Find Expert Speakers

Aniket is a seasoned cybersecurity and AI risk management professional who brings over 14 years of practical experience. He has spent his career working with major global companies, focusing on how to manage security risks, consult on risk matters, and audit technology systems. Aniket currently heads the Uber India cybersecurity and AI risk auditing team that is responsible for reviewing the cyber and AI risks . Prior to Uber he has worked in the Banking (Wells Fargo and Deutsche Bank) and Consulting (KPMG and Infosys) industries.He has an MBA in Information Systems Security from Symbiosis Center for Information Technology, and a Bachelor's in Engineering in Information Technology. Aniket is also highly certified, holding credentials such as CISSP, CISA, Cloud Computing Zero Trust (CCZT), Cloud Computing Security Knowledge (CCSK), ISO 27001 LA-2013

I have spoken at multiple international cybersecurity conferences and platforms, addressing both deeply technical audiences and early-career practitioners, with topics spanning AI security, detection engineering, and modern SOC evolution. At NDC Security 2026 Oslo, I shall deliver “Who Gave the Agent Admin Rights?! Securing Cloud & AI Machine Identities”, where I'll examine non-human identities, AI agents, and the emerging risks of autonomous privilege, focusing on governance, detection, and containment strategies in cloud environments. At BSides Pittsburgh and BSides Krakow, as well as at the Silicon Saxony Day (19th edition), I presented “Enhancing Open-Source IDS & SIEM Solutions into AI-Enabled XDR & SOAR Solutions in Cloud Environments”, focusing on extending open-source detection stacks with automation, ML-driven enrichment, and response orchestration to build scalable, analyst-effective security operations. In contrast, my session at BSides Buffalo, “From Curiosity to Cybersecurity: A Practical Guide to Getting Started and Standing Out”, was designed for students and early professionals, offering actionable guidance on skill-building, differentiation, and navigating cybersecurity careers. Beyond conferences, I have appeared on the Distilled Security Podcast, where I discussed how deploying specialised, small language models locally can significantly improve efficiency, reduce operational friction, and make AI-assisted security workflows more practical and trustworthy.

Farhad Sajid Barbhuiya is a passionate security professional with over 5 years of hands-on experience in offensive security, delivering more than 2000 hours of training across educational institutions, corporations, and government organizations. His trainings cover Web & Mobile Application Security, Reverse Engineering, Exploit Development, Code Review, and more, empowering diverse audiences with practical, real-world skills.Currently a Staff Information Security Engineer on the Offensive Security team at Zscaler, Farhad works on offensive security assessments spanning across Mobile Application Security (Android & iOS), Reverse Engineering, Web Application Security, Agentic AI and LLMs and Hardware Security. His work focuses on uncovering vulnerabilities in high-stakes environments, from custom exploit chains to evasion techniques in containerized and cloud systems.A sought-after speaker, Farhad has presented at premier cybersecurity conferences including NullCon Goa (Advanced Web Apps Pentesting training), Bsides Delhi (Reverse Engineering for Exploit Development), Null Delhi (Reverse Engineering for Developers), Bsides Mumbai (DYLD Library Injection on macOS), Defcon Delhi (IoT Village), Bsides Vizag (TACTOU Attacks in AI Agents), and Bsides Mussorie (Magazine Exhaustion on iOS Heap Allocators). His sessions blend deep technical dives with live demos, making complex topics accessible and actionable.Farhad thrives at the intersection of vulnerability research, exploit development, and secure architecture, contributing to the infosec community through research, tools, and knowledge-sharing.

Jaswanth has speaking experience in multiple well reputed conference's such as Seasides goa, OWASP, Security BSides, NexGen CyberWomen, and multiple universities.

Johann Rehberger has over twenty years of experience in threat modeling, risk management, penetration testing, and red teaming. During his tenure at Microsoft, Johann established a Red Team within Azure Data and led the program as Principal Security Engineering Manager. He went on to build a Red Team at Uber, and currently serves as Red Team Director at Electronic Arts. In addition to his industry roles, Johann is an active security researcher and a former instructor in ethical hacking at the University of Washington. Johann contributed to the MITRE ATT&CK and ATLAS frameworks and is the author of "Cybersecurity Attacks - Red Team Strategies". He holds a master's degree in computer security from the University of Liverpool. You can find his latest research at embracethered.com.

As we hand more agency to machines, we’re creating identities that can act, but not always be held accountable. I research how to red team and secure autonomous AI systems before that gap becomes systemic risk. My work lives at the intersection of offensive security and the rapid, often untethered growth of artificial intelligence. As an AI/ML Researcher and Red Teamer, I don't just look for bugs; I map the boundaries of autonomous systems to ensure they remain resilient when the unexpected happens. From the intricate layers of LLM pipelines to the hidden vulnerabilities in blockchain and DevSecOps automations, I focus on uncovering risks before they become reality. At DEF CON 33, I had the opportunity to speak on the Policy Track about the legal frameworks for ethical hacking. To me, security is as much about the humans who defend the systems as it is about the code itself. Advocating for global safe harbor standards is a vital part of ensuring that researchers can continue to protect the digital world without fear. I believe that as we hand more agency to machines, our need for intentional, human-centered security only grows. Whether I am simulating a real-world attack on an AI-driven workflow or refining a policy for international safety, my goal is to provide a clean window of clarity in an increasingly complex threat landscape. I am always open to quiet conversations about the offensive side of security, the future of AI resilience, or the ongoing effort of building trust in technology.

I am Paaraj Solanki, a Senior SOC Engineer and Team Lead at Forge Digital with over 8 years of professional experience, including 2 years in web development and 6 years in cybersecurity. I hold an M.Tech in Cybersecurity as a Gold Medalist and am CompTIA CySA+ certified. My core expertise lies in incident response, threat hunting, and threat intelligence. I enjoy research and am an efficient problem solver, with a strong focus on tackling real-world security challenges and leading security operations teams effectively. This will be my first talk, and I’m excited to share my experience and insights.

Partho Alkesh Pandya (known online as Psychomong) is a cybersecurity professional from Patan/Ahmedabad, Gujarat, India. He currently serves as Cyber Security Manager at Decimal Point Analytics in Ahmedabad. He previously worked as a Cyber Security Analyst at Demmisto Technologies.Professional Bio & ExpertisePartho is a recognized ethical hacker, bug bounty hunter, digital forensics expert, and VAPT (Vulnerability Assessment and Penetration Testing) specialist. He holds over 100 certifications, including CEH v13 AI (Certified Ethical Hacker) and ISO 42001 Lead Auditor. He focuses on practical cybersecurity research, threat intelligence, AI-related risks, deepfakes, and digital safety awareness.He is an active public speaker, educator, and content creator. He has:Delivered 130+ workshops and seminars on cyber awareness, ethical hacking, and emerging threats at colleges, universities, conferences (IIT & IIMs)and educational platforms.Trained police personnel on cybersecurity topics.Served as a panelist/expert on news channels (e.g., Nirman News) discussing topics like OpenAI trends, digital vigilance, and business cybersecurity risks.Built a following through his Medium blog (Psychomong), LinkedIn, Instagram (@parthopandya), and YouTube, where he shares practical insights, research, and awareness content. His blogging and speaking journey started after encouragement from mentors to deepen his own expertise by teaching others.Claim to FameBug bounty discoveries: Notably found and reported vulnerabilities (including an XSS flaw) on high-profile sites such as NASA and RBI (Reserve Bank of India), earning recognition in the ethical hacking community.Public educator and speaker: Frequently invited for talks, workshops, and media appearances on real-world cyber threats, making complex topics accessible to students, professionals, and law enforcement.Community contributor: Known for promoting free, practical cybersecurity education and collaborating on learning resources.

I specialise in OffSec and AI Security and professionalise in Red Teaming, AppSec and Cloud. With my core expertise lying in Adversarial testing of modern AI-driven systems and LLMs and MCP servers I have also gotten my hands into much of Vuln research and ASM projects in the banking sector.I currently focus into breaking GenAI, AI and LLM models with deep research into Agentic AI systems exploit development as well for better security assessments. My frameworks are adopted by major MNCs in the Banking/Fintech industry for real world exploit devs across enterprise environments to assess security measures thoroughly. My  particularised intereste lies in bleeding border line emerging attack paths involving AI agents, APIs, cloud platforms, and identity systems to develop misconfigs and logic abuse scenarios in currently established AI practices in orgs.

Udit Ganguly is an undergraduate researcher in computer science and engineering, focusing on AI-driven satellite communications, resilient IoT systems, and intelligent network architectures for future 6G ecosystems. His broader interests include AI-assisted network security, autonomous infrastructure, and scalable wireless communication systems.

I am an active educator in the cybersecurity community and currently work as a Consultant in Offensive Security at Kroll. I have delivered technical workshops at multiple colleges across India. These sessions cover practical topics like ethical hacking, mobile application penetration testing, and Red Teaming.I am also an instructor on Udemy. I share my knowledge with a global audience by creating courses that help students learn complex security concepts. In addition to teaching, I contribute to the industry as a Subject Matter Expert for Hack The Box. I help the community understand the latest trends in offensive security.​I have been recognised for my skills by the NCIIPC as one of the top 15 hackers in India. I also participate in bug bounty programs and have received acknowledgements from various organisations. My goal is to make cybersecurity education accessible and practical for everyone.

Vitaly Simonovich is a senior security researcher at Cato Networks and a member of Cato CTRL. Currently, Vitaly focuses on researching topics related to LLM security, with a particular emphasis on jailbreaks and prompt injections, as well as conducting vulnerability research across a wide range of technologies. In addition, he is actively involved in threat intelligence, analyzing emerging threats and attack trends to strengthen organizational defenses.Prior to joining Cato in 2023, Vitaly worked at Incapsula and Imperva, where he led teams of security analysts and researchers. With over nine years of experience in cybersecurity, Vitaly specializes in application security, data security, LLM security, vulnerability research, and threat intelligence.An active contributor to the cybersecurity community, Vitaly regularly publishes research blogs, hosts webinars, and presents at conferences. In addition to his professional work, he teaches cybersecurity at local colleges and enjoys solving CTF challenges in his free time to stay sharp and enhance his skills.