Dave Lewis – Keynote
Dave Lewis has 30 years of industry experience. He has extensive experience in IT security operations and management including a decade dealing with critical infrastructure security. Lewis is a Global Advisory CISO for Cisco. He is the founder of the security site Liquidmatrix Security Digest and cohost of the Liquidmatrix podcast as well as the host of the Plaintext podcast. Lewis serves on the advisory boards for several firms. He is currently enrolled in a graduate program at Harvard University. Lewis has written columns for Daily Swig, Forbes and several other publications.
Cindy Jones – Speaker
Her volunteer resume is extensive and includes multiple Security BSides events and currently serves as a member of the BSides San Diego board and organization committee, as President of the Board of Directors for BSides Las Vegas and has been Gooning for Def Con going on 10 years.
Cindy Jones (@SinderzNAshes) has been in the tech space for over 25 years, and has been a hacker her entire life (seriously… ask her about her grandmother’s toaster sometime). As she moved from IT into the land of Information Security she took advantage of the amazing educational opportunities provided by the community. After a few years, she decided it was time to give back, and started contributing as a volunteer, organizer, and speaker at the same events that did so much in feeding her curiosity.
On the professional side, Cindy has worked in multiple arenas including consulting in the Federal, education, technology and healthcare realms and has a background in development, maintenance and management of information security programs.
In her current role, Cindy leads the Product Security Business Enablement team at Thermo Fisher Scientific where she assists product development teams in evaluating and applying solid security practices and mechanisms for the multitude of Life Science products used by their customers.
Cindy is an obsessive beach cycler and tropical location scout. Relaxing on the beach with a coconut full of a rum drink is her idea of heaven.
Her favorite color is purple and she doesn’t use that as a security question.
Joe Vest – Speaker
Driven by his curiosity, perseverance, and passion for technology, Joe Vest’s mantra for his work and teaching is: “The journey of gaining experience can be as valuable as the end result.” Joe has 20 years of experience in red teaming, penetration testing, and application security. Joe is currently the Cobalt Strike Technical Director at HelpSystems. Prior experience ranges from authoring the book “Red Team Development and Operations,” the original author of the SANS 564 red team course, red team lead on a DoD red team, owner of a security consulting company, and a former director at SpecterOps. This diverse experience has given him extensive knowledge of cyber threats, tools, and tactics, including threat emulation and threat detection.
Kat Fitzgerald – Workshop Presenter
Based in the Pacific Northwest and a natural creature of winter, you can typically find me sipping Casa Noblé Añejo whilst simultaneously defending my systems using OSS, magic spells and Dancing Flamingos. Honeypots, Refrigerators and IoT (Internet of Threats) are a few of my favorite things. CEO of @BSidesChicago and CFP Chair @BSidesPGH
Dr. Alexandra Forssell – Workshop Presenter
Alexandra is a Director in the Deloitte Cayman Islands practice. She has over 16 years of experience in technology and security management and over 11 years of performing Cyber and Strategic Risk services for Deloitte’s clients. This includes work in cybersecurity strategy and governance, security and data privacy assessments, cyber incident response, security and privacy awareness campaigns, system implementation, data analytics, and project management. Alexandra is also a frequent speaker at Cyber conferences in Cayman and the Caribbean.
Alexandra has a Ph.D. in Information Assurance and Security (focused on the cybersecurity frameworks adoption in financial services industry) and a Masters Degree in Software Engineering. Alexandra is a Certified Information Systems Security Professional (CISSP), Certified Information Privacy Manager (CIPM), Certified ISO/IEC 27001:2013 Lead Auditor, and a Certified Project Management Professional (PMP). Alexandra also holds a certificate in Digital Security and Human Rights from Amnesty International.
Wayne Green – Workshop Presenter
Wayne is an experienced Director specialising in managed services with a concentration in Cyber and Information Technology. Wayne has 16 years of experience working with Deloitte offices and clients across the Americas, Southeast Asia, Africa, and Europe. His skill set has also allowed him to work with clients across a broad array of sectors, including financial services, telecommunications, and the public sector. Areas of focus include Cyber services, ISO 27001 implementation including security and privacy controls, Enterprise-wide technologies such as Managed Wide Area Network (“WAN”), Metropolitan (“MAN”), Local Area Network (“LAN”) and unified communication solutions in production.
Len Noe is a White Hat & Technical Evangelist for CyberArk Software. Together with the CyberArk Global Solutions Engineering team, they are responsible for enabling internal staff and the starting point for escalation for all SEs in the field. They are responsible for the global templates used by all SEs and partners, building new integrations, and use cases for all engineers. Len is an international security speaker has presented in over 29 countries and multiple major security conferences worldwide. Prior to 2001 Len was a Black/Grey Hat Hacker and learned most of his skills by practical application. Len has spent 20 years in the areas of web development, system engineering / administration, architecture, coding, and the past 6 years focusing on information security from an attackers perspective. Len is on the cutting edge of technology and recognized as a leader in the TransHuman/Cyborg movement. He has 7 microchips under his skin that are used as offensive cyber tools. Len has demonstrated the hacking abilities of augmented humans and provides information for security professionals to adapt to this new threat landscape. He also actively participates in the activities of the Information Security Communities in Texas, the Autism Society, and many others.
Jerry Gamblin – Workshop Presenter
Jerry Gamblin is an influential security researcher and analyst, focusing on enterprise networks and application security with over 15 years of experience. His research has been presented on numerous blogs, podcasts, and security conferences. When not at work, his personal research focuses on IoT & embedded automotive systems.
Raised in the wilds of Alabama by angry chickens and crazy people, Wolfpack-educated in the Tar Heel/Blue Devil state, and indoctrinated into Security by Silicon Valley appliance vendors (which are either wolves or angry chickens…maybe both), Carlota has returned to the east coast where she serves as a vCISO Principal for Fractional CISO. When not picking other peoples’ brains for minutia, she strings beads, destroys cars, drinks whiskey and screams into the dark, dark void that is Twitter as @carlotasage.
RJ Sudlow – Speaker
RJ is a cybersecurity practitioner with more than 8 years of hands-on experience in penetration testing of network infrastructure, web applications, and social engineering assessments. Recently, he has moved from the “red” to the “blue” team to help organisations understand cyber risk, navigate regulatory requirements, and proactively identify threats within their infrastructure.
Paul is a Cyber SME at nou Systems, Inc. His expertise includes space systems, service provider, and ICS/SCADA network infrastructure attacks, and defenses, as well as large complex network design and implementation. Paul is experienced in leading network architecture reviews, vulnerability analysis, and penetration testing engagements for service provider, enterprise, space systems and tactical networks. Paul is a regular instructor at International conferences teaching networking, hacking and forensics courses. He has a BS in Math\Computer Science, MS in Systems Management, MS in Information Assurance and Security and a MS in Computer Information Systems. Paul is currently pursuing a MS in Space Systems. In addition, he holds numerous industry network and security certifications.
Timothy Dilbert – Speaker
Timothy Dilbert has been in software development for 13+ years – with 7 years at his current position at BMT Solutions. During his tenure, Timothy has been fortunate enough to do software development in 6 different countries, working for clients in the Public Sector, Retail, Utilities, Education and Financial Services. Development has certainly always been something Timothy has been passionate about. These days Timothy’s focus has been on bridging the gap between security, infrastructure and development using automation and hybrid cloud. When not sitting in front of a computer, Tim enjoys spending time with his family, especially each weekend cooking new recipes with his 4YO daughter, Avery.
Areas of focus are Software Development, DevOps, Identity and Access Management (Workforce and Consumer), IBM MaaS360, Business Intelligence, Hybrid Cloud, and infrastructure and Cloud automation via Red Hat Ansible and OpenShift.
Reet Kaur – Speaker
Reet Kaur is a Chief Information Security Officer (CISO) at the largest higher-ed institute in Portland, Oregon, where she leads a team responsible for all aspects of College`s Information Security Program to enable the business in providing education to more than 85,000 students at several locations in the Portland Metro Area. Reet is a highly enthusiastic Cybersecurity leader who has supported organizations in the strategic planning and development of security programs to meet requirements for establishing, implementing, monitoring, and maintaining a security posture. Reet has 20+ years of experience working as a leader in IT and information Security in Fortune 100 and 500 companies like Nike Inc., AECOM, Fidelity and Canadian Imperial Bank of Commence (CIBC). She holds a Master’s degree in Engineering from University of Waterloo, Canada. She is a (ISC)2 Certified Information Systems Security Professional (CISSP), ISACA Certified in Risk and Information Systems Control (CRISC), Certified Information Security Manager (CISM), PMI Project Management Professional (PMP). She is passionate about mentoring and coaching to help uplift others in their careers. Diversity & inclusion are highly important to her and she believes that humility is the key to exceptional leadership.
Petri Basson – Speaker
Petri has a unique skillset with experience in finance and IT. He holds qualifications as a Chartered Accountant (CA(SA)) as well as Certified Information System Auditor (CISA). He started his career in South Africa, auditing several listed companies, banks and entities in various other sectors.
After this, he worked in the United States and then moved to the Cayman Islands. In Cayman he gained extensive exposure to the funds industry; as well as the internal controls and IT controls for funds and service providers.
In the latter part of his career, he focused on digital assets and worked with some of the largest funds and service providers in the space. Petri is also the Chairman of the Blockchain Association of the Cayman Islands (BACI) and sits on the steering committee of Digital Cayman and the Crypto Currency Security Standard (CCSS).
Marcelle Lee – Workshop Presenter
Marcelle Lee is a Senior Security Researcher and Emerging Threats Lead at Secureworks and is also an adjunct professor and training consultant. She specializes in cybercrime, digital forensics, and threat research. She is involved with many industry organizations, working groups, and boards, including the Women’s Society of Cyberjutsu, Infragard Maryland, the NIST Cyber Competitions Working Group, and the Cybersecurity Association of Maryland Advisory Council. She also both builds and participates in cyber competitions.
Marcelle has earned the CISSP, GCFA, GCIA, GCIH, GPEN, GISF, GSEC, GCCC, C|HFI, C|EH, CSX-P, CCNA, PenTest+, Security+, Network+, and ACE industry certifications. She holds four degrees, including a master’s degree in cybersecurity. She has received the Chesapeake Regional Tech Council Women in Tech (WIT) Award and the Volunteer of the Year award from the Women’s Society of Cyberjutsu. Marcelle frequently presents at conferences and training events, and is an active volunteer in the cybersecurity community.
Ahmed Ibrahim – Workshop Presenter
Ahmed Ibrahim is a Teaching Assistant Professor in the Department of Informatics and Networked Systems at the University of Pittsburgh. Ahmed currently teaches undergraduate and graduate courses with a focus on Cybersecurity. He is passionate about enhancing and improving cybersecurity education and is actively developing hands-on cybersecurity content. He received alumni gifts to offer research assistant positions in cybersecurity, has served as a panelist for the National Science Foundation (NSF) multiple times, and continues to serve as a reviewer and program committee member for multiple conferences (e.g., NICE, WiCyS). Ahmed published several papers in IEEE & ACM conferences, is a Certified Ethical Hacker (CEH), attended several technical workshops on hacking techniques, and has offered workshops on ethical hacking topics to students and faculty nationwide. In addition, he hosts events in collaboration with non-profit organizations to attract individuals from underrepresented groups in cybersecurity.
Adam Pennington – Speaker
Adam Pennington leads ATT&CK at The MITRE Corporation and collected much of the intelligence leveraged in creating ATT&CK’s initial techniques. He has spent much of his 13 years with MITRE studying and preaching the use of deception for intelligence gathering.
Prior to joining MITRE, Adam was a researcher at Carnegie Mellon’s Parallel Data Lab and earned his BS and MS degrees in Computer Science and Electrical and Computer Engineering as well as the 2017 Alumni Service Award from Carnegie Mellon University. Adam has presented and published in a number of venues including FIRST CTI, USENIX Security, DEF CON, and ACM Transactions on Information and System Security.
J. Wolfgang Goerlich – Speaker
J. Wolfgang Goerlich is an Advisory CISO for Cisco Secure. Prior to this role, he led IT and IT security in the healthcare and financial services verticals. Wolfgang has held VP positions at several consulting firms, leading advisory and assessment practices. He is an active part of the security community, co-founding and organizing security conferences and events. Wolfgang regularly advises on and presents on the topics of security architecture and design, identity and access management, data governance, secure development life cycles, zero-trust security, and more.
Ashleigh Powell – Speaker
Ashleigh Powell is a vibrant Caymanian-native information security professional. She holds a Bachelor of Business Administration in Cyber Security (summa cum laude) from the University of Texas at San Antonio as well as the CompTIA Network+ certification and a University of Cape Town certificate in Data Analysis. She has had her work on digital forensics published in the Studies of Big Data book series.
Ashleigh is a strong advocate for encouraging young individuals to join the cyber field and has participated in panel discussions for supporting women in cyber. In 2021, Ashleigh was recognized during the CICSA Credit Union’s International Women’s Day campaign which highlighted the achievements of several powerful women within the Cayman Islands. This year, Ashleigh has been selected as an Honouree for the Proud of Them initiative presented by the Youth Services Unit of the Cayman Islands Government.
David Manouchehri – Speaker
David Manouchehri started his professional cybersecurity career half a decade ago after being recruited by the Department of National Defence. He has since worked for the startup Linchpin Labs (acquired by L3Harris Technologies), and started up his own company. After becoming an independent security analyst consultant in 2020, he has found and disclosed half a dozen Chrome 0days.
Aside from his professional experience, he has over a decade of experience with Linux security, and being personally targeted by APTs. In his free time, David enjoys researching cybersecurity trends in the industry.
His new startup, ai.moda, is developing a platform to automate zero trust application access at scale for cloud computing workloads and enterprise Linux servers. The ai.moda team aims to make a significant impact at improving open-source software security to demonstrate the effectiveness of their platform.
Mari Galloway – Locknote
Mari is the CEO and a founding board member for the Women’s Society of Cyberjutsu (WSC), one of the fastest-growing 501c3 non-profit cybersecurity communities dedicated to bringing more women and girls to cyber. WSC provides its members with the resources and support required to enter and advance as cybersecurity professionals.
Mari began her cyber career with Accenture where she excelled as a Network Engineer. Mari is also the inaugural ISC2 Diversity Award winner for 2019. With over 12 years of Information Technology, 10 of which are in cybersecurity, her experience spans network design and security architecture, risk assessments, vulnerability management, incident response, and policy development across government and commercial industries.
She holds a variety of technical and management certifications (CISSP, GIAC, CCNA, etc) as well as a Bachelor’s degree in Computer Information Systems from Columbus State University and a Master of Science in Information Systems from Strayer University.
Mari is currently a resident of Las Vegas working as a Systems Engineer (Sales Engineer) for Palo Alto Networks. She regularly contributes content to security blogs and training companies across the country as well as an Adjunct Professor for UMGC. She also lends her time to various organizations as an award judge, mentor, and advisor. Outside of being a geek, Mari enjoys arts, puzzles, and legos! @marigalloway mostlymimi.com
Garry Coldwells – Speaker
Garry is a 27 year cybersecurity veteran who has taught and spoken at conferences across three continents, to diverse business and technical audiences. He is a resident advisor to the Roger’s Cyber Accelerator at Ryerson University and is a periodic guest lecturer at universities. Garry speaks on a broad array of cyber topics from foundational security principles to technical concepts of current interest.
Polly Pickering – Workshop Presenter
As both a risk specialist and corporate director for the past 25+ years Polly’s responsibilities have centred on innovation through technology. Presently Polly is on the Executive Board of Digital Cayman and an advisor with Cayman Finance ‘Innovation Lab’. Polly’s early career included plastics engineering and automotive crash system advancements at both Mazda & Ford Automotive in Detroit, (USA). After a decade she ‘switched gears’ to her undergrad interest, Information Security. Polly has contributed to various business continuity software apps, launched the first payment gateway in the Cayman Islands (eShore 2000) and notably in 2006 she was instrumental with launch of an offshore node of an popular archiving email platform (mimecast offshore) based in the Channel Islands (UK).
Polly enjoys cross-jurisdiction consulting, ongoing cooperative business alliances across the globe. She has been a partner of SURE Business (Jersey UK) formerly ‘Cable & Wireless’ since 2003 working with their offshore Teir3+ datacentres and promoting privacy, proactive good IT governance and offshore hosting. SURE is part of the Batelco group, a provider of communications services and operates in 14 jurisdictions across four continents. Polly holds a BSc from WMU and certifications in risk management, CAMS, CBRITP, CBCP and CEC (eCommerce) and continues to host a variety of ongoing ISACA workshops (CISSP & CRISC). She is married and has a teenage son, enjoys competitive sailing, classic cars, and fundraising for various charities.
Abner Almeida – Workshop Presenter
Abner is the founder and owner of Mimesure, the Mimecast experts.. He is a competent and experienced Solutions Architect (TOGAF 9 Certified), with over 16 years’ experience in delivering multi-disciplinary projects of varying sizes and complex programs of work. He builds strong relationships with all stakeholders and turns proposals into reality. Abner is especially successful in projects that demand rigor a high level of drive, dedication, and a focus on delivering business outcomes through the use of methodologies.