Security teams are challenged to modernize application security practices in light of accelerating shifts to DevOps delivery models and rapid adoption of cloud-native application designs. Applications built on microservices (e.g. serverless, containers, APIs) and delivered continuously are outpacing application security teams ability to secure them. CISOs need to consider new skills, new touch points and new platforms to maintain a strong security posture in light of these trends and the speed at which they are re-shaping IT.
Application Security in a DevOps, Cloud and API World
CISO Council
Speakers
Karl Mattson
CISO
Noname Security
About Me
As a future-oriented information security executive my key strength is coaching and educating cybersecurity companies on listening to and interpreting the pain-points and priorities of enterprise customers. These insights help drive effective product strategies, go-to-market strategies and ongoing customer success.
Over the years, I’ve had the privilege of advising several cyber entrepreneurs who are now thriving. On the heels of their success, I was looking for a new challenge. In 2020, I had the opportunity to meet with the Noname Security team early in its platform design. Recognizing that they were on the verge of solving several challenges in securing APIs, I wanted to be a part of their exciting adventure.
I joined Noname as Chief Information Security Officer, where I’m currently establishing a rigorous standard for operational and security excellence, in addition to advocating for ongoing platform changes based on our customers’ needs.
ABOUT NONAME SECURITY:
Noname Security ensures secure APIs at the speed of business with the most powerful, complete and easy-to-use API security platform. How do I know it works? I was their first customer! I believe in the platform and want to share it with the world.
According to Gartner, APIs will be the #1 attack vector by 2022. Gateways and WAFs don’t protect against API breaches or find misconfigurations. API testing and bug bounty programs have significant gaps, leaving businesses exposed.
Noname resolves API vulnerabilities across 4 key pillars, or as we call it, DART:
➤ Discover
➤ Analyze
➤ Remediate
➤ Test
We’ll find and take inventory of all existing APIs, use AI-based detection to illuminate risks, block attacks in real time and run tests to ensure API integrity before production.
WHAT YOU CAN EXPECT:
➤ Solid engineering underpinning a product that’s ahead of the competition
➤ Flexible deployment model with many integrations that adapt to your business
➤ Coverage of the 3 main areas needed to protect APIs: posture management, detection and response and code security
What are you doing to protect your company’s digital content? Keep your company’s APIs out of the news with Noname Security.
LEARN MORE:
See what our customers are saying about us and find more information on our website: www.nonamesecurity.com
Michael Owens
BISO
Equifax
About Me
Dr. Michael Owens is an innovative, collaborative, and distinguished leader with over 25 years of experience in startup, corporate, government, and military organizations. A transformation leader and sought-after speaker, Michael frequently keynotes on topics related to cybersecurity, cyberwarfare, and national security matters. As a cybersecurity executive, he has been at the vanguard of some of the most complex issues dealing with breach mitigation/recovery, threat intelligence sharing, and diversity within the tech and cyber industry.
Michael is the president and CEO of the U.S. Global Center of Cyber Policy, where he leads the organization in providing federal, state, and local governments with non-partisan thought leadership and expert information and analysis on cybersecurity, cybercrime, and cyberwarfare trends, strategies, and policies from a domestic and international perspective.
Prior to this, Michael led the Global Cybersecurity, Cybercrime, and Critical Infrastructure Program for EY within the Forensics, Investigations & Dispute division. In that role, he was responsible for the global strategic direction and standardization of threat intelligence, cybersecurity assessments, audits, and incident response services. Before this, Michael worked at Cisco Systems leading the Advanced Services, Public Sector service delivery team. During this time, he led cybersecurity, wired and wireless networks, and IT strategy engagements for government agencies in the U.S. southeast across and New York.
Michael has extensive international and geopolitical experience with projects completed in over 100 countries. As an entrepreneur, Michael pioneered the practice of SMB MSP and fractional CIO/CISO services.
Michael is an eight-year veteran of the United States Marine Corps and a current member of the US Marine Corps Cyber Auxiliary. He is a member of the World Affairs Council of Atlanta, a Political Partner with the Truman National Security Project, and serves on the State Advisory Committee for the US Global Leadership Coalition, the Evanta/Gartner Atlanta CISO Governing Body, and the Leadership Board of the Cybersecurity Collaboration Forum.
Michael's educational background includes a bachelor’s from North Carolina A&T State University, a master’s degree from Georgia Institute of Technology, a doctorate from California Intercontinental University, and advanced certificates and executive programs from the U.S. Army War College and Harvard University. He resides in Mableton, Georgia with his two children.
David Levine
VP Corporate & Information Security, CSO
Ricoh Americas Corporation
About Me
David Levine is Vice President of Corporate and Information Security & CSO for Ricoh USA. In this role, he has responsibility for corporate security, investigations, operational security (cyber and physical), security policy, access management, eDiscovery and litigation support and HIPAA Compliance. Levine chairs Ricoh’s Security Advisory Councils and HIPPA Board of Directors, leads Ricoh’s Global Virtual Security team and is routinely engaged in customer opportunities to discuss risk and security.
Levine has held a wide and diverse variety of positions during his 23-year tenure with the company, including IT engineering, project management, vendor management, Six Sigma and Technology Infrastructure and End User Services leadership, giving him a great perspective on technology, the business and security.
Levine is an Atlanta Co-chair for Evanta's CISO Governing Body, a member of Argyle's CISO Advisory Board, a member of Forrester Research’s Security & Risk Leadership Board, Gartner's CISO Coalition and the FBI’s InfraGard Program. He is a quarterly contributor to CSO online. He holds a Bachelor of Arts degree in Information Systems with minors in Computer Science and Business from Eckerd College.
Matthew Webb
Director, Information Security
HCA
Larry Whiteside
Co-Founder & President
Cyversity
About Me
Larry Whiteside Jr. is a veteran CISO, former USAF Officer, and thought leader in the Cybersecurity field. He has 25+ years’ experience in building and running cybersecurity programs, holding C Level Security executive roles in multiple industries including DoD, Federal Government, Financial Services, Healthcare, and Critical Infrastructure.
Larry currently serves as the Chief Technology Officer and Chief Security Officer at CyberClan, a full service Global Incident Response and Managed Security Services Provider for the small to medium sized business.
Larry is also the Co-Founder, President, and on the Board of Directors at the International Consortium of Minority Cybersecurity Professionals (ICMCP), a 501(c)3 non-profit association that is dedicated to increase the number of minorities and women in the cybersecurity career field through providing workforce development that includes skills assessment, training, education, mentorship, and opportunity.
Since 2009, via Whiteside Security, which he founded, Larry has advised several corporate security executives and companies across the cybersecurity industry on how to make Cyber Security a number one objective to their business. He has helped CEOs and board members of private cybersecurity companies achieve their goals in sales, marketing, and customer retention.
Larry has spoken in front of C Level leadership and Board of Directors of some of the largest private and public sector organizations in America. A thought leader in the industry with extensive experience presenting at conferences such as the Gartner Security Summit, RSA Conference, and SC World Congress, Larry has been featured in many articles relating to information security and risk management.
Larry received his Bachelor of Science degree in computer science at Huston-Tillotson University.
Avitosh Pal
Senior Director Infrastructure/Architecture
Holiday Inn Club Vacations
About Me
Technology executive with broad experience in strategic use of technology for new customer experience development, large scale business transformations, achieve greater revenue or improve cost structure. Thought leader with ability to drive critical alignment between business and technology and build highly engaged teams utilizing global multi-sourced vendors. Broad industry experience covering Hospitality, Retail, Restaurant and Manufacturing/Logistics. Strong leader who is customer-focused and possess excellent interpersonal skills. Employs a collaborative management style to breed accountability and teamwork to drive results.
Matthew Webb
Director, Information Security
HCA
Larry Whiteside
Co-Founder & President
Cyversity
About Me
Larry Whiteside Jr. is a veteran CISO, former USAF Officer, and thought leader in the Cybersecurity field. He has 25+ years’ experience in building and running cybersecurity programs, holding C Level Security executive roles in multiple industries including DoD, Federal Government, Financial Services, Healthcare, and Critical Infrastructure.
Larry currently serves as the Chief Technology Officer and Chief Security Officer at CyberClan, a full service Global Incident Response and Managed Security Services Provider for the small to medium sized business.
Larry is also the Co-Founder, President, and on the Board of Directors at the International Consortium of Minority Cybersecurity Professionals (ICMCP), a 501(c)3 non-profit association that is dedicated to increase the number of minorities and women in the cybersecurity career field through providing workforce development that includes skills assessment, training, education, mentorship, and opportunity.
Since 2009, via Whiteside Security, which he founded, Larry has advised several corporate security executives and companies across the cybersecurity industry on how to make Cyber Security a number one objective to their business. He has helped CEOs and board members of private cybersecurity companies achieve their goals in sales, marketing, and customer retention.
Larry has spoken in front of C Level leadership and Board of Directors of some of the largest private and public sector organizations in America. A thought leader in the industry with extensive experience presenting at conferences such as the Gartner Security Summit, RSA Conference, and SC World Congress, Larry has been featured in many articles relating to information security and risk management.
Larry received his Bachelor of Science degree in computer science at Huston-Tillotson University.
EVENT DETAILS
September 28, 2021
CouncilAgenda
3:00 PM-4:15 PM
Application Security in a DevOps, Cloud and API World
Panelists
Chair
Larry Whiteside
Co-Founder & President
Cyversity
Larry Whiteside Jr. is a veteran CISO, former USAF Officer, and thought leader in the Cybersecurity field. He has 25+ years’ experience in building and running cybersecurity programs, holding C Level Security executive roles in multiple industries including DoD, Federal Government, Financial Services, Healthcare, and Critical Infrastructure.
Larry currently serves as the Chief Technology Officer and Chief Security Officer at CyberClan, a full service Global Incident Response and Managed Security Services Provider for the small to medium sized business.
Larry is also the Co-Founder, President, and on the Board of Directors at the International Consortium of Minority Cybersecurity Professionals (ICMCP), a 501(c)3 non-profit association that is dedicated to increase the number of minorities and women in the cybersecurity career field through providing workforce development that includes skills assessment, training, education, mentorship, and opportunity.
Since 2009, via Whiteside Security, which he founded, Larry has advised several corporate security executives and companies across the cybersecurity industry on how to make Cyber Security a number one objective to their business. He has helped CEOs and board members of private cybersecurity companies achieve their goals in sales, marketing, and customer retention.
Larry has spoken in front of C Level leadership and Board of Directors of some of the largest private and public sector organizations in America. A thought leader in the industry with extensive experience presenting at conferences such as the Gartner Security Summit, RSA Conference, and SC World Congress, Larry has been featured in many articles relating to information security and risk management.
Larry received his Bachelor of Science degree in computer science at Huston-Tillotson University.
Speaker
Karl Mattson
CISO
Noname Security
As a future-oriented information security executive my key strength is coaching and educating cybersecurity companies on listening to and interpreting the pain-points and priorities of enterprise customers. These insights help drive effective product strategies, go-to-market strategies and ongoing customer success.
Over the years, I’ve had the privilege of advising several cyber entrepreneurs who are now thriving. On the heels of their success, I was looking for a new challenge. In 2020, I had the opportunity to meet with the Noname Security team early in its platform design. Recognizing that they were on the verge of solving several challenges in securing APIs, I wanted to be a part of their exciting adventure.
I joined Noname as Chief Information Security Officer, where I’m currently establishing a rigorous standard for operational and security excellence, in addition to advocating for ongoing platform changes based on our customers’ needs.
ABOUT NONAME SECURITY:
Noname Security ensures secure APIs at the speed of business with the most powerful, complete and easy-to-use API security platform. How do I know it works? I was their first customer! I believe in the platform and want to share it with the world.
According to Gartner, APIs will be the #1 attack vector by 2022. Gateways and WAFs don’t protect against API breaches or find misconfigurations. API testing and bug bounty programs have significant gaps, leaving businesses exposed.
Noname resolves API vulnerabilities across 4 key pillars, or as we call it, DART:
➤ Discover
➤ Analyze
➤ Remediate
➤ Test
We’ll find and take inventory of all existing APIs, use AI-based detection to illuminate risks, block attacks in real time and run tests to ensure API integrity before production.
WHAT YOU CAN EXPECT:
➤ Solid engineering underpinning a product that’s ahead of the competition
➤ Flexible deployment model with many integrations that adapt to your business
➤ Coverage of the 3 main areas needed to protect APIs: posture management, detection and response and code security
What are you doing to protect your company’s digital content? Keep your company’s APIs out of the news with Noname Security.
LEARN MORE:
See what our customers are saying about us and find more information on our website: www.nonamesecurity.com
Speaker
Michael Owens
BISO
Equifax
Dr. Michael Owens is an innovative, collaborative, and distinguished leader with over 25 years of experience in startup, corporate, government, and military organizations. A transformation leader and sought-after speaker, Michael frequently keynotes on topics related to cybersecurity, cyberwarfare, and national security matters. As a cybersecurity executive, he has been at the vanguard of some of the most complex issues dealing with breach mitigation/recovery, threat intelligence sharing, and diversity within the tech and cyber industry.
Michael is the president and CEO of the U.S. Global Center of Cyber Policy, where he leads the organization in providing federal, state, and local governments with non-partisan thought leadership and expert information and analysis on cybersecurity, cybercrime, and cyberwarfare trends, strategies, and policies from a domestic and international perspective.
Prior to this, Michael led the Global Cybersecurity, Cybercrime, and Critical Infrastructure Program for EY within the Forensics, Investigations & Dispute division. In that role, he was responsible for the global strategic direction and standardization of threat intelligence, cybersecurity assessments, audits, and incident response services. Before this, Michael worked at Cisco Systems leading the Advanced Services, Public Sector service delivery team. During this time, he led cybersecurity, wired and wireless networks, and IT strategy engagements for government agencies in the U.S. southeast across and New York.
Michael has extensive international and geopolitical experience with projects completed in over 100 countries. As an entrepreneur, Michael pioneered the practice of SMB MSP and fractional CIO/CISO services.
Michael is an eight-year veteran of the United States Marine Corps and a current member of the US Marine Corps Cyber Auxiliary. He is a member of the World Affairs Council of Atlanta, a Political Partner with the Truman National Security Project, and serves on the State Advisory Committee for the US Global Leadership Coalition, the Evanta/Gartner Atlanta CISO Governing Body, and the Leadership Board of the Cybersecurity Collaboration Forum.
Michael's educational background includes a bachelor’s from North Carolina A&T State University, a master’s degree from Georgia Institute of Technology, a doctorate from California Intercontinental University, and advanced certificates and executive programs from the U.S. Army War College and Harvard University. He resides in Mableton, Georgia with his two children.
Speaker
David Levine
VP Corporate & Information Security, CSO
Ricoh Americas Corporation
David Levine is Vice President of Corporate and Information Security & CSO for Ricoh USA. In this role, he has responsibility for corporate security, investigations, operational security (cyber and physical), security policy, access management, eDiscovery and litigation support and HIPAA Compliance. Levine chairs Ricoh’s Security Advisory Councils and HIPPA Board of Directors, leads Ricoh’s Global Virtual Security team and is routinely engaged in customer opportunities to discuss risk and security.
Levine has held a wide and diverse variety of positions during his 23-year tenure with the company, including IT engineering, project management, vendor management, Six Sigma and Technology Infrastructure and End User Services leadership, giving him a great perspective on technology, the business and security.
Levine is an Atlanta Co-chair for Evanta's CISO Governing Body, a member of Argyle's CISO Advisory Board, a member of Forrester Research’s Security & Risk Leadership Board, Gartner's CISO Coalition and the FBI’s InfraGard Program. He is a quarterly contributor to CSO online. He holds a Bachelor of Arts degree in Information Systems with minors in Computer Science and Business from Eckerd College.
Speaker
Matthew Webb
Director, Information Security
HCA
Speaker
Avitosh Pal
Senior Director Infrastructure/Architecture
Holiday Inn Club Vacations
Technology executive with broad experience in strategic use of technology for new customer experience development, large scale business transformations, achieve greater revenue or improve cost structure. Thought leader with ability to drive critical alignment between business and technology and build highly engaged teams utilizing global multi-sourced vendors. Broad industry experience covering Hospitality, Retail, Restaurant and Manufacturing/Logistics. Strong leader who is customer-focused and possess excellent interpersonal skills. Employs a collaborative management style to breed accountability and teamwork to drive results.
Together With
