strong>Room 2.15 (Level 2) [
clear filter]
arrow_back View All Dates
11:00 CEST
Panel Discussion: Improving the Software Supply Chain Security - Arnaud Le Hors, IBM; Tom Hennen, Google; Michael Lieberman, Kusari; Aeva Black; CISA
Tuesday September 17, 2024 11:00 - 11:40 CEST
Speakers
Staff Software Engineer, Google
Tom is a maintainer of the Supply-chain Levels for Software Artifacts (SLSA) project. He works at Google as a tech lead for their internal supply chain integrity team. He previously worked in the defense industry where he was the Principal Investigator for a DARPA STAC red team...
Read More →
Co-Founder and CTO, Kusari
Michael Lieberman is co-founder and CTO of Kusari where he helps build transparency and security in the software supply chain. Michael is an active member of the open-source community, co-creating the GUAC and FRSCA projects and co-leading the CNCF’s Secure Software Factory Reference...
Read More →
Senior Technical Staff Member Open Technologies, IBM
Arnaud Le Hors is Senior Technical Staff Member of Open Technologies at IBM, primarily focusing on Open Source security. He has been working on standards and open source for over 25 years. Arnaud was editor of several key web specifications including HTML and DOM and was a pioneer...
Read More →
Section Chief, Open Source Security, CISA
Aeva Black is an open source hacker, advocate, and international public speaker with over 20 years of experience building digital infrastructure and leading open source projects at technology companies. She is the Section Chief for Open Source Security at CISA, and serves as the Secretary...
Read More →
11:55 CEST
14:00 CEST
Planning for Retirement: How Can We Prepare for Software’s End-of-Life/End-of-Support Date? - Victoria Ontiveros, CISA & Justin Murphy, DHS/CISA
Tuesday September 17, 2024 14:00 - 14:40 CEST
Speakers
Vulnerability Analyst, DHS/CISA
Justin Murphy is a Vulnerability Analyst with the Cybersecurity and Infrastructure Security Agency (CISA). He helps to coordinate the remediation, mitigation, and public disclosure of newly identified cybersecurity vulnerabilities in products and services with affected vendor(s...
Read More →
Cybersecurity Specialist, CISA
Victoria Ontiveros joined the Cybersecurity and Infrastructure Security Agency (CISA) in June 2023 as a cybersecurity specialist. At CISA, she supports the agency's software bill of materials (SBOM) work, collaborating with partners across the software ecosystem, U.S. government...
Read More →
14:55 CEST
VSCorode: Inside Your IDE, Inside Your Git Repository - Kevin Ward & Fabian Kammel, ControlPlane
Tuesday September 17, 2024 14:55 - 15:35 CEST
Speakers
Principal Consultant, ControlPlane
Kevin is an Principal Consultant with over 10 years of experience designing, building and testing secure solutions for Government, Defence and Finance sectors. In his own time, Kevin enjoys hacking and hardening systems to discover the balance between security and usability. He co-authored...
Read More →
Senior Security Consultant, ControlPlane
Fabian Kammel is a Senior Security Consultant at ControlPlane, where he helps to make the (cloud-native) world a safer place. His goal is to bring hardware security and cloud-native security closer together, as well as, improving the developer experience in the security space. He...
Read More →
16:00 CEST
"Here Is a Clean Section of the Beach" - Proactively Auditing Open Source Dependencies and Letting End Users Know - Munawar Hafiz, OpenRefactory & Michael Winser, Alpha-Omega
Tuesday September 17, 2024 16:00 - 16:40 CEST
Speakers
CEO, OpenRefactory
Munawar Hafiz is the founder and head of innovations of OpenRefactory, Inc., an application security company that intends to improve the way developers write secure, reliable and compliant code. Munawar had a body of work on automated bug fixing in academia which lays the foundation...
Read More →
Co-founder, Alpha-Omega
Michael is a 40 year veteran in the software industry, with over 25 of those years at Google and Microsoft. He co-founded Alpha-Omega while at Google. Michael is an industry expert in software supply chain security, software development, and developer ecosystems. In addition to Alpha-Omega...
Read More →
16:55 CEST
Capslock: Escaping Bad Dependencies - Jess McClintock, Google
Tuesday September 17, 2024 16:55 - 17:35 CEST
Speakers
Senior Software Engineer, Google
Jess is a senior software engineer on the Open Source Security team at Google. In this role, she develops software solutions to security problems. Previously, Jess completed a PhD in theoretical computer science at the University of Melbourne, and has written papers on approximation...
Read More →