Find Expert Speakers

Abhijeet is a security researcher specializing in adversary simulations that mimic advanced threat actors, by crafting multi stage attack chains, from initial foothold to stealthy persistence and data exfiltration. With extensive hands-on experience, he has engineered and executed offensive engagements targeting CI/CD pipelines, Kubernetes clusters, Active Directory environments, cloud infrastructures (AWS, Azure, GCP), and *NIX systems. In his spare time he runs a homelab where he recreates adversary TTPs, toys with new tech, and dissects emerging threats. He’s also an avid reader, enthusiastic foodie, and weekend time home chef.

Ailin Castellucci’s speaking experience spans key cybersecurity communities and public forums across Latin America, where she delivers both technical workshops and high-level talks focused on practical, real-world security.She has been part of conference lineups such as NotPinkCon, where she presented “Cyber-Operation,” exploring cybersecurity and cyber conflict concepts in an accessible, audience-friendly way.At Congreso AGETIC 2023 (Bolivia), she led a hands-on workshop, “Threat Modeling in a Nutshell,” designed to help teams apply threat modeling methodologies in practice—covering strengths, real-life use, and the human challenges organizations face when implementing these practices. In the same event, she was also listed as a keynote speaker with “Avengers, assemble! – Seguridad colaborativa,” reinforcing her emphasis on collaborative security approaches.She has also spoken at the “Cibercrisis” conference series by Sombreros Blancos, where she presented a talk titled “Roses are red, violets are blue… there’s a spy in your net and she’s behind you!”, bringing an engaging, story-driven angle to security awareness and adversarial thinking.Beyond large events, Ailin frequently speaks in community and online formats—such as Discord sessions—on topics like “Seguridad Colaborativa,” aiming to bridge the gap between security best practices and what teams can realistically implement.Overall, her speaking style blends practitioner experience (offensive security, bug bounty, and security teams) with clear frameworks and actionable guidance, making her talks useful for both newcomers and experienced professionals.

Speaker at multiple International Security conferences: NullCon, AVAR Singapore, AVAR Chennai, Bsides Delhi. Did first lock picking workshop in India with Nullcon in 2012 and multiple lock picking workshops in Nullcon , Hackers conference.  Did workshop on Arduino in NullCon hackers conference and created first ever Hardware badge in India for Hackers conference.

I am a Threat Researcher at SonicWall Capture Labs with over 10 years of hands-on experience in malware analysis and cybersecurity. I specialise in PDF and MS Office malware, with deep expertise in static and dynamic analysis, reverse engineering obfuscated binaries, and tracking adversarial evasion techniques used by threat actors.I started my career at Quick Heal, where I worked on file-infecting viruses, writing detection signatures and repair routines for infected PE files. At Symantec, I was part of the IDS/IPS team, focusing on network-level intrusion detection and threat hunting. For the past seven years at SonicWall Capture Labs, I have been researching document-based malware, reverse engineering malicious payloads, and tracking how threat actors evolve their delivery and evasion strategies.I hold an M.Tech. in Computer Science (Security) from BITS Pilani, where my research was focused on machine learning for malware detection.Speaking ExperienceI have delivered internal threat research presentations at SonicWall, sharing findings on emerging PDF malware campaigns and novel evasion techniques with engineering and threat intelligence teamsI have conducted knowledge-sharing sessions on malware analysis methodologies, reverse engineering workflows, and PDF structure analysisI have published five technical threat research reports on the SonicWall Capture Labs blog, communicating complex malware findings to a broad security audience

I'm working as a Security Researcher at Seqrite Labs (Quick Heal), specializing in Advanced Persistent Threat (APT) hunting, cyber threat intelligence, malware reverse engineering, and adversary infrastructure analysis. Actively involved in uncovering sophisticated intrusion campaigns, mapping TTPs aligned with the MITRE ATT&CK framework, analyzing multi-stage malware ecosystems, and tracking nation-state and financially motivated threat actors across diverse attack surfaces.

Throughout his 25-year career in the IT field, Eric has sought out and held a diverse range of roles. Currently the Chief Identity Architect for Semperis; Eric previously was a member of the Security Research and Product teams. Prior to Semperis, Eric worked as a Security and Identity Architect at Microsoft partners, spent time working at Microsoft as a Sr. Premier Field Engineer, and spent almost 15 years in the public sector, with 10 of them as a technical manager.Eric is a Microsoft MVP for security, recognized for his expertise in the Microsoft identity ecosystem. His security research has also been recognized by Microsoft, most notably for his findings he dubbed “UnOAuthorized”. Eric is a strong proponent of knowledge sharing and spends a good deal of time sharing his insights and expertise at conferences as well as through blogging. Eric further supports the professional security and identity community as an IDPro member, working as part of the IDPro Body of Knowledge committee.

I have a speaking experience of almost around 2.5 years, I started givung sessions from my own college utself and then I have been approached to provide expert training sessions in multiple colleges by far I might have given training sessions at around 6 to 7 colleges and i have also given online sessions as well. And my LinkedIn profile is proof of it.

I am a Principal Researcher with Forcepoint's X-Labs team, focused on APT malware, information stealers, phishing attacks, and tracking the latest threats. My recent work expands into the emerging attack surface around AI and agentic systems, including in-the-wild indirect prompt injection research that has been covered widely in the security press. Over the years, I have investigated and published deep technical analyses on a wide range of active malware families, banking trojans, and infostealer campaigns targeting users across Latin America, Europe, and Asia. I regularly track how threat actors abuse legitimate infrastructure, cloud services, and emerging protocols to evade detection and scale their operations. My approach combines reverse engineering, behavioral analysis, and adversary emulation to translate frontline research into stronger defenses for customers. I am passionate about advancing defensive adversary emulation and threat research.

Mirza Asrar Baig is the Founder and Chief Executive Officer of CTM360, and is the visionary behind developing the Digital Risk Protection stack that embodies the concept of the company. His focus remains on building a highly scalable platform with the vision “Build Locally, Scale Globally”, and he believes in empowering the Arab World to be recognized as a leader in technology research and development.Mirza is a Computer Science graduate from King Fahd University of Petroleum and Minerals (KFUPM - Dhahran, Saudi Arabia). His educational background underscores his deep commitment to research and innovation. With over 30+ years of experience serving the Information Technology and Cybersecurity requirements of the GCC Financial Sector and government bodies, he is playing an instrumental role in safeguarding the region's digital landscape.Mirza is actively contributing to the region through speaking engagements and providing invaluable insights into threats specific to GCC organizations. His passion for advancing cybersecurity in today’s digital age has left an indelible mark, reflecting his dedication to enhancing cybersecurity and resilience globally.CTM360’s technology platform is primarily data-driven and is on track to profile all organizations across the world leveraging public domain data. The technology enables aggregate analytics and real-time cybersecurity posture on industries, countries, and regions. Mirza is now on a mission to have his technology recognized as the go-to choice for regulators as well.

AI Security Architect, and Founder of Novus Aegis AI and ReconPro. He specializes in building autonomous, AI-driven Security Operations (AI SOC) platforms that detect, triage, and respond to cyber threats in real time.With over a decade of hands-on experience in cloud security, DevOps, and cyber defense, Chris has designed and secured enterprise-scale infrastructures by embedding security into CI/CD pipelines and infrastructure-as-code. His expertise includes vulnerability management (SCA, SAST, DAST), red teaming, APT simulation, and SOC automation, aligned with frameworks such as NIST, ISO 27001, and SOC 2.He is the creator of “God’s Eye,” an advanced capability within ReconPro that delivers continuous attack surface visibility, adversary simulation, and intelligence-driven security insights. Through Novus Aegis AI, he is advancing autonomous cyber defense using AI agents that proactively hunt threats, reduce alert fatigue, and compress incident response times from hours to seconds.Chris is passionate about shaping the future of cybersecurity through AI-driven defense, offensive security strategy, and building resilient, self-adapting security ecosystems for enterprises globally.

Partho Alkesh Pandya (known online as Psychomong) is a cybersecurity professional from Patan/Ahmedabad, Gujarat, India. He currently serves as Cyber Security Manager at Decimal Point Analytics in Ahmedabad. He previously worked as a Cyber Security Analyst at Demmisto Technologies.Professional Bio & ExpertisePartho is a recognized ethical hacker, bug bounty hunter, digital forensics expert, and VAPT (Vulnerability Assessment and Penetration Testing) specialist. He holds over 100 certifications, including CEH v13 AI (Certified Ethical Hacker) and ISO 42001 Lead Auditor. He focuses on practical cybersecurity research, threat intelligence, AI-related risks, deepfakes, and digital safety awareness.He is an active public speaker, educator, and content creator. He has:Delivered 130+ workshops and seminars on cyber awareness, ethical hacking, and emerging threats at colleges, universities, conferences (IIT & IIMs)and educational platforms.Trained police personnel on cybersecurity topics.Served as a panelist/expert on news channels (e.g., Nirman News) discussing topics like OpenAI trends, digital vigilance, and business cybersecurity risks.Built a following through his Medium blog (Psychomong), LinkedIn, Instagram (@parthopandya), and YouTube, where he shares practical insights, research, and awareness content. His blogging and speaking journey started after encouragement from mentors to deepen his own expertise by teaching others.Claim to FameBug bounty discoveries: Notably found and reported vulnerabilities (including an XSS flaw) on high-profile sites such as NASA and RBI (Reserve Bank of India), earning recognition in the ethical hacking community.Public educator and speaker: Frequently invited for talks, workshops, and media appearances on real-world cyber threats, making complex topics accessible to students, professionals, and law enforcement.Community contributor: Known for promoting free, practical cybersecurity education and collaborating on learning resources.

Cybersecurity researcher with 8+ years of experience in phishing, malware analysis, email security, and AI security research. Specialized in threat detection, malicious campaign investigations, YARA-based detections, and AI-driven attack techniques including prompt injection and AI supply chain threats.

Rahul Binjve (c0dist) currently leads the Cyber Threat Intelligence (CTI) Engineering team at Fortinet. With over a decade of experience in aggregating and contextualizing various threats, he's a seasoned threat intelligence practitioner. Rahul has presented and conducted workshops at several international conferences, including Black Hat, Nullcon, PHDays, c0c0n, Seasides, and BSides. He's also contributed to multiple open-source security projects, such as the SHIVA spampot and Detux Linux sandbox. Rahul's passions lie in information security, automation, human behavior, and—of course—breaking things.

Rahul is a security researcher with 7+ years in offensive security and red teaming. He specializes in malware development, AV/EDR evasion, and bypassing security controls in heavily defended environments. As a full-time red teamer, he's built tools and developed techniques that work against real-world security stacks.He currently works as Manager of Offensive Security and Threat Assessment with leading financial organizations across the Middle East, collaborating with red, blue, and purple teams to find and fix security gaps in enterprise infrastructure. He's spoken at international conferences including BlackHat, CONFidence, and HAcktivity.His expertise spans enterprise security and cloud infrastructure, with particular focus on identifying and exploiting design flaws in hardened environments.

Keynote speaker with a proven track record presenting at premier industry conferences, including Secureworld, ISSA Motor City, RSAC CLF. Served as a Keynote Speaker at SecureWorld Detroit 2025, delivering executive-level insights on cyber risk, AI-driven threats, and enterprise resilience.

R.D. Tarun (RDT) is a cybersecurity researcher specializing in malware analysis, reverse engineering, and adversary tradecraft. His work focuses on dissecting real-world attack campaigns, with particular emphasis on multi-stage infection chains, fileless execution, and evolving infostealer ecosystems.He conducts in-depth research on active malware campaigns, tracking their progression from commodity tooling to custom-developed payloads. His analysis has uncovered previously undocumented behavior, including custom infostealers, infrastructure patterns, and techniques used to evade modern defenses. His research has been widely circulated within the security community and covered by multiple security news outlets and industry publications.His work combines static and dynamic analysis with memory-level investigation to trace full execution chains from initial access to data exfiltration. He focuses on understanding attacker tradecraft end-to-end and translating offensive techniques into practical detection strategies for SOC and DFIR teams.He actively publishes technical deep-dives on malware, including infostealers, fileless loaders, and multi-stage attack chains, and has presented his research at reputed security community meetups and forums.

Detection and Response Analyst focused on understanding how real-world attacks actually unfold beyond initial detection.- Experienced across endpoint, network, identity, and cloud investigations - Background in internal SOC and security engineering (IR, monitoring, detections) - Interested in OS behavior, execution flow, and abuse of trusted components - Tend to go beyond alerts, connecting signals and reconstructing attack chains - Outside work: travel, people, cultures, and adrenaline hits.

Cybersecurity Enthusiast, CTF Player and Bug Hunter. Contributed to the organization of SECCON CTF, took the stage at AVTOKYO2020/2023/2024, Security Analyst Summit 2024, Hack Fes. 2024, m0leCon 2025, TyphoonCon Seoul 2025, HITCON 2025 and competed in the DEF CON CTF Finals. Renowned for uncovering and reporting vulnerabilities in web services and softwares including Google and Firefox.

I have spoken in couple of national and international platforms as a guest speaker on SOC, threat hunting, Incident Response , AI security and Phishing Attacks

Cybersecurity Consultant with over three years of hands-on industry experience, I specialize in offensive security—driven by a passion for uncovering and exploiting weaknesses before adversaries can. My work spans Red Team operations, Network Security, and Web/API Vulnerability Assessment & Penetration Testing (VAPT), with successful engagements across BFSI, IT Products & Services, and Healthcare sectors.With a strong research focus on Adversarial Tactics, Techniques, and Procedures (TTPs), I continuously explore emerging threat vectors and offensive methodologies to deliver actionable security insights that directly reduce business risk. My approach blends technical precision with creative attack strategies, ensuring organizations stay ahead of evolving cyber threats

Vitaly Simonovich is a senior security researcher at Cato Networks and a member of Cato CTRL. Currently, Vitaly focuses on researching topics related to LLM security, with a particular emphasis on jailbreaks and prompt injections, as well as conducting vulnerability research across a wide range of technologies. In addition, he is actively involved in threat intelligence, analyzing emerging threats and attack trends to strengthen organizational defenses.Prior to joining Cato in 2023, Vitaly worked at Incapsula and Imperva, where he led teams of security analysts and researchers. With over nine years of experience in cybersecurity, Vitaly specializes in application security, data security, LLM security, vulnerability research, and threat intelligence.An active contributor to the cybersecurity community, Vitaly regularly publishes research blogs, hosts webinars, and presents at conferences. In addition to his professional work, he teaches cybersecurity at local colleges and enjoys solving CTF challenges in his free time to stay sharp and enhance his skills.

I am Yash Vasoya, also known as “Cyber Vasoya,” a cybersecurity researcher, analyst, and educator specializing in cybercrime investigation, digital forensics, and ethical hacking. With a strong foundation in both academic research and real-world cybersecurity practice, I focus on analyzing modern cyber threats and translating them into actionable defensive strategies.I have delivered training sessions and workshops for students, professionals, and law enforcement agencies, where I emphasize hands-on learning, real-world case studies, and practical demonstrations. My goal is to bridge the gap between complex cybersecurity concepts and their real-world application in investigations and threat mitigation.I am passionate about building digital resilience and actively contribute to cybersecurity awareness and education. My mission is to simplify complex security challenges and empower individuals and organizations to stay ahead in an evolving cyber threat landscape.