is a software developer and musician based in Denver. Nick found his passion for connecting people using technology after spending summers in the Sandhills of Nebraska establishing a multimedia journalism nonprofit. Through an interactive website, the project told the stories of the communities of the area with audio, video, photos, and text. This early foray in journalism taught him about the intersection of empathy, technology, and storytelling, and would lead him to a career in frontend software development, creating beautiful and accessible user experiences to connect people across the world.
Liran Tal
Liran Tal
Snyk, Israel
Talk: You thought your React application is secure? Think again
Liran Tal is a software developer, and a GitHub Star, world-recognized for his activism in open source communities and advancing web and Node.js security. He engages in security research through his work in the OpenJS Foundation and the Node.js ecosystem security working group, and further promotes open source supply chain security as an OWASP project lead. Liran is also a published author of Essential Node.js Security and O'Reilly's Serverless Security. At Snyk, he is leading the developer advocacy team and on a mission to empower developers with better dev-first security.
G. Ann Campbell
G. Ann Campbell
SonarSource, USA
Talk: You're 5 Minutes Away from Code Quality & Code Security
G. Ann Campbell coded JavaScript for early browsers (think Netscape 3, IE 4), plus Perl, C, and Java. She became a vocal member of the SonarQube community in 2010 and joined SonarSource in 2013, after co-authoring SonarQube in Action. Her software career has spanned support, documentation, coding, and product management. Through the SonarQube community, she has helped hundreds of people understand how to make the most of SonarQube to write Clean and Secure Code.
Milecia McGregor
Milecia McGregor
Conducto, USA
Talk: The Security Toolbox For Node
Milecia is a senior software engineer that's worked with JavaScript, Angular, React, Node, PHP, Python, .NET, SQL, AWS, Heroku, Azure, and many other tools to build web apps. She also has a master's degree in mechanical and aerospace engineering and has published research in machine learning and robotics. She started Flipped Coding in 2017 to help people learn web development with real-world projects and she publishes articles covering all aspects of software on several publications, including freeCodeCamp. In her free time, she spends time with her husband and dogs while learning to play the harmonica and trying to create her own mad scientist lab.
Mohammad Shahbaz Alam
Mohammad Shahbaz Alam
Magic Labs, India
Talk: Securing Node.js APIs with Decentralised Identity Tokens
Shahbaz is a full stack developer and open source enthusiast, Developer Advocate @ Magic Labs, GDG Ranchi Organizer, Auth0 Ambassador, and Mozilla Representative. He loves teaching and sharing his learnings at conferences and meetups related to Serverless, Authentication and Authorization, Google Technologies, Security, Web Extensions, SPAs, PWAs and VR/AR/XR.
Scott Gerlach
Scott Gerlach
StackHawk, USA
Talk: Automated Security Testing for JS Apps & Underlying APIs
Scott Gerlach is Co-founder and Chief Security Officer at StackHawk, a Denver-based startup focused on empowering engineers to easily identify and remediate security bugs. Scott brings over two decades of security and engineering experience to his current role, having served as CSO, CISO, and in other executive leadership functions at companies like SendGrid, Twilio, and GoDaddy. When he's not at work, you'll find Scott spending time with family, brewing beer, and playing guitar.