Senior executive with international experience in start-up and operation in a wide variety of business applications. Deep expertise in software engineering. Currently working at, www.xbosoft.com, a leading provider of software quality engineering services.
Specialties: Software engineering, quality engineering, software process improvement, agile methodologies, business processes efficiency and operations improvement.
Topic: Web App Security Validation
This talk will be about an automated way of Vulnerability Assessment and Management that includes a real-time demo of the Archery tool, how to use it for Vulnerability Assessment Automation and Management. We'll discuss how we can utilize open-source tools to perform vulnerability assessment in a robust way and manage them using Archery tool. Archery is an open-source vulnerability assessment and management tool that helps developers and pentesters to perform scans and manage vulnerabilities. It uses popular open-source tools and also supports commercial tools to perform comprehensive scanning for web application and network. It also performs web application dynamic authenticated scanning and covers the whole applications by using selenium. The developers can also utilize the tool for implementation of their DevOps CI/CD environment.
Anand Tiwari is an information security professional with nearly 5 years of experience in offensive security, with expertise in Mobile and Web Application Security. Currently working with Philips HealthCare in securing medical devices. He has authored Archery—open source tool and has presented at Black Hat and DEFCON conferences. In his free time, he enjoys coding and experimenting with various open source security tools. Twitter handle: @anandtiwarics
Topic: "insights - from QA to Test Automation in Enterprise"
QA and Tech-Ops director at NeoGames with more than 18 years of experience. Prior to the that his role was a configuration and release manager in OpenTV Israel, responsible for every aspect of the system's configuration and deployment (Development\Production), and products' releases. Specialties: Client/Server systems, Integrations with 3rd Parties, deployment processes, Oracle programming(PL/SQL), Web sites, Interactive TV, Gaming, Gambling, billing and financial transactions.
Phishing and how to fight it Dr. Andy Yen is the CEO and Founder of ProtonMail, the world's largest encrypted email provider. A physicists by training, Andy has over 8 years of experience in distributed computing for particle physics applications. He was a researcher at CERN from 2009 to 2015, where ProtonMail's founding team met. Dr. Yen has a PhD in Physics from Harvard, and degrees in Economics and Physics from Caltech.
Email is the most widespread and successful method of communication ever devised, used by billions of people around the world. This talk will cover some of the security challenges around email, and the opportunities available to the security community to make email more secure in the 21st century.
Topic: Testing artificial intelligence: which side to approach?