Find Expert Speakers

I often deliver technical security content to professional and executive level audiences. For example, as a SOC Analyst at IDDA, I directly presented our SOAR (Security Orchestration, Automation and Response) platform to Ministry of Security representatives. I gave a technical walkthrough of the platform architecture, incident automation workflows, threat correlation mechanisms, and presented real world use cases. Subsequent to the presentation, the product received considerable interest from multiple stakeholders and potential investors.I've also attended vendor meetings with Palo Alto and Forcepoint DLP, presenting technical assessments and making workflow recommendations to help optimize the deployment of security products and their integration into the corporate environment.Besides this type of enterprise-level presentation, I've also been the guy on the team to go to an international hackathon. I presented AI security and automation concepts at an innovation event in Georgia. I gave a presentation to a technical evaluation panel, detailing the design of the system, the model for threat detection, and the architecture of the data pipeline.I also took part in the Google AI Hackathon in Kazakhstan, where I presented a detailed technical pitch including model architecture, implementation strategy, and deployment aspects to judges and business representatives.These occasions implied explaining intricate technical details in a digestible form, addressing immediate technical inquiries, justifying architecture choices, and discussing security compromises. I feel at ease presenting deeply technical information to both engineering communities and business leaders.

Hey, I’m Bhavesh Pardhi, a cybersecurity practitioner and bug hunter focused on real-world web application security.My work primarily revolves around reconnaissance, vulnerability discovery, and building practical workflows that improve efficiency in bug hunting. I focus on identifying real attack surfaces and optimizing recon processes to reduce noise and increase meaningful findings.I am the founder of CyberXsociety, a growing platform where I share cybersecurity knowledge through blogs, digital products, and a community-driven forum focused on real-world learning and methodologies.Alongside this, I am building a local tech community, Jalgaon Hackers Meetup, to connect and grow serious learners in cybersecurity, development, and related fields through discussions, meetups, and collaborative learning.My approach is strongly practical and system-driven. Instead of focusing only on tools, I focus on building structured methodologies that can be applied across different targets and environments.I am actively working on bug bounty programs, contributing to the cybersecurity community, and continuously exploring ways to improve recon workflows and vulnerability discovery processes.

Boik Su is a security research manager at CyCraft Technology and is currently focused on Cloud Security, Web Security, and Blockchain Security. He takes an active role in the cybersecurity community and has delivered speeches at multiple seminars across the globe, including HITCON, HITB, FIRSTCTI, VB, and HackerOne. He still participates in CTF competitions, including SECCON CTF in Japan and HITCON CTF in Taiwan, and has submitted multiple reports to bug bounty programs and open-source projects.

1. Guest Speaker at BINUS University (Indonesia) | 2024Topic: Cybersecurity Practices & The "Open Possible" SpiritDescription: Delivered a keynote during an overseas technical exchange, sharing insights on Taiwan Mobile's security strategies and fostering transnational internship opportunities.2. Internal Technical Seminar at Taiwan MobileTopic: Case Study: Exploiting Google Web Designer (Zip Slip Vulnerability)Description: A deep-dive presentation analyzing the root cause of a $7,500 Google VRP finding. Covered the discovery process, exploitation of the path traversal defect, and the final reporting methodology.3. Advanced Security Training Series (Internal)Topic: Offensive Security & Reverse EngineeringDescription: Conducted multiple technical sessions for internal engineering teams. Topics included:DLL Hijacking & Patch Diffing: Analyzing attack vectors in Windows environments.Reverse Engineering: Practical training using IDA Pro and Linux CTF challenges.Web Exploitation: Methodologies for identifying XSS and SQL Injection vulnerabilities

I have a speaking experience of almost around 2.5 years, I started givung sessions from my own college utself and then I have been approached to provide expert training sessions in multiple colleges by far I might have given training sessions at around 6 to 7 colleges and i have also given online sessions as well. And my LinkedIn profile is proof of it.

Talks within my organisationTech Talks: I have delivered over 10 internal technical presentations tailored to a wide range of audiences across multiple product development disciplines within my organisation(netskope).Hybrid Engagement: These sessions were conducted through both face-to-face and online formats, allowing me to interact with a significant number of colleagues and refine my ability to communicate complex technical topics to diverse teams.Knowledge Transfer: Beyond formal talks, I have led dedicated mentoring sessions and deep-dive technical walkthroughs to help ramp up team members on specialized security research.External Industry RecognitionBlackHat Europe (Arsenal): I was selected to present my research and open-source tool, IOCTL Hammer, at BlackHat Europe.Expert Engagement: This experience involved presenting to an international audience of cybersecurity experts, where I successfully managed high-traffic live interactions at the Arsenal booth.Communication Mastery: Preparing for and executing this talk helped me hone my skills in articulating the technical value and novelty of my work to an external, expert-level audience.

Cybersecurity Researcher and Security Trainer with hands-on experience in Web, API, Active Directory, and Thick Client Application Security Assessments. Worked on multiple large-scale onsite VAPT engagements across enterprise environments, focusing on identifying complex attack paths, exploitation techniques, and realistic security risks.Specialized in offensive security operations involving Active Directory, cloud environments, and advanced web application testing. Experienced in conducting black-box and system-level security assessments, developing security testing methodologies, and researching emerging attack vectors. Holds expertise in Windows and Linux security architecture testing along with multi-cloud offensive security concepts across AWS, Azure, and GCP.Beyond assessments, actively involved in mentoring and training students and security enthusiasts through practical, real-world cybersecurity sessions. Passionate about security research, red teaming methodologies, wireless security, and building offensive security tooling. Frequently works on vulnerability research, security documentation, and conference-driven security content focused on practical attack demonstrations and defensive awareness.

Cybersecurity professional working at the intersection of offensive security, vulnerability management, and real world enterprise risk. Experience includes security research, penetration testing, and leading governance initiatives across large scale global environments, with a focus on translating adversarial thinking into practical security improvements and resilient organizational defenses.

Guest Lecturer: Certified Ethical Hacking (CEH)Poornima University, Jaipur | 2023 (Offline/On-Campus)The Engagement: Delivered an intensive 4-day offline lecture series to a cohort of over 200+ cybersecurity students.The Impact: Managed the full end-to-end delivery of the CEH program, translating dense theoretical frameworks into practical, hands-on offensive security insights.Key Achievement: Successfully maintained high engagement for a large-scale student body, focusing on real-world exploit demonstrations and career guidance in the offensive security domain.International Cybersecurity TrainerBLACKOPS Cybersecurity Consortium | Online (International)The Engagement: Provided specialized online technical training specifically for cybersecurity students located in the Philippines.The Impact: Focused on bridging international security gaps by teaching advanced penetration testing methodologies and vulnerability research.Key Achievement: Delivered high-value training across time zones, ensuring that complex security concepts were accessible and actionable for a global audience.Head Coordinator & Mentor: National Internship ProgramMSG’s Crime Free Bharat (CFB) | 2021 (Online/National)The Engagement: Served as the Head Coordinator for a massive 6-month online internship program, managing and mentoring over 500+ students.The Impact: Oversaw the technical and administrative direction of the program, designed to educate the next generation of security professionals on digital crime prevention and offensive security basics.Key Achievement: Successfully scaled a mentorship framework to support a massive volume of interns, maintaining quality control and technical rigor over a half-year duration.

I specialise in OffSec and AI Security and professionalise in Red Teaming, AppSec and Cloud. With my core expertise lying in Adversarial testing of modern AI-driven systems and LLMs and MCP servers I have also gotten my hands into much of Vuln research and ASM projects in the banking sector.I currently focus into breaking GenAI, AI and LLM models with deep research into Agentic AI systems exploit development as well for better security assessments. My frameworks are adopted by major MNCs in the Banking/Fintech industry for real world exploit devs across enterprise environments to assess security measures thoroughly. My  particularised intereste lies in bleeding border line emerging attack paths involving AI agents, APIs, cloud platforms, and identity systems to develop misconfigs and logic abuse scenarios in currently established AI practices in orgs.

Vitaly Simonovich is a senior security researcher at Cato Networks and a member of Cato CTRL. Currently, Vitaly focuses on researching topics related to LLM security, with a particular emphasis on jailbreaks and prompt injections, as well as conducting vulnerability research across a wide range of technologies. In addition, he is actively involved in threat intelligence, analyzing emerging threats and attack trends to strengthen organizational defenses.Prior to joining Cato in 2023, Vitaly worked at Incapsula and Imperva, where he led teams of security analysts and researchers. With over nine years of experience in cybersecurity, Vitaly specializes in application security, data security, LLM security, vulnerability research, and threat intelligence.An active contributor to the cybersecurity community, Vitaly regularly publishes research blogs, hosts webinars, and presents at conferences. In addition to his professional work, he teaches cybersecurity at local colleges and enjoys solving CTF challenges in his free time to stay sharp and enhance his skills.