Stacy Thayer, Founder and Executive Director, SOURCE Conferences (USA)
Prior to founding SOURCE Conferences, Stacy was employed as a Research Analyst for Linkage, Inc, a Fortune 500 company, where she worked with other Fortune 500 organizations to examine best practices in leadership development, training, and business practices. Stacy first entered the computer fray in 1994, when she began calling local BBSes and attending Boston 2600 meetings. After several years of software consulting during college, she went on to graduate school where she examined online communication behaviors and internet psychology. During this time she also had an award winning interactive website, and was one of the first web developers to utilize chat-rooms, web cams, message boards, blogs, and other interactive media. Her site was used as example of online interpersonal interactions in several university classrooms, including Massachusetts Institute of Technology. She recently completed her PhD in Business Psychology.



John  "Spud" Colbert, Conference Operations Manager
With a career spanning over a decade in the TeleCom, Trasportation, and HealthCare industries, John has developed a wealth of experinece in Risk Mitigation and Technology Security. He currently heads up Colbert Continuity Solutions, a private firm specializing in Business Continuity, Disaster Recovery, and Risk Management services. John has previosly managed the Security Operations for SOURCE Boston 2008, Conference Operations for SOURCE Boston 2009, and will be the Conference Operations Manager for SOURCE Barcelona 2009.
 

SOURCE Barcelona Advisors

Ero Carrera, Reverse Engineer at zynamics GmbH (was SABRE Security) (Barcelona)
Ero Carrera is currently a reverse engineering automation researcher at zynamics GmbH (was SABRE Security Gmbh), home of BinDiff and BinNavi. Ero has previously spent several years as a Virus Researcher at F-Secure where his main duties ranged from reverse engineering of malware to research in analysis automation methods. Prior to F-Secure, he was involved in miscellaneous research and development projects and always had a passion for mathematics, reverse engineering and computer security. While at F-Secure he advanced the field of malware classification introducing a joint paper with Gergely Erdelyi on applying genomic methods to binary structural classification. Other projects he’s worked on include seminal research on generic unpacking. Additionally, Ero is a habitual lurker on OpenRCE and has contributed to miscellaneous reverse engineering tools such as pydot, ida2sql, Pythonika and the broadly used pefile.
 

Andrea Barisani, Chief Security Engineer of Inverse Path Ltd (Italy)
Andrea Barisani is a security researcher and consultant. His professional career began 8 years ago but all really started when a Commodore-64 first arrived in his home when he was 10. Now, 17 years later, Andrea is having fun with large-scale IDS/Firewalls deployment and administration, forensic analysis, vulnerability assessment, penetration testing, security training and his Open Source projects. He eventually found that system and security administration are the only effective way to express his need for paranoia. Being an active member of the international Open Source and security community he's maintainer/author of the tenshi, ftester projects as well as the founder and project coordinator of the oCERT effort, the Open Source Computer Emergency Response Team. He has been involved in the Gentoo project, being a member of the Gentoo Security and Infrastructure Teams, and the Open Source Security Testing Methodology Manual, becoming an ISECOM Core Team member. Outside the community he has been a security consultant for Italian firms and he's now the co-founder and Chief Security Engineer of Inverse Path Ltd.  He has been a speaker and trainer at PacSec, CanSecWest, BlackHat and DefCon conferences among many others, speaking about SatNav hacking, 0-days, LDAP and other pretty things.

 


Christian Martorella, Security Services Team at S21Sec (Barcelona)
Christian Martorella has been working in the field of information security for the last 10 years, starting his career in Argentina IRS as security consultant, now he's leading a Security Services team at S21sec in Spain, where he performs penetration tests, web application assessments, security audits and forensic analysis for a wide range of industries including Financial services, Telecommunications, utilities and government. He is cofounder an active member of Edge-Security team, where security tools and research is released. He has been speaker at What The Hack!, NoConName, FIST Conferences, OWASP Summit 2008 and OWASP Spain IV.

Christian has contributed with open source assessment tools like OWASP WebSlayer and Metagoofil. He likes all related to Information Gathering and Penetration testing. Currently holds the President position at the FIST Conferences board, and in the past teached Ethical Hacking at the Security Master of La Salle University.




Vicente Diaz, Intelligence eCrime at S21sec (Barcelona)
Vicente has been working on security for 7 years. Holds a degree on Computers Science from UPC and joined the Artificial Intelligence phD program 4 years ago. Now leads the intelligence eCrime group at S21sec, fighting against internet fraud and malware. He also cooperates in the Master of Security of the UOC as professor. Cofounder of Edge-security team and in the directive board of FIST conferences, has been speaker at several conferences like NcN, Imaginatica and FIST. Participates in several anti-fraud efforts, like OWASP projects and Team-Cymru Dragon research force.

Cedric Blancher, Head of Computer Security Research Lab at EADS Innovation Works (France)
Cédric Blancher has been working in the field of network security for the last 7 years, first as a security consultant, performing audits, penetration tests and trainings, then as research engineer at EADS Innovation Works since 2004. His research focuses on network security, especially wireless links. He is an active member of Rstack team, having worked on honeypots, network traffic diversion, segregation and analysis. He's been delivering presentations, workshops and trainings worldwide, and writing papers and articles on network and wireless security.

Chris Eng, Director of Security Research at Veracode (USA)
Chris Eng leads Veracode's application security research lab and is primarily responsible for driving innovation and thought leadership.  Drawing on nearly a decade of professional experience in information security, he works closely with the CTO to ensure Veracode's technology and strategy are industry relevant and aligned.  He monitors attack trends, analysis techniques, and other advances in application security to keep Veracode's efforts focused on timely and emerging threats.  Additionally, he provides guidance to engineering and service delivery to maximize the accuracy and consistency of Veracode's security analysis service.

Ollie Whitehouse, Manager of Security Research and Assessment, EMEA, Research in Motion (London)
Ollie Whitehouse is a Senior Researcher for Research In Motion's Security Research Group and is based in the United Kingdom. Ollie has over twelve years experience working in I.T. ten of which have been in information security. Before joining RIM Ollie was a member of Symantec Security Response’s Advanced Threat Research team, specializing in mobile and wireless technologies for two years. Prior to becoming a full-time researcher Ollie also spent over six years as a consultant for companies such as Symantec and @stake working in a variety of industries including financial services, telecommunications and central government. He is a frequently published author of research on the security of mobile telecommunication networks, mobile devices, and Bluetooth. In addition, he has discovered numerous security vulnerabilities in a wide range of desktop and server applications including Microsoft's Windows Vista.

Reto Baumann, IT Security Specialist at IBM Switzerland (Switzerland)
Reto is deployed as IT Security Architect or IT Specialist acting as technical lead and interface to the customer on most projects. He consults with the customer to cover business requirements for designing the best technical solution matching the customer’s needs. Reto gained in depth knowledge about security technologies during several years of active participations in projects in and around Switzerland covering all sectors. Reto is a subject matter expert in the areas of Ethical Hacking and Security Architectures with a broad knowledge of technologies used to secure modern information technology infrastructures. He today consults with clients (mostly CIO's or CISO's) on a regular basis regarding their network or software security designs and implementations, their policies and processes as well as their overal IT architecture. As an IT Architect Reto acts as the link between the business and the information technology.

Simon Roses Femerling (Madrid)
Simon Roses Femerling works at ACE Services from Microsoft providing security services across Europe. Former PriceWaterhouseCoopers and @Stake. He has many years of security experience where he has authored and cooperated in several security Open Source projects and advisories as OWASP Pantera. Mr Roses is natural from Mallorca Island in the Mediterranean Sea.  He holds a postgraduate in E-Commerce from Harvard University and a B.S. from Suffolk University at Boston, Massachusetts.



Raffael Marty, Chief Security Strategist at Splunk (USA/Switzerland)
As chief security strategist and director of application product management, Raffy is customer advocate and guardian - expert on all things security and log analysis at Splunk. Starting with IBM Research and Price Waterhouse Coopers Consulting, then ArcSight and Splunk, Raffy has been in the log management and analysis world for many years. He has built numerous log analysis systems and implemented use- cases for hundreds of customers that deal with log management challenges on a daily basis. Currently he uses his skills in data visualization, log management, intrusion detection, and compliance to solve problems and create solutions for Splunk customers. Fully immersed in industry initiatives, standards efforts and activities, Raffy lives and breathes security and visualization. His passion for visualization is evident in the many presentations he gives at conferences around the world and his book: "Applied Security Visualization". In addition, Raffy is the author of AfterGlow, founder of the security visualization portal http://secviz.org, and contributing author to a number of books on security and visualization.