Speakers

Aashu Singh is a Senior Staff Software Engineer at Meta with over 9 years of experience, specializing in Multimodal Large Language Models for content understanding across Facebook and Instagram recommendation systems. At Meta AI, he leads initiatives that use multimodal LLMs to enhance relevance in recommendation systems, improving how machine learning interprets content across modalities for personalized experiences. He's co-authored key publications including "Transfer between Modalities with MetaQueries" (2025) and "CompCap: Improving Multimodal Large Language Models with Composite Captions" (2024). Previously, he contributed to Meta's advertising ecosystem, developing models for Ads Retrieval, Ranking, and Dynamic Ads for hyper-personalized user experiences

Aderonke, Technical Program Manager at Google, offers expertise in large-scale infrastructure and risk management. She directs complex network deployments and oversees intricate tech projects across the Americas. Prior roles at Apple & American Family Insurance solidified her skills in security protocols and risk evaluation within demanding operations. This experience provides a deep understanding of securing foundational systems for AI/ML and protecting sensitive data against cyber threats and breaches. With a BS in IT (infrastructure focus), Aderonke tracks policy impacting tech governance. Her blend of strategic leadership, technical acumen, and risk experience makes her a compelling speaker on defending AI against threats and safeguarding sensitive data.

Advait Patel is a skilled Senior Site Reliability Engineer based in Chicago, with a passion for leveraging technology to drive impactful solutions. With extensive experience in Cloud Computing, Cloud Security, and Cybersecurity, he currently works at Broadcom, where he plays a key role in managing, building, and securing multi-million dollar revenue-generating products. Advait is also an advocate for professional growth and is eager to share his expertise with the next generation of tech talent through community involvement and mentorship. In his free time, he enjoys connecting with like-minded professionals and exploring innovative developments in the tech industry.

Alex is the Chief Technology Officer and Co-Founder of Eclypsium and is recognized as an authority in the spheres of AI infrastructure and supply chain security. He has many years of experience in research and product development. Over the course of his 15-year career, he has been at the forefront of supply chain security innovation and research, leading teams at organizations such as Intel and McAfee. His commitment to enhancing security knowledge in the community led to extensive speaking and training sessions at a myriad of international security conferences, such as Black Hat, DEF CON, CanSecWest, Recon, Troopers, and Toorcon. He also initiated the first DEF CON Group in Ukraine and co-founded the DCUA CTF team, fostering a collaborative platform for cybersecurity enthusiasts.

Alison Cossette is the founder of ClariTrace, a category-defining platform focused on AI Systems Intelligence. A recognized expert in AI governance and risk architecture, she previously worked in AI strategy at Neo4j and has spoken globally on AI security, data lineage, and algorithmic accountability. Alison introduced the concept of "Pattern Rights" at last year’s AI Risk Summit, catalyzing a new conversation about enterprise control in the age of autonomous systems. Her work sits at the intersection of technical rigor, regulatory foresight, and systemic thinking.

Trust & Safety thought leader at Contrails.ai translating complex safety challenges into strategic advantages for digital platforms. Drawing from my experience in digital parenting and online gaming safety, I develop comprehensive frameworks that ensure user protection while preserving positive experiences. I advocate for proactive approaches to online safety that anticipate emerging threats rather than simply reacting to them. My expertise includes: • Developing governance models that adapt to evolving regulatory landscapes • Creating scalable moderation strategies that balance automation with human insight • Building cross-functional safety programs that align technical, policy, and community teams • Measuring safety outcomes to demonstrate business value alongside user protection

Carney is program manager for the DARPA AI Cyber Challenge. He is also a program manager at ARPA-H where he leads programs and projects to improve health cybersecurity. He was previously a principal researcher in HSBC’s Cybersecurity Science and Analytics group. Before that, he was a technical advisor and contractor at DARPA, supporting reverse engineering, program analysis, human-machine teaming, and automated program repair research. He has long been involved in competitive hacking (Capture the Flag, or CTF) as both a player and a competition organizer. Carney has over 15 years of experience in software & hardware vulnerability research and technical education & training. He holds a master’s degree in computer science from The Johns Hopkins University.

Ashok Prakash is a senior principal engineer at Oracle Cloud, where he leads the architecture and scaling of high-performance GPU cloud systems powering AI workloads. With deep expertise in distributed systems and health AI, Ashok has built mission-critical infrastructure supporting the latest generation of AI accelerators—from A100s to GB200s. He has led large-scale engineering orgs and developed automated repair frameworks that significantly reduce cloud deployment time. An AI researcher turned systems leader, Ashok has published papers on commonsense reasoning, NLP, and clinical AI, and holds multiple patents in cloud orchestration and automated triaging.

Mr. Goodman is the Founder and CEO of CyRisk, a leading emerging cyber and privacy risk analytics platform. He has been dedicated to strengthening the risk posture of organizations around the globe for over 30 years. Mr. Goodman speaks frequently at conferences on emerging risk, AI, privacy and cyber insurance. He served on the Casualty Actuarial Society’s Cyber Risk Task Force and the Society of Actuaries Expert Panel on Catastrophic Cyber Risk. He co-authored “Security Posture-Based Incident Forecasting” published in the Casualty Actuarial Society’s journal Variance. His paper entitled “The Cyber Risk Ecosystem” won first prize for Applied Enterprise Risk Management at the Casualty Actuarial Society, Canadian Institute of Actuaries and Society of Actuaries.

Beth George leads the strategic risk management practice at Freshfields. With a background in national security and technology, Beth regularly advises boards of both private and public companies on risk management and governance, including advising on governance related to artificial intelligence, data practices and cybersecurity, content management, and geopolitical events. Beth has worked at senior levels across the U.S. federal government, most recently serving as the Acting General Counsel of the U.S. (DoD) in 2021. Previously, Beth served in various roles for the National Security Division of the (DOJ), U.S. Senate Select Committee on Intelligence. and the White House as Associate Counsel in the Office of the White House Counsel.

Caleb serves as the Chair of CSA AI Security Initiative. Prior Caleb served as Chief Security Officer at Robinhood where he focused on keeping customers safe. Prior to Robinhood he was Security CTO at Databricks a leading data analytics and machine learning company where he built the security team from the ground up. Previously he was a Managing VP at CapitalOne, where he spearheaded many of their security initiatives. Prior to CapitalOne, Caleb was CEO of Armorize which was acquired by Proofpoint. He also founded SPI Dynamics and BlueBox security, which were acquired by HP and Lookout. He is attributed as one of the pioneers of application security and holds multiple patents in the space and is also the author of Web Hacking Exposed. He serves as an advisor, investor, and board member for security companies.

Celina Stewart is the Director of Cyber & AI Risk Management at Neuvik, a cybersecurity services company. Celina specializes in designing and optimizing cybersecurity programs, taking a risk-based approach to cyber strategy, cybersecurity program development, and alignment of technical controls to reduce business risk, including risks from Artificial Intelligence (AI). Celina is a recognized thought leader in risks associated with Generative Artificial Intelligence (GenAI) and Generative Adversarial Networks (GAN). She has been a featured speaker at high profile events such as SecurityWeek’s AI Risk Summit, CloudX, Blue Team Con and more. Her research focuses on the intersection of AI and cybersecurity, exploring topics such as emerging risks, AI and Insider Threat, and AI Governance.

12 years in Cloud/Container Security. Led CN-Series Container Firewall development at Palo Alto Networks (first for Kubernetes across major clouds), launched AI Runtime Security product, drove 2.25x VM-Series revenue growth on Oracle Cloud, 5x on AliCloud. At Diamanti, launched Spektra (multi-cluster Kubernetes platform). At Infoblox, led BloxOne Threat Defense, ecosystem integrations. At Apple, contributed to iCloud Drive, Photos, CloudKit. IAEME Fellow, AI2030 member with published articles on runtime security, zero-trust, edge devices. MS Computer Science (USC), MBA (SCU, 3.95 GPA), product management certification (UC Berkeley). Mentored 100+ aspiring product managers. Expertise in cloud security, containerization, AI security.

Chris Brown is an executive coach to CISOs, with decades of experience in cybersecurity leadership, including roles as CISO and executive for hire. Drawing on his deep understanding of the unique circumstances faced by CISOs, he offers an alternative to the conventional mindsets that often place undue stress and responsibility on cyber executives’ shoulders to control what they cannot.

Dan Ross, Head of AI Compliance Strategy at Dynamo AI, focuses on aligning AI, policy, risk management, and business application. Dan regularly engages global policy makers on AI risk management and compliance, and oversees a number of Dynamo’s most consequential AI security and compliance deployment efforts. Prior to Dynamo AI, Dan spent close to a decade at Promontory Financial Group, a premier risk and regulatory advisory firm, focused on data and technology risk, where he advised global financial institutions and governments. He has also held technology strategy and management consulting leadership positions at Deutsche Bank, Bank of America Merrill Lynch, and Accenture. Dan studied Economics at Vanderbilt University and lives with his wife and Lagotto Romagnolo in New York.

David Brauchler III is an NCC Group Technical Director in Dallas, Texas. He is an adjunct professor for the Cyber Security graduate program at Southern Methodist University with a master's degree in Security Engineering and the Offensive Security Certified Professional (OSCP) certification. David Brauchler published Analyzing AI Application Threat Models on NCC Group's research blog, introducing new Models-As-Threat-Actors (MATA) methodology to the AI security industry, which provided a new trust flow centric approach to evaluating risk in AI/ML-integrated environments. David also released several new threat vector categories, AI/ML security controls and reference architectures, and recommendations to maximize the effectiveness of AI penetration tests.

Eric Skinner is VP of Market Strategy at Trend Micro, helping shape Trend’s solution offerings, growth plans and go-to-market approach. Prior to Trend Micro, Eric held senior management positions in a health care mobile startup and at digital identity solutions provider Entrust (where he was CTO and VP Product Management). Eric is based in Ottawa, Canada.

Harald Ujc is CTO of Invenci Inc., a generative AI solutions firm. With 20+ years in IT and software engineering, he transforms cutting-edge AI into real business value, emphasizing ethics, safety, and ROI. He leads teams building AI tools that streamline operations and enhance decision-making. A mentor with the University of Toronto’s Computer Science Department, he supports the next generation of tech leaders. At the AI Risk Summit, Harald reframes AI risk as a discovery issue, not a technical one, highlighting how poor scoping causes failure in SMBs. Based in Toronto, he delivers trusted, high-impact AI solutions across sectors.

Jason is dedicated to advancing the state of the art in secure and robust AI. With a bachelor’s degree in computer science from San Diego State University, he is focused on ensuring trust, security, privacy, bias, and robustness of AI/ML models. Jason has led the development efforts of a commercial solution for the detection and repair of vulnerabilities in deep learning systems, and the co-author of multiple patents related to the cybersecurity of systems including AI/ML, embedded devices, supply chain, and others. His passion for improving the field has driven him to push the boundaries of what is possible and make a meaningful impact in the fields of AI and cybersecurity.

Jason Ross is a passionate cybersecurity expert with a diverse skill set in generative AI, Penetration Testing, Cloud Security, and OSINT. As a product security principal at Salesforce, Jason performs security testing and exploit development with a specific focus on generative AI, Large Language Models, and Agentic systems. Jason is a frequent speaker at industry conferences, and is active in the security community participating as a core member of the OWASP GenAI Project and serving as a DEF CON NFO goon.

Yuyin (Josephine) Liu is a distinguished leader in AI safety, security, and governance, actively shaping global policies around emerging technologies. With deep expertise advising governments, international organizations, and industry leaders, she plays a pivotal role in developing regulatory frameworks that balance innovation with safety andsecurity. Josephine serves as Chief Commissioner of the Public Policy Committee at the Asia-Pacific Artificial Intelligence Association (AAIA), where she guides global discourse on AI policy and governance. Her work bridges technology and policy to ensure that emerging technologies align with ethical standards, security needs, and economic resilience. .

Jyotheeswara Reddy Gottam is a Senior Software Engineer at Walmart Global Tech with 12+ years in test automation. Based in Dublin, CA, he's improved Walmart's marketplace platforms, store locator, and e-commerce features since 2015. His achievements include creating a scalable testing framework with 99.9% uptime and reducing regression testing by 70%. Previously at Williams Sonoma and Mercury Insurance, he built automation frameworks that drastically cut testing time while increasing coverage. He holds a Master's in Software Engineering and is skilled in Java, Python, JavaScript, and various testing tools. His "Test Less Cover More" approach and CARTA TaaS platform exemplify his innovation, maintaining 99.95% crash-free applications while accelerating delivery timelines.

Lauren Wallace is the Chief Legal Officer at RadarFirst, where she brings over 20 years of experience at the intersection of technology, law, and business. Her career encompasses leadership roles in both global corporations and innovative startups, where she has advised companies such as Apple, Microsoft, and Nike on enterprise technology transactions, data protection, and regulatory compliance. Lauren is deeply engaged in the Portland business and nonprofit community and frequently speaks on the operationalization of privacy, responsible AI, and emerging regulatory trends. At RadarFirst, she ensures that the company’s solutions and strategies evolve in lockstep with legal, technological, and environmental change—empowering organizations to make confident, compliant decisions at scale.

Madan Singhal is the AI Head at Singulr AI, where he leads the mission to secure AI builders and responsible AI usage across mid-to-large enterprises. Previously, he was a Staff Engineer 2 at VMware, working on cutting-edge innovations in virtualization and network infrastructure. Madan was also a founding member of Arkin, a company focused on simplifying network virtualization for enterprises, which was later acquired by VMware. Earlier in his career, he held engineering roles at Microsoft, where he contributed to the development of large-scale software systems.

Mahesh Babu is a former VP of Information Security turned company builder and now leads strategy and growth for Kodem, venture‑backed application security startup. At HSBC he built and scaled global application‑security and identity‑access‑management platforms that safeguard billions of transactions. His career began at Purdue University’s Information Assurance & Security Research Center, where he researched secure software engineering. Mahesh blends academic rigor with enterprise and startup execution to help organizations stay ahead of modern threats.

Malcolm Harkins is Chief Security and Trust Officer at HiddenLayer. Harkins has more than two decades of experience in information security leadership roles at top technology companies, including Intel, Cylance, and others. He’s written multiple books on risk management, information security, and IT and earned awards from the RSA Conference, ISC2, Computerworld, and the Security Advisor Alliance. Harkins has testified before the Federal Trade Commission and U.S. Senate Committee on Commerce, Science, and Transportation. Harkins is a Fellow with the Institute for Critical Infrastructure Technology, a non-partisan think tank providing cybersecurity expertise to the House of Representatives, Senate, and various federal agencies.

For more than 15 years, Mike Lennon has been closely monitoring the threat landscape and analyzing trends in the National Security and enterprise cybersecurity space. In his role at SecurityWeek, he oversees the editorial direction of the publication and is founder and director of several leading cybersecurity industry conferences around the world.

Millie Huang is a Staff Data Scientist at Salesforce, at the forefront of applying machine learning to critical cybersecurity challenges. She specializes in innovative AI-driven solutions and advanced detection models for anomalous behaviors, enhancing enterprise security. Millie holds a Master's from MIT's Operations Research Center and a Bachelor's in Mathematics and Economics from Wellesley College. Prior to Salesforce, she honed her deep data science expertise across a spectrum of business domains—from demand forecasting to causal inference to product analytics—spanning consulting, consumer tech, and retail. Millie's blend of deep academic knowledge and practical experience developing ML solutions at scale makes her a key voice at the intersection of AI and security.

Oliver Friedrichs is co-founder and CEO of Pangea and a serial entrepreneur, having previously founded four successful enterprise security companies over the past two decades. Prior to Pangea he served as Founder and CEO of Phantom, acquired by Splunk in 2018. Prior to Phantom, Friedrichs founded Immunet, acquired by Sourcefire in 2010 and a key component to Cisco’s acquisition of Sourcefire in 2013. Friedrichs co-founded SecurityFocus (Bugtraq) and led DeepSight, the world’s first Internet early warning system, acquired by Symantec in 2002. He also co-founded Secure Networks and led Ballista (CyberCop), one of the industry’s first vulnerability management solutions, acquired by McAfee in 1998. Friedrichs also developed a prototype of the first commercial penetration-testing product.

Oliver is the Chief Privacy Office and Director of Security and Compliance at TAXbit, where he manages all aspects of security engineering, including AI security and compliance. Before joining TAXbit in 2023, he was Head of Cloud Security at Uber. There, he built a team working on secure-by-default architecture, best practices, engineering standards, automated compliance monitoring tools, data security, and threat detection/response solutions for all of Uber’s cloud assets and engineering efforts. Prior to that, Oliver spent over 18 years at Microsoft, where he worked in various engineering management roles contributing to Windows client security, anti-piracy, cloud security standards, security testing, and continuous delivery for all the company’s online services.

Patrick Walsh has more than 20 years of experience building security products and enterprise SaaS solutions. Most recently he ran an Engineering division at Oracle, bringing productivity and insights to the world’s largest companies. Patrick now leads IronCore Labs, a technology platform that helps businesses get back control of their data so they can meet increasingly stringent data protection requirements.

EXPERIENCE - Adjunct Lecturer – AI Governance in Law/Business/Engineering, - Santa Clara U. School of Law. - Adjunct Professor – Law and AI, Univ. of the Pacific’s M.S. in Data Science program. - AI Governance Certification (IAPP AIG) – Practice-exam question writer/reviewer. - General Counsel/CRO of AI and data management corporation. - Five years information-security software engineer (‘C’, Java, Python). - Eight years ediscovery and info mgmt. Certification as computer forensics examiner (EnCE: 2011-2024). EDUCATION - M.S., Predictive Analytics from Northwestern U. - LL.M. in Taxation from Golden Gate University School of Law. ASSOCIATIONS - Founding Chair (2013-2020) of the Big Data Committee of the American Bar Association. - Active in the ACFE, IAPP, and ISACA.

Passionate about the intersection of data and artificial intelligence. As Director of Product Management for Cloudera's AI product suite, I lead the charge in developing a cutting-edge AI platform that unlocks significant value from complex data landscapes without compromising on security and privacy. My 10+ years in data management and data science have been focused on pushing the boundaries of big data technology and making AI accessible and impactful for enterprises. MSc in Computer Science, Budapest University of Technology.

Richard William Bird is the Chief Security Officer for Singulr, an AI security and governance solution, and a six-time C-level executive in the corporate and startup world. He is internationally recognized for his expertise and observations in AI security, data privacy, and identity security. He is a sought-after speaker who addresses modern challenges with humor and clarity. His debut book, Famous With 12 People: A Career Guide on Becoming an Internationally Recognized Expert in Something Nobody Cares About, offers practical advice on personal branding, public speaking, and networking. Richard is frequently quoted in the media and has been featured by ISMG, The Wall Street Journal, CNBC, Bloomberg, Business Insider, CNN, Dark Reading, and TechRepublic, among many others.

International Red Hat Women in Open Source Awardee | Mozilla Open Leader 2019 | a strong open source diversity supporter | Google Venkat Scholarship winner | Speaker

Sanjnah Ananda Kumar is Product Manager for Salesforce Data Security and Key Management services, designing mission critical APIs that protect cryptographic material in cloud environments. With an MS in Information Security and Technology from Carnegie Mellon University and research experience at CyLab, she blends usable privacy and security with practical product strategy. Her research involves understanding people's attitude towards privacy on social media. Outside of work outside work she builds open‑source resources that advance privacy and security for everyone.

Shawn Marriott is the Chief Technology Officer at Canary Trap, where he leads offensive security strategy and engagements. With over 20 years of experience in penetration testing, red teaming, and adversarial simulations, Shawn specializes in uncovering hidden risks and helping organizations adapt their security posture to evolving threats. His expertise spans cybersecurity assessments, security program design, and educating leadership teams on emerging risks, including AI-driven vulnerabilities and software supply chain security.

Tamir Ishay Sharbat is a software engineer and security researcher with a particular passion for AI security. His current focus is on identifying vulnerabilities in enterprise AI products such as Microsoft Copilot, Microsoft Copilot Studio, Salesforce Einstein, Google Gemini and more. Tamir conducts deep analysis of AI architectures to identify potential exploits, then crafts prompt injections and elaborate attacks accordingly. Tamir is also a core member of the OWASP Agentic Security Initiative where he co-leads the agentic threats and mitigations workstream, helping with understanding the prevailing threats of AI agents.

Trip has nearly 15 years of experience consulting with clients, primarily over cybersecurity and IT subject matters. He regularly engages across industry sectors to improve cyber strategy, mitigate risk, measure compliance, and conduct technical assessments to help ‘move the needle’ on cyber posture.

Tsvi Korren has been an IT security professional for over 25 years. In previous positions at DEC and CA Inc., he consulted with various industry verticals on the process and organizational aspects of security. As the Field CTO at Aqua, he is tasked with delivering commercial and open source solutions that make Cloud Native workloads the most secure, compliant and resilient application delivery platform.

PhD from the University of Cambridge Computer Laboratory (Security Group) on access policies for middleware in 2003 after having completed a master's degree in Information Security from Royal Holloway College (London) in 1997. With 20+ years in infosec, he is a renowned cybersecurity thought leader in OT security, binary analysis, trusted AI, access control policy etc. He was on the Board of Directors of the Cloud Security Alliance (Silicon Valley Chapter). He is responsible for the business and technical strategy, architecture and direction of ObjectSecurity and its product portfolio. He has published over 150 papers/presentations, 10+ patents, and has previously worked as a proposal evaluator, project evaluator, conference program committee, panel moderator, consultant, and book author.

Vaishnavi Gudur is a Senior Software Engineer at Microsoft, where she specializes in full-stack development and AI-driven systems optimization. With a strong foundation in both engineering and research, Vaishnavi is passionate about transforming traditional software practices through the integration of emerging technologies like artificial intelligence, explainable models, and predictive analytics. Beyond her role at Microsoft, Vaishnavi actively contributes to the tech community through judging hackathons, mentoring early-career engineers, and advocating for ethical, impactful uses of technology. She is currently building a platform at the intersection of AI, software engineering, and product intelligence—shaping the future of intelligent development ecosystems.

Vishnupriya S Devarajulu is a Senior Full Stack Software Engineer with over a decade of experience in software development and performance engineering at companies like American Express and Wells Fargo. She developed the UI/API Performance Optimization Framework, enhancing the scalability and reliability of mission-critical applications at American Express. With a Master’s degree in Computer Engineering and 20+ publications in AI, Machine Learning, and Software Optimization, Vishnupriya combines technical expertise with a passion for innovation and knowledge sharing.

Wendy Nather is the Senior Research Initiatives Director at 1Password. She was previously the Director of Advisory CISOs at Duo Security, Research Director at the Retail ISAC, and Research Director of the Information Security Practice at 451 Research. Wendy led IT security for the EMEA region of the investment banking division of Swiss Bank Corporation (now UBS) and served as CISO of the Texas Education Agency. She was inducted into the Infosecurity Europe Hall of Fame in 2021. Wendy serves on the Board of Directors for Sightline Security, is on the Steering Committee for the IST Ransomware Task Force, and is a Senior Fellow at the Atlantic Council's Cyber Statecraft Initiative.

Wendy Nather is the Senior Research Initiatives Director at 1Password. She was previously the Director of Advisory CISOs at Duo Security, Research Director at the Retail ISAC, and Research Director of the Information Security Practice at 451 Research. Wendy led IT security for the EMEA region of the investment banking division of Swiss Bank Corporation (now UBS) and served as CISO of the Texas Education Agency. She was inducted into the Infosecurity Europe Hall of Fame in 2021. Wendy serves on the Board of Directors for Sightline Security, is on the Steering Committee for the IST Ransomware Task Force, and is a Senior Fellow at the Atlantic Council's Cyber Statecraft Initiative.