SOURCE Conference: Team

April 17-19, 2012
Marriott Tremont
Boston, MA, USA
CFP Status: CLOSED

Sept 13-14, 2012
Maritime Event Center
Seattle, WA, USA
CFP Status: OPEN

Training: November
Conference: November
Barcelona, Spain
CFP Status: TBD

	SOURCE Team
	SOURCE Team Stacy Thayer, Founder and Executive Director Email Stacy Prior to founding SOURCE Conferences, Stacy was employed as a Research Analyst for Linkage, Inc, a Fortune 500 company, where she worked with other Fortune 500 organizations to examine best practices in leadership development, training, and business practices. Stacy first entered the computer fray in 1994, when she began calling local BBSes and attending Boston 2600 meetings. After several years of software consulting during college, she went on to graduate school where she examined online communication behaviors and internet psychology. During this time she also had an award winning interactive website, and was one of the first web developers to utilize chat-rooms, web cams, message boards, blogs, and other interactive media. Her site was used as example of online interpersonal interactions in several university classrooms, including Massachusetts Institute of Technology. She recently completed her PhD in Business Psychology. John Colbert, Operations Manager, SOURCE Conferences Email John John returns from sabbatical to be the Operations Manager for SOURCE Boston 2011. Following nearly two decades of work in Information Technology, John changed gears in 2009 to shift his career focus toward Conference Management. (He blames his enjoyment of working with SOURCE for this decision!) He returned to school, and earned a Certificate in Meeting and Event Management from the University of Massachusetts in 2010, where he is currently continuing his academic work toward a degree concentration in Festival and Mega-Event Management. Zach Lanier, Volunteer Coordinator Email Zach Zach Lanier returns for his second year as Volunteer Coordinator for SOURCE Boston. He is a Principal Consultant with the Intrepidus Group where he focuses on network, web, and mobile application penetration testing. Core Volunteers SOURCE would like to thank the following volunteers for their active participation and support: Jack Daniel, Ruain Flanagan, Nick Amento, Fred Owsley, Kevin Riggins, Paul Davis, Jim Baker, Stefan Wuensch, Tim Hartmann, Mike Kershaw, Brandon Creighton, Chris Lytle, and Schuyler Towne. SOURCE Advisors Andrea Barisani, Chief Security Engineer of Inverse Path Ltd (SOURCE Barcelona) Andrea Barisani is a security researcher and consultant. His professional career began 8 years ago but it all really started when a Commodore-64 first arrived in his home when he was 10. Now, 17 years later, Andrea is having fun with large-scale IDS/Firewalls deployment and administration, forensic analysis, vulnerability assessment, penetration testing, security training and his Open Source projects. He eventually found that system and security administration are the only effective way to express his need for paranoia. Being an active member of the international Open Source and security community he's maintainer/author of the tenshi, ftester projects as well as the founder and project coordinator of the oCERT effort, the Open Source Computer Emergency Response Team. He has been involved in the Gentoo project, being a member of the Gentoo Security and Infrastructure Teams, and the Open Source Security Testing Methodology Manual, becoming an ISECOM Core Team member. Outside the community he has been a security consultant for Italian firms and he's now the co-founder and Chief Security Engineer of Inverse Path Ltd. He has been a speaker and trainer at PacSec, CanSecWest, BlackHat and DefCon conferences among many others, speaking about SatNav hacking, 0-days, LDAP and other pretty things. Reto Baumann, IT Security Specialist at IBM Switzerland (SOURCE Barcelona) Reto is deployed as IT Security Architect or IT Specialist acting as technical lead and interface to the customer on most projects. He consults with the customer to cover business requirements for designing the best technical solution matching the customer's needs. Reto gained in-depth knowledge about security technologies during several years of active participations in projects in and around Switzerland covering all sectors. Reto is a subject matter expert in the areas of Ethical Hacking and Security Architectures with a broad knowledge of technologies used to secure modern information technology infrastructures. Today he consults with clients (mostly CIO's or CISO's) on a regular basis regarding their network or software security designs and implementations, their policies and processes as well as their overall IT architecture. As an IT Architect Reto acts as the liason between the business and the information technology. Cédric Blancher, Head of Computer Security Research Lab at EADS Innovation Works (SOURCE Barcelona) Cédric Blancher has been working in the field of network security for the last 7 years, first as a security consultant performing audits, penetration tests and trainings, then as a research engineer at EADS Innovation Works where he has been since 2004. His research focuses on network security, especially wireless links. He is an active member of Rstack team, having worked on honeypots, network traffic diversion, segregation and analysis. Cédric regularly delivers presentations, workshops and trainings worldwide, and writes papers and articles on network and wireless security. Rob Cheyne, CEO of Safelight Security Advisors (SOURCE Boston and SOURCE Seattle) Rob Cheyne is founder and chief executive officer of Safelight Security Advisors, a leading security education and consulting company in the Boston Area. He is a strong advocate for proactively addressing security issues and he has taught information security training classes to thousands of developers, architects and managers over the past four years. Rob has 17 years of experience in the information technology field and has been working in the information security field since 1998. He has played the role of software developer, systems integrator, security expert, consultant, trainer and entrepreneur, which gives him a unique and balanced blend of business and technical expertise. Rob was one of the founding employees of @stake, a highly regarded pioneer in information security consulting. He helped develop application security assessment methodologies that are still in use today and led @stake's Application Security Center of Excellence for two years. He has led and conducted secure architecture and design reviews, secure code reviews, application penetration tests, and various types of specialized security audits for Fortune 500 companies. Rob was also a co-author of the award-winning L0phtCrack password auditing software and he worked on @stake's SmartRisk Analyzer team, which eventually spun-off as Veracode. John Cran, Practice Manager at Rapid7 (SOURCE Boston) Jonathan Cran (jcran) is the Professional Services practice manager and security consultant with the Boston-based firm, Rapid7. He has been with Rapid7 for two years and specializes in network penetration testing and application assessment. In previous lives, he was a developer and network administrator at Iowa State University. He is an active leader in the Boston security community. In his spare time, he enjoys producing music and replacing his job with small shell scripts. He runs a blog at http://www.0x0e.org. Katie Moussouris, Senior Security Program Manager, Microsoft Security Response Center (SOURCE Seattle) Katie Moussouris is a Senior Security Program Manager in the Microsoft Security Response Center (MSRC), focusing on researcher relations and disclosure policy. Previously, Katie worked on the Security Development Lifecycle (SDL) team to bring Microsoft's SDL to third party software vendors in order to improve the security of the Internet as a whole. Katie's professional background is application security, having come from Symantec by way of the @stake acquisition. Katie founded the Microsoft Vulnerability Research Program (MSVR), extending the focus of Microsoft's security vulnerability research to third party software. Katie also founded and ran the Symantec Vulnerability Research Program, the first program of its kind in Symantec's history to allow the publication through Responsible Disclosure of original vulnerability advisories discovered by Symantec researchers. In addition to performing security research, Katie has been an application penetration tester for Fortune 500 companies across numerous industries. She has uncovered serious vulnerabilities during the course of her work before they could be widely exploited by hooligans and criminals for either fun or profit,respectively. Vicente Diaz, Senior Security Analyst (GReAT Team) - R&D Iberia Manager at Kaspersky Lab (SOURCE Barcelona) Vicente Diaz, Senior Security Analyst at Kaspersky Lab (SOURCE Barcelona) Vicente has been working on security for 8 years. He holds a degree on Computers Science from UPC and joined the Artificial Intelligence PhD program 4 years ago. Former lead of the Intelligence eCrime Group at S21sec, Vicente joined Kaspersky Lab in 2010 as a Security Analyst at GReAT Team and R&D Manager for Iberia. He also cooperates in the Master of Security of the UOC as professor. He is a co-founder of Edge-Security Team and is a member of the board of directors of FIST Conferences. He has been a speaker at several conferences such as EUSecWest, Deepsec and NcN, and participates in several anti-fraud efforts. Chris Eng, Senior Director of Research at Veracode (SOURCE Boston and SOURCE Barcelona) Chris Eng is Senior Director of Research at Veracode, where he helps define and implement the security analysis capabilities of Veracode's service offerings. He is a regular speaker at top information security conferences including BlackHat, OWASP, and RSA, discussing topics such as cryptographic attacks, secure coding, application security metrics, and the SDLC. Chris has over 12 years of experience in information security, including senior technical positions at Symantec and @stake, where he specialized in software security assessments, penetration testing, reverse engineering, and vulnerability research. He began his career with the US Department of Defense working on a variety of offensive-minded infosec projects. Jamie Fullerton (SOURCE Seattle) Jamie Fullerton is a recognized information security expert and professional computer hacker with over a decade of industry experience. Mr. Fullerton has served as the leader of Attack and Penetration teams deployed within small, medium, and large corporations and has faced many interesting and challenging problem scenarios. Jamie has strong ties to the Boston area hacker community and feels fortunate to have enjoyed many years surrounded by talented computer hackers as both friends and colleagues. A transplant from the east coast, Jamie now resides in Redmond, Washington. Christian Martorella, Practice Lead for Verizon Business, Threat, and Vulnerability EMEA (SOURCE Barcelona) Christian Martorella has been working in the field of information security for the last 11 years, starting his career in Argentina IRS as security consultant, now he is a Practice Lead for Verizon Business, Threat and Vulnerability EMEA. In the past he was leading a Security Services team at S21sec in Spain, where he performed penetration tests, web application assessments, security audits and forensic analysis for a wide range of industries including Financial services, Telecommunications, Utilities and Government. He is cofounder an active member of Edge-Security team, where security tools and research is released. He presented at Blackhat Arsenal USA, Hack.Lu, What The Hack!, NoConName, FIST Conferences, OWASP Summit 2008 and OWASP Spain IV and VI. Christian has contributed with open source assessment tools like OWASP WebSlayer, Wfuzz, theHarvester and Metagoofil. He likes all related to Information Gathering and offensive security. In the past he taught Ethical Hacking at the Security Master of La Salle University. Raffael Marty, Founder of Loggly (SOURCE Barcelona and SOURCE Seattle) Raffael Marty is the founder of Loggly - a logging as a service (LaaS) platform. He is a seasoned IT security professional with a passion for data analysis and visualization. Raffy has held various positions in the log management space at companies like Splunk, ArcSight, and IBM research. Raffy spends a lot of time analyzing and visualizing logs. He has been instrumental in building and defining the security visualization space. The SecViz portal, AfterGlow, DAVIX, and his book, Applied Security Visualization, are the prime resources for information related to security visualization. Raffy loves public speaking and presents regularly at security and hacker conferences around the world. He was the founding member of the common event expression (CEE) standard that is concerned with standardizing machine interoperability. In his spare time, Raffy surfs the California waves and finds peace in meditation. Raffy lives and works in San Francisco. Oliver Day - Akamai, Security Researcher (SOURCE Boston) Oliver Day is a security researcher for Internet titan Akamai where he experiments and tests theories about the security and trust structure of Akamai and its third-party services and products. Day has worked for other security luminaries including eEye Digital Security and @stake. His current academic pursuit is the integration of biostatistical science into network security as a method predicting the spread of computer disease. Mr. Day has been published at the The Seventh Workshop on the Economics of Information Security and will be published in an upcoming issue of the Emory Law Journal. Simon Roses Femerling, Microsoft (SOURCE Barcelona) Simon Roses Femerling works at ACE Services at Microsoft providing security services across Europe. He previously worked at PriceWaterhouseCoopers and @Stake. He has many years of security experience where he has authored and cooperated in several security Open Source projects and advisories as OWASP Pantera. Mr. Roses is native to Mallorca Island in the Mediterranean Sea. He holds a postgraduate in E-Commerce from Harvard University and a B.S. from Suffolk University in Boston, Massachusetts. Ollie Whitehouse, Co-Owner Recx Ltd (SOURCE Barcelona) Ollie Whitehouse is Co-Owner at Recx Ltd, a niche security consultancy in the United Kingdom. Prior to Recx, Ollie was Manager for Security Research & Assessment in EMEA for Research In Motion's Security Research Group for four years. Ollie has over fifteen years experience working in I.T. eleven of which have been in information security. Before joining RIM Ollie was a member of Symantec Security Response's Advanced Threat Research team, specializing in mobile and wireless technologies for two years. Prior to becoming a full-time researcher Ollie also spent over six years as a consultant for companies such as Symantec and @stake working in a variety of industries including financial services, telecommunications and central government. He is a frequently published author of research on the security of mobile telecommunication networks, mobile devices, and Bluetooth. In addition, he has discovered numerous security vulnerabilities in a wide range of desktop and server applications including Microsoft's Windows Vista. Dov Yoran, Co-Founder of MetroSITE Group (SOURCE Boston) Dov is a co-founder of MetroSITE Group, a firm that provides information security market services to F500 security decision makers and to emerging technology companies. Previously at Symantec he had global responsibility for creating, launching and managing the service partner program. Dov came to Symantec as part of the Riptech acquisition, the leading Managed Security Services Provider at the time. Initially, he began his career with Anderson Consulting (now Accenture) focusing on strategy and process engagements. Dov is a founding member of the Cloud Security Alliance and participates on a number of advisory boards. He holds an MS in Engineering Management and Systems Engineering with a concentration in Information Security Management from GWU and is a cum laude graduate with a BS in Chemistry from Tufts University. Quinton Jones - McAfee, Solution Architect (SOURCE Seattle) Quinton leads solution business development across McAfee's Cloud and Content Business Unit and enterprise mobility management. He is engaged in product strategy, business process enablement, public and private trainings and evangelism and outbound demand generation. Quinton is an ardent security professional with 10 years experience designing security architectures, security metrics, security program management, engagement and project management. He has held roles in business development, sales management, technical account management, audit & advisory and technical consulting at eEye Digital Security, Qualys and Breakwater Security Associates. Andrew Sudbury - Co-Founder of Abine Inc. (SOURCE Boston) Andrew has been involved in the security industry with a focus on applying risk modeling and analysis techniques to the problems of managing information security at scale. Currently he is a co-founder of Abine Inc., the first consumer online privacy company. He has held a number of startup and security roles, from founding of the first cyber-café and public access terminal network in Boston (Café Liberty/NetPod), consulting with @stake, financial analysis for an innovative private bank, and leading the creation of information security metrics and scorecards as VP of Security Metrics at ClearPoint Metrics. Andrew received an MBA from MIT Sloan and a SB from MIT. Joshua Corman - Director of Security Intelligence, Akamai (SOURCE Boston) Joshua Corman is the Director of Security Intelligence for Akamai Technologies and has more than a decade of experience with security and networking software. Most recently he served as Research Director for Enterprise Security at The 451 Group following his time as Principal Security Strategist for IBM Internet Security Systems. Mr. Corman’s research cuts across sectors to the core security challenges plaguing the IT industry, and helps to drive evolutionary strategies toward emerging technologies and shifting economics. His research and education efforts won him the title of Top Influencer of IT by NetworkWorld magazine in 2009. Mr. Corman is a candid and highly-coveted speaker with engagements at leading industry events such as RSA, DEFCON, Interop, ISACA, and SANS. As a staunch advocate for CISOs, Corman alsoserves as a Fellow with the Ponemon Institute, on the Faculty for IANS, and co-founded Rugged Software– a value-based initiative to raise awareness and usher in an era of secure digital infrastructure. Corman received his bachelor’s degree in philosophy, graduating Phi Beta Kappa and summa cum laude, from the University of New Hampshire. He resides with his wife and two daughters in New Hampshire.