Check out highlights from 2020:
Perry Carpenter (author of, "Transformational Security Awareness: What Neuroscientists, Storytellers, and Marketers Can Teach Us About Driving Secure Behaviors" from Wiley Publishing) currently serves as Chief Evangelist and Strategy Officer for KnowBe4, the world's most popular security awareness and simulated phishing platform.
Previously, Perry led security awareness, security culture management, and anti-phishing behavior management research at Gartner Research, in addition to covering areas of IAM strategy, CISO Program Management mentoring, and Technology Service Provider success strategies. With a long career as a security professional and researcher, Mr. Carpenter has broad experience in North America and Europe, providing security consulting and advisory services for many of the best-known global brands.
Perry holds a Master of Science in Information Assurance (MSIA) from Norwich University in Vermont and is a Certified Chief Information Security Officer (C|CISO).
The Art and Science of Driving Secure Behaviors
Just because someone is aware doesn’t mean that they care. So how do we design programs that work with, rather than against, human nature? This session explores the behavior science behind effective security awareness.
Domini has been leading the technical executive search firm, Blackmere Consulting, since 2011. In addition to developing the company’s growing team of executive search consultants, she leads executive recruitment across a variety of industries, with a functional focus on cyber security and data science. She advises industry and HR executives, clients, and recruitment teams on unique aspects of cyber security recruiting challenges. The company is driven by Domini’s commitment to serving clients and making a powerful impact through intelligent connections, and her expertise and experience remain key ingredients in Blackmere’s continued success. Under Domini’s leadership, the Blackmere team specializes in difficult-to-fill, critical hires, including executive placement, cyber security research, information technology, data science, wireless research, and energy-related technical leadership. Prior to Blackmere, Domini served as part of a small, elite team at Battelle Energy Alliance through the Idaho National Laboratory (INL), where she was the primary recruitment strategist for all executive level positions. She developed the search capability for INL’s award-winning cyber research team dedicated to national and homeland security and critical infrastructure protection. Prior to Battelle, she served as executive recruitment partner and finance team leader at a boutique recruitment firm, handling clients such as Morgan Stanley, Goldman Sachs, Rio Tinto and Allegheny Technologies. Domini sits on the board of directors for ISSA (Information Systems Security Association) Utah and received the Luminary award from the International ISSA Women In Security Group. Domini is a graduate of the University of Utah, with a master’s degree in clinical social work. Domini is a dedicated supporter of the American Heart Association and is simultaneously pursuing a passion project, Warrior Widow, in support of widows (widowers) and their families, with the aim of transforming significant loss into personal power. She lives in Idaho with her two amazing children.
Hacking the C-Suite...Finally Declassified: How Executive Search Firms Infiltrate the C-Suite, Get the Talent to Defect, and Alter the Course of Global Business.
When a single executive hire can change the trajectory of an entire organization, expertise matters. Your internal recruiters, with all their automated tools, can't penetrate the defenses surrounding the C-suite. And when the search is for an IT or cybersecurity leader, they may as well be trying to infiltrate the CIA. Yet executive search firms seem to have solved the mystery. Their secret? Social engineering. Learn how effective social engineering gives you an edge in executive and technical recruitment -- and does so efficiently and cost effectively.
Robert's security expertise includes serving critical roles at:
Data Center Manager for California Educational Research Foundation;
Pen/Eval Assessor for Physical & Logical Security at TruSecure;
Multiple Security Roles in the Department of Defense; and
IT Support Services at Deloitte
Two of Clubs
The Two of Clubs presentation highlights a variety of entry level resources that are non-technical, low cost, and publicly available for Social Engineering research. It encourages people and organizations to research themselves for awareness and personal security. This presentation aims to inspire deeper organizational discussions on the value of Social Engineering for meaningful logical and physical security.
Chris Silvers is founder and CEO of CG Silvers Consulting as well as a DEF CON black badge winner. Chris' passion for education and more than 20 years of experience in information security have landed him on the presenter's stage at conferences such as Defcon, BsidesAtlanta, NolaCon, DerbyCon and GrrCon. In addition to several professional security certifications, Chris has a bachelor's degree from Georgia Tech and an MBA.
Scaling Phish: Pentesting the SMB
Join award winning social engineer, Chris Silvers, on his journey from corporate security coordinator to founder of boutique security consulting firm, providing services to the underserved Small and Medium Business (SMB) market. Walk away with lessons on how - and how not - to scale your security mindset from enterprise to SMB environments for maximum value.
Wayne Ronaldson is an experienced tester, having conducted security assessments for a range of leading organizations. He has expertise in red teaming assessments, physical, digital and social, and has presented to several organizations and government departments on the current and future state of the cybersecurity landscape. Ronaldson has also presented at DerbyCon, DEF CON and RSA.
Based on a real-world scenario, I will present a live simulated attack that will take you on a fascinating journey from the hacker's perspective. In this presentation, you will see a standard social engineering phishing attack that morphs into a full nation-state style attack. We will demonstrate how vulnerable an organization can be, how deep an attack can go and how damaging it can be for an unprepared business.
Enemy of the State
A Foreign Intelligence Simulation is a simulated targeted attack against an entire organization, leveraging the end to end phase of the nation-state attack life cycle digital, social, physical and supply chain. This presentation will discuss and demonstrate a sophisticated adversary seeking to target business intelligence using layered attack vectors to explain the impact a real-world attack would have on the target through a controlled set of operations.