Sahba Kazerooni
Principal Consultant, Security Compass
http://www.securitycompass.com

We’ve made some good progress on the Secure Web Application Framework Manifesto: a set of requirements intended to guide web application framework developers in making more secure web application frameworks from the start:
http://labs.securitycompass.com/index.php/2010/05/05/next-release-of-secure-web-application-framework-manifesto/

Catch me at SANSFIRE:
DEV541:Secure Coding in Java/JEE: Developing Defensible Applications - http://www.sans.org/sansfire-2010/description.php?tid=1937  
DEV534: Secure Code Review for Java Web Apps - http://www.sans.org/sansfire-2010/description.php?tid=2737 




Dr. Anton Chuvakin
Book aka "the PCI book" recently came out:
http://www.pcicompliancebook.info

New SIEM Presentation
http://www.slideshare.net/anton_chuvakin/siem-st-andrews-2009-rel

Log Standard
http://cee.mitre.org/

PCI Talk
Part 1 http://www.csoonline.com/podcast/513988/The_Great_PCI_Security_Debate_of_2010_Part_1
Part 2 http://netsecpodcast.com/?p=391

New Consulting Services Website
http://www.securitywarriorconsulting.com/


Robert Clark, Department of Homeland Security
Am working as guest blogger on legal issues associated with computer network operations for Cyber Conflict Studies Association found at http://ccsalegalone.wordpress.com/


Rafal Los
1.    I published a paper to (http://infosecwriters.com/texts.php?op=display&id=640) called “Failed: Information Security and Data Protection in a Consumer Digital World” …back in December ’08.  I’ve been quoted a few times here and there in TheRegister, and TechHerald…  I also keep 2 blogs (http://www.communities.hp.com/securitysoftware/blogs/rafal/default.aspx) and (http://preachsecurity.blogspot.com)
2.    I’m currently working on a project to change the way that “Web App Security Scanners” function… presenting the basic ideas here at Source Boston and over the next year or so
3.    I’ve spoken at SANS, SecTor, StarEast/StarWest, InfoSec World, more OWASP meetings than I can count, ChiSec, ISACA and other events
4.    Additional info on me… I am a fanatical hockey fan, lover of fast cars and track days/auto-cross, and animals.

Dino Dai Zovi & Alexander Sotirov
Giving a 2-day training on Assured Exploitation at CanSec West - http://cansecwest.com/dojoassured.html

Randy Barr, Qualys
Resource for Qualys news and blogs:
http://news.qualys.com/
 
Updates on vulnerabilities:
http://laws.qualys.com/


Branden Williams, RSA
I have a few pubs, all the detail is right here:  https://www.brandenwilliams.com/media/


Ron Gula, Tenable Network Security
I was recently interview on OWASP podcast #58

http://www.owasp.org/download/jmanico/owasp_podcast_58.mp3

"In OWASP #58, Ron Gula was interviewed by the show's producer, Jim Manico. Jim received several questions from the Internet and Twitter about the similarities between web application firewalls and intrusion detection systems which we covered in depth. They spoke at great length about web application penetration testing, how web application security can be managed and leveraging technologies such as file integrity checking and process accounting for detecting and responding to incidents."

Brian Honan, BH Consulting
I am currently writing the second edition of my book “Implementing ISO 27001 in a Windows Environment” to include the security features of Windows 7.
I will be speaking at the 2nd Annual Data Protection Conference on March 25th http://www.ics.ie/index.php/News/2nd-annual-data-protection-conference.html
I am now blogging at the Infosecurity Adviser site http://www.infosecurityadviser.com/general_blog as well as my own blog http://www.bhconsulting.ie/securitywatch
I am part of the organising committee for the SecureCloud 2010 Conference in March http://www.cloudsecurityalliance.org/sc2010.html

Adam Meyers, SRA
New Podcast - http://blog.cenzic.com/public/item/249211

Josh Wright, Inguardians
I recently published an article about a weakness in the Verizon MiFi device that allows an attacker to recover the default password.  This vulnerability demonstrates a weakness in the WPA/WPA2 mechanism, weakened by poor design decisions at Verizon.

http://threatpost.com/en_us/blogs/verizon-mifi-device-hacked-020310

David Mortman, C3
I've started a new job (I'm still with
securosis) as the Director, Operations and Security for C3
(www.c3-e.com)

Erez Metula, AppSec:
1.    I'm working on a book titled "Managed Code Rootkits", scheduled to be published by Syngress around June this year.
2.    I'd recently established "AppSec", an application security firm focusing on consulting & security training for developers. Website: http://www.AppSec.co.il
3.    I've spoken at Blackhat, Defcon, CanSecWest, OWASP, RSA, and other places.


 
 
Are you a previous or current SOURCE Speaker who is working on something new? Email speakernews at sourceconference dot com