Presented at
AppSec USA 2017,
Sept. 21, 2017, 11:30 a.m.
(45 minutes)
No description available.
Presenters:
-
Michael Stoker
- Partner - Baker and McKenzie LLP
-
Michael Gallagher
- Senior Manager Application Security - PayPal
Michael Gallagher has been with PayPal for over two years as Senior Manager Application Security. Mr. Gallagher leads the end-to-end life cycle for application vulnerabilities for all production environments, including web applications, mobile applications and APIs. This includes PayPal's Bug Bounty Program, application penetration testing, application vulnerability scanning and 3rd party managed services, as well as supporting the overall remediation efforts and reporting.
Mr. Gallagher has over 12 years of product development experience. On the security side, Mr. Gallagher has both 6 years in physical security and 6 years in information security. Having an engineering and security background gives him insight into the various product development perspectives, which he uses to forge relationships and build trust in order to reduce the overall application risk posture.
Mr. Gallagher earned a B.S. in Criminal Justice: Security Administration from California State University, Long Beach in 1996 and a M.S. in Software Engineering at National University in 2000. Mr. Gallagher holds the following certifications from (ISC)²: Certified Information Systems Security Professional (CISSP), Certified Secure Software Lifecycle Professional (CSSLP), Certified Cloud Security Professional (CCSP) and Systems Security Certified Practitioner (SSCP). Mr. Gallagher is a co-inventor for one US patent.
-
Sean Martin
- Editor-in-Chief - ITSPmagazine
Sean Martin is an information security veteran of nearly 25 years and a four-term CISSP. Sean is the co-founder and editor-in-chief at @ITSPmagazine and the president of imsmartin, an international business advisory firm. Sean's articles have been published globally covering security management, cloud computing, enterprise mobility, application security, InfoSec awareness and education, bug bounties, governance, risk, and compliance -- oftentimes with a focus on specialized industries and sectors such as government, finance, healthcare, insurance, legal, manufacturing and the supply chain.
-
Sean Melia
- Senior Security Engineer - Gotham Digital Science
Charlotte, NC resident. One of the top bug bounty hunters on the HackerOne platform. Senior Security Engineer for Gotham Digital Science.
-
Cassio Goldschmidt
- Vice Presidence, Cyber Resilience Practice - Stroz Friedberg, an AON company
Cassio Goldschmidt is an internationally recognized information security leader with strong background in both product and program-level security. Outside work, Cassio is known for his contributions to Open Web Application Security Project (OWASP) , Software Assurance Forum for Excellence in Code (SAFECode), the Common Weakness Enumeration (CWE)/SysAdmin, Audit, Network, Security (SANS) Top 25 Most Dangerous Software Errors, along with contributing to the security education curriculum of numerous universities and industry certifications. Cassio was one of the three finalist in the first (ISC)² Americas Information Security Leadership (ISLA) Awards 2011 in the Information Security Practitioner category and endowed with the special Community Service Star award during the same occasion. In 2012 Cassio was one of the finalists of the first OWASP Web Application Security Person of the Year (WASPY) Awards. Cassio holds a number of US patents and is an accomplished writer and presenter in the field of application security
Cassio holds a bachelor degree in computer science from Pontificia Universidade Catolica do Rio Grande Do Sul, a masters degree in software engineering from Santa Clara University, and a masters of business administration from the University of Southern California.
Links:
Similar Presentations: