This recorded panel discussion will take a broad view of the API security marketplace and look back at a timeline that will include notable API and application security events. You will walk away with learnings from unique insights reflecting a defenders perspective from current CISOs contrasted by an ethical hacker’s perspective from two popular practitioners and authors in API security. Key topics include:
- Reflecting on the past two generations of Application Security solutions.
- Analysis of marketplace dynamics and adversarial tactics that fueled the need for Application Security solutions.
- Deep dive into how API & AppSec programs should look in the current day and theorize what threats are on the horizon
Panelists:
Corey Ball
Director of Pen Testing, Moss Adams Corey is a director of penetration testing at Moss Adams in addition to being a best selling author of Hacking APIs, winner of the 2022 SANS Difference Makers Award for Book of the Year. In 2022, Corey helped create the APIsec University and released the API Penetration Testing course. He has over thirteen years of experience working in IT and cybersecurity across several industries, including aerospace, agribusiness, energy, fintech, government services, and healthcare. In addition to a bachelor’s degree in English and philosophy from Sacramento State University, Corey holds OSCP, CCISO, CEH, CISA, CISM, CRISC, and CGEIT industry certifications.
Jeff Farinich
CISO and SVP, Technology Services, New American FundingJeff Farinich is a visionary Technology & Security leader with over 25 years of experience in the financial services and high-tech industry specializing in Cybersecurity, Architecture and Operations. Jeff was recruited at New American Funding in 2019 to transform IT and Security, building a security program from the ground up as the world locked down due to Covid and the mortgage industry experienced record growth. Previously Jeff worked in various leadership roles at SchoolsFirst Federal Credit Union, Cisco Systems, NDS Group and other organizations.
Nick Aleks
Chief Hacking Officer, ASECNick Aleks is a renowned cybersecurity engineer, researcher, and author, known for his expertise in offensive security, penetration testing, and pioneering work in the field of GraphQL security. He is the accomplished author of “Black Hat GraphQL” and prominent figure in Toronto’s DEFCON community along with currently serving as the Senior Director of Security at Wealthsimple, one of Canada’s leading fintech organizations. Nick is also the founder and owner of ASEC.IO, a distinguished security firm providing comprehensive cybersecurity solutions to a wide range of clients.
Bret Settle
Founder and Chief Product Officer, ThreatXBret has served in multiple executive roles for Corporate Express/Staples and BMC Software. He has extensive knowledge of the software development and security products industries. Bret has been responsible for enterprise security in multiple roles and has been an innovator throughout his career. His proven track record of building and developing high performing organizations and dynamic cyber security teams helps ThreatX deliver AppSec services that meet enterprise needs.