Interested in joining the SOURCE team? We are looking for dedicated and responsible individuals who are interested in participating in a fun and unique professional opportunity.
Email stacy at sourceconference dot com for information.

Available opportunities

Attendee Recruitment (commission): SOURCE is looking for individuals who are available to assist with attendee outreach and market research. Interested individuals will be provided a unique code and will receive 10% commission from any attendees who register with that code.

Market Research (volunteer): We are looking for individuals who are interested in reaching out to members of the security community to obtain information about hot topics, trends, and technologies.

Website Content Generation (volunteer): These individuals will assist in providing interviews, podcasts, blog entries, editorials, and other relevant content for the SOURCE webpage.

Website Management (volunteer): This individual will be required to consistently update the website with new material provided by our website content generators. 

FOUNDERS
  

 Stacy Thayer, PhD, Founder and Executive Director, SOURCE Conferences

Prior to founding SOURCE Conferences, Stacy was employed as a Research Analyst for Linkage, Inc, a Fortune 500 company, where she worked with other Fortune 500 organizations to examine best practices in leadership development, training, and business practices. Stacy first entered the computer fray in 1994, when she began calling local BBSes and attending Boston 2600 meetings. After several years of software consulting during college, she went on to graduate school where she examined online communication behaviors and internet psychology. During this time she also had an award winning interactive website, and was one of the first web developers to utilize chat-rooms, web cams, message boards, blogs, and other interactive media. Her site was used as example of online interpersonal interactions in several university classrooms, including Massachusetts Institute of Technology. She recently completed her PhD in Business Psychology.

Christien Rioux, Chief Scientist at Veracode

Christien Rioux, co-founder and chief scientist of Veracode, is responsible for the technical vision and design of Veracode’s advanced security technology. Working with the engineering team, his primary role is the design of new algorithms and security analysis techniques. Before founding Veracode, Christien was one of founding employees of @stake, a security consultancy firm, as well as L0pht Heavy Industries, a renowned security think tank. Christien was a research scientist at @stake, where he was responsible for developing new software analysis techniques and for applying cutting edge research to solve difficult security problems. He also led and managed the development for a new enterprise security product in 2000 known as the SmartRisk Analyzer (SRA), a binary analysis tool and its patented algorithms, and has been responsible for its growth and development for the past five years. At L0pht, Christien was a senior developer. He co-authored the best-selling Windows password auditing tool @stake LC (L0phtCrack) and the AntiSniff network intrusion detection system. His other activities with L0pht included significant security research, publication work and public speaking engagements. Christien earned his Bachelor of Science Degree from Massachusetts Institute of Technology.

  Chris Eng, Director of Security Research at Veracode

Chris Eng leads Veracode's application security research lab and is primarily responsible for driving innovation and thought leadership. Drawing on nearly a decade of professional experience in information security, he works closely with the CTO to ensure Veracode's technology and strategy are industry relevant and aligned. He monitors attack trends, analysis techniques, and other advances in application security to keep Veracode's efforts focused on timely and emerging threats. Additionally, he provides guidance to engineering and service delivery to maximize the accuracy and consistency of Veracode's security analysis service. Prior to joining Veracode, Mr. Eng was a Technical Manager for Symantec Professional Services, the division of Symantec responsible for security consulting. As a senior technical lead, he delivered high-profile security assessments for numerous Fortune 500 companies, focusing primarily on penetration testing of critical web applications, commercial software, and networks.
    
Dov Yoran, Co-Founder of MetroSITE Group

Prior to co-founding MetroSITE, Dov was Vice President for Strategic Alliances at Solutionary, Inc, a leading Managed Security Services Provider. He was responsible for all partnerships, global channel revenue and marketing efforts. Previously, at Symantec Corporation, Dov managed the Services Partner Program, having global responsibility for creating, launching and managing the channel re-seller program. This program generated over 50% of Symantec Services revenue, with a partner base expanding across six continents. Prior to that, Mr. Yoran has worked in several technology start-ups as well as Accenture (formerly Anderson Consulting) where he focused on technology and strategy engagements in the Financial Services Industry. Dov has also written and lectured on several Information Security topics. He holds a Masters of Science in Engineering Management and Systems Engineering with a concentration in Information Security Management from the George Washington University and is cum laude Bachelor of Science in Chemistry graduate from Tufts University.

Val Smith, Founder of Attack Research


Val Smith has been involved in the computer security community and industry for over ten years. He currently works as a professional security researcher on a variety of problems in the security community. He specializes in penetration testing, reverse engineering and malware research. He works on the Metasploit Project as well as other vulnerability development efforts. Most recently Val Smith founded Attack Research which is devoted to deep understanding of the mechanics of computer attack. Previously Val Smith founded a public, open source malware research project.

     
  
  John Cran, Practice Manager at Rapid7

Jonat han Cran (jcran) is the Professional Services practice manager and security consultant with the Boston-based firm, Rapid7. He has been with Rapid7 for two years and specializes in network penetration testing and application assessment. In previous lives, he was a developer and network administrator at Iowa State University.  He is an active leader in the Boston security community. In his spare time, he enjoys producing music and replacing his job with small shell scripts. He runs a blog at http://www.0x0e.org.

Raffael Marty, Founder of PixlCloud

Raffael Marty is the founder of PixlCloud. His research interests span anything related to IT data visualization. He has held various positions in the log management space at companies like Splunk, ArcSight, and IBM research where he also earned his masters in computer science. His book, Applied Security Visualization, and the SecViz portal are the primary resources for information related to security visualization. The Data Analysis and Visualization Linux (DAVIX), as well as AfterGlow are two of his past projects that have helped form the security visualization space.

Rob Cheyne, CEO of Safelight Security Advisors


 Rob Cheyne is founder and chief executive officer of Safelight Security Advisors, a leading security education and consulting company in the Boston Area. He is a strong advocate for proactively addressing security issues and he has taught information security training classes to thousands of developers, architects and managers over the past four years. Rob has 17 years of experience in the information technology field and has been working in the information security field since 1998. He has played the role of software developer, systems integrator, security expert, consultant, trainer and entrepreneur, which gives him a unique and balanced blend of business and technical expertise. Rob was one of the founding employees of @stake, a highly regarded pioneer in information security consulting. He helped develop application security assessment methodologies that are still in use today and led @stake's Application Security Center of Excellence for two years. He has led and conducted secure architecture and design reviews, secure code reviews, application penetration tests, and various types of specialized security audits for Fortune 500 companies. Rob was also a co-author of the award-winning L0phtCrack password auditing software and he worked on @stake's SmartRisk Analyzer team, which was eventually spun-off as Veracode.

Jamie Fullerton, Attack & Penetration Team Lead, Microsoft Corporation

 Jamie Fullerton is an expert in the field of Information Security with over a decade of experience conducting penetration tests and vulnerability research. The core mission of his team at Microsoft Corporation is to research and prototype new effective network security controls that monitor the state of critical business assets across Microsoft's global network infrastructure. Jamie's goal for the team is to maintain a healthy research environment for solving hard security problems. Jamie has strong ties to the Boston area Hacker community and feels fortunate to have enjoyed many years surrounded by highly intelligent, talented computer hackers as friends and colleagues.

 Media and Communications: Brian Schwartz
Volunteers: Josh Abraham, Nick Amento, Tehmina Beg, John "Spud" Colbert,  Brandon Creighton, Jack Daniels, Paul Davis, Zach Lanier, Josh Morin, Fred Owsley, Jesse Whitworth