Mythbusting the ‘grey zone’ – the evolution of vulnerability disclosure
Friday 30 October 2020
11:30am – 12:30pm
About the event
What is vulnerability disclosure? How has it evolved over time? How does it contribute to cyber defences and build resilience?
Join us in conversation with Bugcrowd’s Casey Ellis and a panel of experts to discuss vulnerability disclosure in the Australian and international contexts.
Learn:
- Why disclose.io is such an innovative step up
- The concerns of Australian government and corporates
- How to break down the misperceptions and build support for a more robust and transparent culture of disclosure.
In partnership with
Presented by
Phil Kernick
Chief Security Officer – CyberCX
Phil is responsible for the overall security of CyberCX, playing a pivotal role in identifying organisational protection goals and objectives, ensuring consistency against CyberCX’s strategic plans. He oversees a network of security professionals and works with local, state and federal law enforcement and other security agencies, to find new and creative ways to enable customers to meet their challenges and opportunities. Previously CTO and co-founder of CyberCX company CQR Consulting, Phil has more than 25 years of experience in the areas of technical information security, critical infrastructure and forensics. Phil is regularly invited to present at both cyber and industry conferences as well as being called on to provide cyber security commentary in television, print media and industry journals.
Casey Ellis
Chairman, Founder and Chief Technology Officer
Casey is the Chairman, Founder and Chief Technology Officer of Bugcrowd. He is a 20 year veteran of information security, servicing clients ranging from startups to multinational corporations as a pentester, security and risk consultant, and solutions architect. Casey pioneered the ‘Crowdsourced Security as a Service’ model, launching the first bug bounty programs on the Bugcrowd platform in 2012. He co-founded the disclose.io vulnerability disclosure standardisation project in 2016.
Lidia Giuliano
Information Security Professional
Lidia Giuliano has over 15 years' experience in information security. Her interests range from defensive security, cloud architecture and security, to malware prevention and detection techniques. She is a conference organiser of BSides Melbourne and a member of the Black Hat and DevSecCon review boards. She has spoken at numerous international and local Australia/NZ conferences, enjoys spending time mentoring others and is passionate about growing the information security community.
Michael Gianarakis
Co-founder and CEO
Michael is the Co-founder and CEO of Assetnote – an Australian cyber security startup focused on solving the attack surface visibility problem for enterprise and government organisations. Prior to founding Assetnote, he ran the SpiderLabs team in Asia Pacific for Trustwave. Michael has over 13 years’ experience in the security industry and has presented his research around the world at DEFCON, Black Hat Asia, BSides, Las Vegas, Hack in the Box, AusCert, Thotcon, 44Con and OWASP.
Edward Farrell
Director
Edward Farrell is a security consultant with 11 years’ experience in cyber security and 16 years in technology. As the director of one of Australia's few remaining independent cyber security practices, Mercury ISS, he has conducted and overseen the delivery of over 400 security assessment activities and incident responses in the past five years. His professional highlights include lecturing at the Australian Defence Force Academy, accidentally finding bugs in building management systems, being rated in the top 200 bug bounty hunters in 2015 and running an awesome team of security professionals.