Past Events :: Rochester Security Summit

Past Events

RSS:2023

Keynotes

Moses Frost

A highly experienced and respected security professional, Moses Frost has a wide and varied career spanning over 25 years. Since 1998, he has worked as a Network Engineer, System Administrator, and Site Reliability Engineer. More frequently, he works as a Red Team Operator, Penetration Tester, and infrequently as a Forensic Investigator. He has successfully worked at large enterprises such as Cisco Systems and McAfee, where he was an integral part of serving Top 50 clients.

[more]
Emilyann Fogarty

Emilyann Fogarty is a dynamic and accomplished cybersecurity leader rooted in a strong foundation of healthcare technology. She brings a wealth of expertise to her current position as Head of Data Security at Nayya Health Inc. where her responsibilities encompass crafting and executing comprehensive strategies for Information Security, Privacy, and IT programs while carefully managing day-to-day operations and enterprise risk mitigation.

[more]
Gene Spafford

Eugene H. Spafford is a professor of Computer Sciences at Purdue University. He is also the founder and Executive Director Emeritus of the Center for Education and Research in Information Assurance and Security. He has been working in computing as a student, researcher, consultant, and professor for 45 years. Some of his work is at the foundation of current security practice, including intrusion detection, incident response, firewalls, integrity management, and forensic investigation. His most recent work has been in cyber security policy, forensics, and future threats. He has also been a pioneer in education, including starting and heading the oldest degree-granting cybersecurity program.

[more]

RSS:2022

Keynotes

Douglas J. Landoll

For the last 34 years, Mr. Landoll reviewed and revised security programs for organizations to gain compliance with Federal government and industry cybersecurity regulations and standards. He has been a Trusted Product Evaluator (TCSEC), a Qualified Security Assessor (PCI DSS), and an independent security assessor covering major cybersecurity regulations.

[more]
Dr. Josephine Wolff

Josephine Wolff is an associate professor of cybersecurity policy and has been at The Fletcher School at Tufts University since 2019. Her research interests include liability for cybersecurity incidents, international Internet governance, cyber-insurance, cybersecurity workforce development, and the economics of information security.

[more]

FBI Special Agent Jordan F. Slavik has been a special agent in Rochester with the FBI Buffalo Cyber Task Force since 2019, working cases involving nefarious online marketplaces, phish kits, business email compromises, unauthorized intrusions, and online sexual extortions. The Buffalo Division Cyber Task Force - which covers the Rochester area - brings together local, state, and federal intelligence community experts to combat computer intrusions, viruses, and other cyber threats.

[more]

RSS:2020

2020 Virtual Events

Due to the global COVID-19 pandemic, we were forced to cancel the 2020 summit. In it's place we held a series of webinars, each featuring two summit-style presentations.

November 19 Virtual Presentations

November 5 Virtual Presentations

October 29 Virtual Presentations

October 22 Virtual Presentations

June 4 Joint ISSA Chapter/Rochester Security Community Presentaton

RSS:2019

DevSecOps – Responsibility by Design

Keynotes

F. Paul Green

F. Paul Greene is Chair of the Privacy and Data Security Practice Group at Harter Secrest & Emery LLP, a full-service law firm headquartered in Rochester, New York. Paul is a Distinguished Fellow of the Ponemon Institute, a Certified Information Privacy Professional/US, and an adjunct professor at the Rochester Institute of Technology.

[more]
Reg Harnish

Reg Harnish is a serial entrepreneur, nationally-recognized speaker, author and an Executive Vice President at the Center for Internet Security. Reg is also a founder of GreyCastle Security, the cybersecurity industry’s leading provider of risk, compliance, certification and privacy services. Reg has been practicing cybersecurity for nearly two decades. His experiences, skills and perspectives have established him as a highly-respected thought-leader.

[more]
Johnny Xmas

Johnny Xmas is a predominant personality in Information Security, most well-known for his community-building efforts as a founder of BurbSec, and his work on the TSA Master Key leaks. Currently working as a Blade Runner for the Australian bot-hunting firm ‘Kasada’ to defend against the automated abuse of web infrastructure, he was previously a Security Researcher for Uptake’s Industrial Cybersecurity Platform.

[more]

RSS:2018

Agile Security – Adapting to Change

Keynotes

Samy Kamkar

Samy Kamkar is an independent security researcher, best known for creating The MySpace worm, the fastest spreading virus of all time. His open source software, hardware, and research highlights the insecurities and privacy implications in everyday technologies, from the Evercookie which produces virtually immutable respawning cookies, to SkyJack, a drone that wirelessly hijacks and autonomously controls other drones.

[more]
Mark Weatherford

Mark Weatherford is SVP and Chief Cybersecurity Strategist at vArmour. He has more than 20 years of security operations leadership and executive-level policy experience in some of the largest and most critical public and private sector organizations in the world. Prior to vArmour, he was a Principal at The Chertoff Group and in 2011 was appointed by President Obama as the DHS’s first Deputy Under Secretary for Cybersecurity.

[more]
Rich Smith

Rich Smith is the Director of Duo Labs, supporting the advanced security research agenda for Duo Security. Prior to joining Duo, Rich was Director of Security at Etsy, co-founder of Icelandic red team startup, Syndis, and has held various roles on security teams at Immunity, Kyrus, Morgan Stanley, and HP Labs. Rich has worked professionally in the security space since the late 90’s in a number of roles including building security organizations, security consulting, penetration testing, red teaming, exploit development and attack tooling.

[more]
Deborah Snyder

Deborah A. Snyder serves as Chief Information Security Officer (CISO) for New York State, in the Office of Information Technology Services (ITS). In her role, she oversees the Enterprise Information Security Office, and directs a comprehensive program of governance, risk management and compliance functions, vulnerability management, threat intelligence, cyber incident response, and training and exercise services.

[more]

RSS:2017

Building Cyber Deterrence

Keynotes

David Kennedy

David started TrustedSec and Binary Defense Systems (BDS) with the vision of helping companies with information security. TrustedSec provides information security consulting services for organizations all around the world. BDS is a global Managed Security Service Provider (MSSP) and software security company which detects attackers in the early stages and prevents large-scale attacks.

[more]
Kelly Shortridge

Kelly Shortridge is currently the Product Manager for security ratings platform, SecurityScorecard. In her spare time, she conducts research into the applications of behavioral economics and behavioral game theory to information security, on which she has spoken at international conferences including Black Hat, Troopers, and Hacktivity.

[more]
Russ McRee

Russ McRee is Group Program Manager of the Blue Team for Microsoft’s Windows & Devices Group (WDG). He writes toolsmith, a monthly column for information security practitioners, and has written for other publications including Information Security, (IN)SECURE, SysAdmin, and Linux Magazine.

[more]

RSS:2016

Technology, Privacy and Security: Evolving to Meet Modern Challenges

Keynotes

Jeremiah Grossman

Founder of WhiteHat Security. World-Renowned Professional Hacker. Brazilian Jiu-Jitsu Black Belt. Published Author. Influential Blogger. Off-Road Race Driver. Jeremiah Grossman’s career spans nearly 20 years and he has lived a literal lifetime in computer security to become one of the industry’s biggest names. And since Jeremiah earned a Brazilian Jiu-Jitsu black belt, the media has described him as “the embodiment of converged IT and physical security.” Preventing attacks from the scariest cyber-criminals is all in a day’s work for Jeremiah, but staying a keystroke ahead of the bad guys isn’t easy. In 2001, Jeremiah founded WhiteHat Security, which today has one of the largest professional hacking armies on the planet.

[more]
Diana Kelley

Diana Kelley is Executive Security Advisor to IBM Security and manages the IBM Security Newsroom. As ESA she leverages her 25+ years of cyber risk and security experience to provide advice and guidance to CISOs and security professionals. She is a regular contributor to SecurityIntelligence, X-Force Research and a co-author of IBM’s “Securing the C-Suite” study. She is a faculty member with IANS Research and serves on the Advisory Board for InfoSec World, Structure Security and the Content Committee for the Executive Women's Forum. She was an IEEE “Rock Star of Risk” in 2016 and speaks frequently at major conferences including: TED, RSA, CyberTech, CompuTex, and InfoSec World.

[more]

A Look at Cybersecurity from a Professional Fusion: Panel Discussion w/ Q&A

Not your average Cybersecurity Panel: This panel steers away from the standard CISO panel, and gives us the experiences & perspectives of various walks of professional lives. From technical engineer, security advisor, CISO, and more, this panel will share their individual points of view on today’s cybersecurity challenges, and how their role affects their organization’s response to these challenges. There will also be a Q&A session to allow attendees to chime in with their pertinent questions.

RSS:2015

The Right to Privacy: Balancing Privacy and Security

Keynotes

CTO SANS Internet Storm Center
Johannes Ullrich

As Dean of Research for the SANS Technology Institute, Johannes is currently responsible for the SANS Internet Storm Center (ISC) and the GIAC Gold program. He founded DShield.org in 2000, which is now the data collection engine behind the ISC.

[more]
VP & Chief Information Security Officer - Xerox
Mark Leary

Mark Leary is an Information Technology security professional in the government and commercial sectors, and has held successive positions of corporate security oversight in Defense, Aerospace, Manufacturing and Services industry segments.

[more]
Vice President - Portfolio Marketing - IBM Security
Caleb Barlow

Caleb Barlow is an enterprising hi-tech executive with global experience in product management, marketing, software development and services. He has led multiple software product portfolios at IBM Security including Application, Data, Mobile, and Critical Infrastructure Security.

[more]
Director - Field Marketing - Kaspersky Lab
Mark Villinski

Mark Villinski brings more than 20 years of technology sales, marketing experience and channel leadership to Kaspersky Lab. As Director, Field Marketing, Mark is responsible for field marketing efforts in the United States and for increasing awareness of Kaspersky Lab as a thought leader in the online security industry.

[more]

RSS:2014

No Borders: Expanding Chains of Trust

Keynotes

Veteran industry expert and SANS Senior Instructor
Paul Henry

Paul Henry is a Senior Instructor with the SANS Institute and one of the world's foremost global information security and computer forensic experts with more than 30 years of experience covering all 10 domains of network security.

[more]
ISSA President and security luminary
Ira Winkler

Ira Winkler, CISSP is President of Secure Mentem. He is considered one of the world’s most influential security professionals, and has been named a “Modern Day James Bond” by the media.

[more]
Jaime Daley

Ms. Jaime L. Daley is an Assistant Director with the New York State Division of Homeland Security and Emergency Services, Office of Counter Terrorism (OCT), where she manages a group of analysts focused on homeland security and cyber threats.

[more]

RSS:2013

Keynotes

Bruce Schneier

Bruce Schneier

Renowned Security Technologist and CSTO of BT

Lance Spitzner

Lance Spitzner

Training Director, SANS Securing The Human Program

Joe Jarzombek

Joe Jarzombek

Director for Software and Supply Chain Assurance, Cyber Security and Communications, U.S. Department of Homeland Security.

RSS:2012

Our 2012 keynote speakers were Dr. Gary McGraw, CTO of Cigital, Inc. and Jeff Williams, CEO & Co-Founder, Aspect Security.

Each year, during National Cyber Security Awareness Month, the Rochester Security Summit features education opportunities for executives, CFO, CIO/CSO, business managers, security professionals, IT managers, technical specialists, help desk staff, and developers.

In 2012, the Summit gathered more than 200 attendees for 28 outstanding technical presentations -- along with three Ethical Hacking training sessions.