Loading…
BSidesSF 2020 has ended

Sign up or log in to bookmark your favorites and sync them to your phone or calendar.

Talk [clear filter]
Sunday, February 23
 

1:30pm PST

Panel: Let's Get 360 With Bug Bounty!
From bug bounty hunters, to the platform triagers, to the companies that fix the vulnerability: we have much to understand and learn from each other. We will talk about the bug bounty lifecycle from multiple perspectives and discuss how to improve the way we work together.

Speakers
avatar for Maria Mora

Maria Mora

Security and Compliance, Crunchyroll
Maria is a Staff Secure Application Engineer at Crunchyroll. Her security team actively builds internal security and compliance tools, manages their bug bounty and vulnerability disclosure programs, as well as wear many hats as small security teams do. She has a passion for both building... Read More →
avatar for Chloe Messdaghi

Chloe Messdaghi

VP of Strategy, Point3 Security
Chloé Messdaghi is the VP of Strategy at Point3 Security. She is an ethical hacker advocate who strongly believes that information security is a humanitarian issue. Besides her passion to keep people safe and empowered online & offline, she is driven to fight for hacker rights. She... Read More →
avatar for Jeff Boothby

Jeff Boothby

Sr. Trust & Security Engineer, Bugcrowd
Jeff is a Senior Trust and Security Engineer at Bugcrowd. He is an advocate for safe harbor and works on all sides of bug bounties. Past experience includes security testing for both DAST and SAST. He gives training sessions for those looking to become penetration testers or hackers... Read More →
TE

Tanner Emek

Tanner (aka @cache-money) comes from a software engineering background and later switched to security engineering. After a year of full-time bug hunting, he has since dove back into the security engineering world with a heavy offensive focus, and he continues to bug hunt in his free... Read More →
avatar for Ben Sadeghipou

Ben Sadeghipou

HackerOne
Ben is the Head of Hacker Operations at HackerOne by day, and a streamer and hacker by night. He has helped identify and exploit over 600 security vulnerabilities across 100s of web and mobile applications for companies such as Yahoo, Airbnb, Snapchat, The US Department of Defense... Read More →



Sunday February 23, 2020 1:30pm - 2:20pm PST
Embarcadero City View at Metreon

5:00pm PST

Ask the EFF
This session will include updates on current EFF issues such as surveillance online, encryption (and backdoors), compelled decryption, consumer privacy, free speech, and right to repair. The panel will also include a discussion on some exciting new technology projects, including encrypting the web, security education (SSD and SEC), the state of privacy oriented web extensions, and much more.

Moderators
D

Daly

Daly is a staff technologist at the EFF. She works on projects pertaining to user privacy and preserving free speech online.
avatar for Alexis Hancock

Alexis Hancock

Staff Technologist, EFF
Alexis works to secure the web by working on HTTPS Everywhere. She is very passionate about privacy and tech equity for all.
KO

Kurt Opsahl

Kurt Opsahl is the Deputy Executive Director and General Counsel of the Electronic Frontier Foundation. In addition to representing clients on civil liberties, free speech and privacy law, Opsahl counsels on EFF projects and initiatives.  Opsahl is the lead attorney on the Coders... Read More →
HT

Hayley Tsukayama

Hayley Tsukayama is a legislative activist for the Electronic Frontier Foundation, focusing on state legislation. Prior to joining EFF, she spent nearly eight years as a consumer technology reporter at The Washington Post covering the industry's largest companies.
JW

Jamie Williams

Jamie is is a staff attorney on the civil liberties team, who focuses on the First and Fourth Amendment implications of new technologies.

Sunday February 23, 2020 5:00pm - 5:25pm PST
Theater 15 AMC at Metreon
 
Monday, February 24
 

1:30pm PST

Panel: Lessons Learned from the DevSecOps Trenches
A frank discussion with security team leads at several forward-thinking companies on how they’ve built and scaled their security programs. What worked, what failed, and more. No topics are off-limits, no holds will be barred, and chanting will be encouraged (“Jerry! Jerry!”)

Speakers
avatar for Clint Gibler

Clint Gibler

Research Director, NCC Group
Clint Gibler (@clintgibler) is a Research Director at NCC Group, a global information assurance specialist providing organizations with security consulting services. He’s helped companies implement security automation and DevSecOps best practices as well as performed penetration... Read More →
avatar for Zane Lackey

Zane Lackey

Chief Security Officer, Signal Sciences
Zane Lackey is the Co-Founder / Chief Security Officer at Signal Sciences and the Author of Building a Modern Security Program (O’Reilly Media). He serves on multiple public and private advisory boards and is an investor in emerging cybersecurity companies. Prior to co-founding... Read More →
AS

Astha Singhal

Director of Application Security, Netflix
Astha Singhal leads the Application Security team at Netflix that secures all the applications in Netflix’s cloud infrastructure. Prior to this, she led product security for the Salesforce AppExchange. She is a security engineer by qualification who is passionate about proactive... Read More →
JO

Justine Osborne

Apple
Justine manages an Offensive Security team at Apple, where she guides offensive operations, security assessments, and vulnerability research. She has over ten years of industry experience both building and breaking things, previously at Square, NCC Group, and iSEC partners. She has... Read More →
DD

Doug DePerry

Datadog
Doug DePerry has held multiple positions in his three years at Datadog, including Director of Product Security and currently, Director of Defense. Prior to his current position, Doug lead the bug bounty program at Yahoo. Much of his 12+ years of experience in the security industry... Read More →


Monday February 24, 2020 1:30pm - 2:20pm PST
Embarcadero City View at Metreon

4:30pm PST

Panel: Mental Health for Hackers: Contents Under Pressure
Pressures and stress affect both professional and personal lives within infosec. This panel will introduce mental health for hackers, and discuss issues including burnout, depression, anxiety and other topics. The conversation will help build a supportive culture.

Speakers
avatar for Chloe Messdaghi

Chloe Messdaghi

VP of Strategy, Point3 Security
Chloé Messdaghi is the VP of Strategy at Point3 Security. She is an ethical hacker advocate who strongly believes that information security is a humanitarian issue. Besides her passion to keep people safe and empowered online & offline, she is driven to fight for hacker rights. She... Read More →
avatar for Ryan K. Louie, MD, PhD

Ryan K. Louie, MD, PhD

Psychiatrist, Vituity
Ryan K. Louie, MD, PhD is a board-certified psychiatrist focusing on the mental health impact of cybersecurity, and the psychiatry of entrepreneurship. Ryan received his MD and PhD degrees from the Stanford University School of Medicine, and completed residency training in psychiatry... Read More →
SP

Susan Peediyakkal

Mental Health Hackers
Susan Peediyakkal is the Board Member - Chief Wellness Officer for Mental Health Hackers.


Monday February 24, 2020 4:30pm - 5:20pm PST
Embarcadero City View at Metreon