Advertise on ITWeb         Sun, 01 Nov, 00:48:20 AM


Keynote speakers
Josh Corman Kenneth Geers

Joshua Corman, Director of Security Intelligence
Security Intelligence,Akamai Technologies:


Kenneth Geers,  Cyber subject matter expert, NCSI

Where do we go from here? Adapting to modern adversaries Cyber War - Beyond Theory

Moxie Marlinspike

Moxie Marlinspike
Whitehat hacker and security researcher and fellow of the Institute for Disruptive Studies
Haroon Meer, Founder of Thinkst 
The demise of SSL & Internet Trust Information Security: The things we dont say...

Dr Charlie Miller Charles Renert
Dr Charlie Miller, Principal research consultant , Accuvant Labs
Charles Renert, Vice President, Research & Development at Websense
Banned in the USA Zero Day is Every Day

Gabi Reish Eddie Schwartz
Gabi Reish, Head of Product Management , Check Point Software Technologies
Eddie Schwartz, CISO at RSA, The Security Division of EMC
Strong Security in a vulnerable world - Discussing principles to protect against current threats and attacks A State of Dynamic Risk: Containment and Victory in a World of Advanced Threats

Michael Shema Raj Samani
Michael Shema, Director of Engineering, Qualys
Raj Samani, VP Chief Technology Officer EMEA, McAfee International Ltd
HTML5 Unbound: A Security & Privacy Drama Cybercriminals and social engineering: understanding and overcoming these attacks

Tyrone Erasmus, information security consultant at MWR InfoSecurity, will discuss the Android permission model. He will also share insights into finding sensitive information on devices with no permissions. Frans Lategan is a security consultant with Absa Bank. His presentation, titled SHA256 vulnerabilities exposed by Bitcoin, will contextualise Bitcoin, discuss the technical workings of Bitcoin and SHA256, and look at divergences between expected and actual findings for SHA256.
Biography Biography
Bevan Lane, Director of Infosec Consulting, will tackle an aspect of hacking in a presentation titled: ‘Hacktivism: A history and what we can learn from Hackers’. He will offer a definition and brief history of hacktivism. He will also offer advice on what organisations need to understand, and do, about Hacktivists. Jon Matonis, Managing Director of the Lydia Group, is an e-Money specialist and payments executive focused on expanding the circulation of nonpolitical digital currencies. He will provide a high-level introduction to the concept of digital currencies, followed by a discussion on key trends.
Biography Biography
Thabiso MoeraneThabiso Moerane is currently the Mobile Commerce Ecosystem Leader at Alcatel Lucent. Her duties include building ecosystems that enable the provisioning of an “Interoperable Mobile Banking Service” that is designed specifically to achieve the goals of Financial Inclusion i.e. “Banking the Un/Under-Banked” in Developing Countries. Chris John Riley is a penetration tester and security analyst. He will discuss the technical issues surrounding the SAP Management Console, and expose techniques that can be used by attackers and penetration testers alike to gain valuable information.
Biography Biography
Marinus van AswegenMarinus van Aswegen is a well-known security consultant, architect, trainer and speaker. Marinus is Security Architect at Telic Consulting. In 2006 he founded Telic Consulting based in Johannesburg South Africa where he currently focuses on delivering large enterprise projects in the financial services sector. Charl van der Walt is co-founder and MD of SensePost. He will address the topic of mobile and Africa. Key issues under discussion include: mobile security in Africa, attacks against mobile devices, the future of mobile security, and more.
Biography Biography
Prof Basie von SolmsProf SH (Basie) von Solms is a Research Professor in the Academy for Computer Science and Software Engineering at the University of Johannesburg in Johannesburg, South Africa.  

C | E | G | L | M | N | R | S | V
Corman, Joshua
Director of Security Intelligence, Akamai Technologies
Joshua Corman is the Director of Security Intelligence at Akamai Technologies. Prior to Akamai, Joshua was Research Director of the 451 Group’s enterprise security practice. Josh has more than a decade of experience with security and networking software, most recently serving as Principal Security Strategist for IBM Internet Security Systems. Josh’s research cuts across sectors to the core challenges of the industry, and drives evolutionary strategies toward emerging technologies and shifting economics.

Josh is a candid and highly coveted speaker and has spoken at leading industry events such as RSA, Interop, ISACA, SANS, DEFCON, and ShmooCon. His efforts to educate and challenge the industry recently lead NetworkWorld magazine to recognize him as a top Influencer of IT for 2009. As a staunch advocate for CISOs everywhere, Josh serves as a Ponemon Institute Fellow and on the Faculty for IANS. In 2010, Josh also co-founded Rugged – a value based initiative to raise awareness and usher in an era of secure digital infrastructure.

Josh received a bachelor’s degree in philosophy, Phi Beta Kappa, summa cum laude, from the University of New Hampshire. He lives with his wife and two daughters in New Hampshire.

Erasmus, Tyrone
Information Security Consultant, MWR InfoSecurity
Tyrone Erasmus is an Information Security Consultant at MWR InfoSecurity and a qualified Computer Engineer that studied at University of Pretoria. Erasmus delves in many areas of exploitation, with strong focus lately on mobile device exploitation. Erasmus' research over the past months has involved the security of the Android OS at various layers in the architecture. Erasmus has looked at the security of many popular Android devices and applications, finding ways that attackers could use to breach the confidentiality of sensitive user information from their mobile devices.

Geers, Kenneth
International, NCIS
Kenneth Geers (PhD, CISSP) is the U.S. Naval Criminal Investigative Service (NCIS) Cyber Subject Matter Expert. Geers has been a student in six countries, served as an intelligence analyst, a French and Russian linguist, and a computer programmer in support of arms control initiatives. Geers was the first U.S. Representative to the Cooperative Cyber Defence Centre of Excellence in Tallinn, Estonia. Geers is widely published on the relationship between information technology and national security, and is the author of Strategic Cyber Security, now a free download:

Lategan, Frans
Security Consultant, Absa Bank
Frans Lategan is a security consultant with Absa Bank where he works on breaking and improving web application security. Prior to joining Absa he was a System Architect for Discovery Health. Dr. Lategan received his Master’s degree in Mathematics and a Doctorate in Computer Science from the University of Johannesburg. He has published several academic papers, and his current interests include most aspects relating to computer security, from privacy of information to web application security and social engineering, as well as innovative problem solving.

Lane, Bevan
Director of Infosec Consulting
Bevan Lane is a Director of Infosec Consulting . He studied a Bachelor of Commerce at the Nelson Mandela Metropolitan University where he is presently enrolled in his Masters in Information Security. Bevan is an accredited BS27001 Lead Auditor and trainer as well as CISSP, CISM, CGEIT and CISA. He has over 13 years’ experience in Information Security and was involved in major security projects in Africa, Asia and Europe undertaking security audits, forensic investigations and Information Security consulting. He has trained for the BSI and local security training firms all over the globe and presented at conferences in the Middle East and Africa.

Marlinspike, Moxie
International, whitehat hacker

Moxie Marlinspike is a renowned whitehat hacker, security researcher and a fellow at the US-based Institute for Disruptive Studies.

Marlinspike has over 13 years’ experience in attacking networks. He is CTO and co-founder of Whisper Systems, a company that provides security and management solutions that transform consumer phones and tablets into enterprise-ready devices.

Marlinspike is a popular speaker and is also the author of sslsniff, used by the MD5 Hash Collision team to deploy their rogue CA certHis tools have been featured in many publications including Hacking Exposed, Forbes, The Wall Street Journal, The New York Times, and Security Focus as well as on international TV.
Marlinspike is also a keen sailor, and holds a Master Mariner's license.

Matonis, Jon
Managing Director, Lydia Group

Jon Matonis is Managing Director of the Lydia Group. He is an e-Money specialist and payments executive focused on expanding the circulation of non-political digital currencies. Jon is board advisor to startups in bitcoin, cryptography, gaming, mobile and prepaid. His career has included senior influential posts at Sumitomo Bank, VISA, VeriSign, and Hushmail. Editor of The Monetary Future, a leading economics blog at the intersection of free banking, cryptography, and digital currency. His work on digital cash has been published by Dow Jones and the London School of Economics.

Dr Miller, Charlie
Accuvant LABS

Dr Charlie Miller is a computer security researcher with the consulting firm Accuvant LABS. Prior to his this, he spent five years working for the National Security Agency. Charlie had the first public exploits against the Apple iPhone and the Google G1 Android phone when they came out. He is a 4 time winner of the annual Pwn2Own hacking competition held in Vancouver, Canada. In 2009, he demonstrated an SMS processing vulnerability that allowed for both the complete compromise of the Apple iPhone and denial- of-service attacks on other phones. He has twice broke the code signing mechanisms inherent in iOS devices. Charlie holds a Ph.D. in Mathematics from the University of Notre Dame.

Moerane, Thabiso
Mobile Commerce Ecosystem Leader at Alcatel Lucent

Thabiso Moerane is currently the Mobile Commerce Ecosystem Leader at Alcatel Lucent. Her duties include building ecosystems that enable the provisioning of an “Interoperable Mobile Banking Service” that is designed specifically to achieve the goals of Financial Inclusion i.e. “Banking the Un/Under-Banked” in Developing Countries. This initiative requires achieving co-operation amongst three different industries; Banking, Telecommunications and IT. The ecosystem building process entails extending the existing Payments Ecosystem in each country to include Mobile Network Operators (MNOs).

Thabiso has previously worked as the Managing Director of Khulumanjalo Technologies (Pty) Ltd, the Managing director of Black Information Technology Empowerment Company Ltd (Blitec) and a financial and tax consultant. She has been a Non-executive director of SecureData Holdings Ltd, Non-executive chairperson of Vox Telecom Ltd, (2004 to 2006), Non-executive director of SAP Public Services (Pty) Ltd as well as Sentech Limited.

Thabiso holds a ND Accounting (Technikon Witwatersrand), NHD Taxation (Technikon Southern Africa), MBA (Duke University, USA); DBA Candidate (Instituto de Empresa, Spain)


Renert, Charles
Vice President, Research & Development at Websense
Charles Renert is vice president of research and development at Websense. Renert joined Websense in 2007 and brings more than 20 years of security industry and research expertise. He & his global team of over 100 researchers and engineers are the driving force behind the strategic technology innovations in Internet security. Charles was instrumental in delivering to market Websense’s core classification components, including ACE, Websense’s Advanced Classification Engine (ACE) that combines web, e-mail and data security classifications into a unified framework shared by all products and the ThreatSeeker Network, Websense’s revolutionary data collection and feedback network that analyzes billions of pieces of content daily.

Prior to joining Websense, Charles was co-founder of Determina, a provider of innovative intrusion prevention software. Before Determina, Charles was director of security research at the Symantec Antivirus Research Center where he led a global team in building the core scanning components used by all Norton Antivirus products.

Charles earned his bachelor’s degree in applied mathematics from the University of California, Los Angeles and holds a master’s degree in computer science from the University of California, San Diego.

Riley, Chris John
Penetration tester and security analyst

Chris John Riley is a senior penetration tester and part-time security researcher working in the Austrian financial sector. With over 15 years’ experience in various aspects of Information Technology, Chris is now focused full-time on his true passion, Information Security. Chris is one of the founders of the PTES (Penetration Testing Execution Standard), regular conference attendee and avid blogger (

When not working to break one technology or another, Chris enjoys long walks in the woods, candle light dinners and talking far too much on the Eurotrash Security podcast.

Samani, Raj
VP, Chief Technical Officer for McAfee EMEA

Raj Samani is an active member of the Information Security industry, through involvement with numerous initiatives to improve the awareness and application of security in business and society. He is currently working as the VP, Chief Technical Officer for McAfee EMEA, having previously worked as the Chief Information Security Officer for a large public sector organisation in the UK.

In addition, Raj is currently the Cloud Security Alliance’s Strategic Advisor for EMEA having previously served as the Vice President for Communications in the ISSA UK Chapter where he presided over the award of Chapter Communications Programme of the Year 2008 and 2009, having previously established the UK mentoring programme. He is also on the advisory council for the Infosecurity Europe show, Infosecurity Magazine, and expert on both, and Infosec portal, and regular columnist on Computer Weekly. He has had numerous security papers published, and appeared on television (ITV and More4) commenting on computer security issues. He has also provided assistance in the 2006 RSA Wireless Security Survey and part of the consultation committee for the RIPA Bill (Part 3). Finally, he is leading the global collaborative project used to evaluate objective measurement of IA maturity, known as the Common Assurance Maturity Model (CAMM).

Next to his work Raj has also obtained;

CESG Listed Advisor Scheme, (CLAS), Certified Information Systems Security Professional (CISSP), Certified Ethical Hacker (CEH), Microsoft Certified Systems Engineer (MCSE – in NT4, Win2k, Win2003), Check Point Certified Security Administrator (CCSA in NG and 4.1), Check Point Certified Security Expert (CCSE - NG), Citrix Certified Administrator (CCA), QualysGuard Certified, RSA Certified Systems Engineer (SecurID), Cisco Certified Network Administrator (CCNA), as well as a BA (Hons), and a MSc.

Gabi Reish
Head of Product Management, Check Point Software Technologies
Gabi Reish is Head of Product Management at Check Point Software Technologies. A recognized security advocate, Gabi brings with him more than 15 years of experience in the data networking industry, including over a decade of product management experience for both software and hardware products.

Prior to joining Check Point, Gabi led product management teams in Vocaltec Communications, Kagoor Networks (acquired by Juniper Networks), Atrica (a leading carrier Ethernet equipment vendor, acquired by Nokia Siemens Networks) and Actelis Networks.

Gabi holds a bachelor's degree in computer engineering from the Technion Israel Institute of Technology, and a joint MBA from the Kellogg School of Management (Northwestern University) and Recanati School of Business Administration (Tel-Aviv University).

Michael Shema
Director of Engineering, Qualys
Michael Shema is Director of Engineering at Qualys. Mike is the co-author of Hacking Exposed: Web Applications, The Anti-Hacker Toolkit, and the author of Hack Notes: Web Application Security. He has extensive experience with information security, especially in the realm web application security.

Michael is currently developing tools that automate the web application audit process. His prior experience includes research and development at NT Objectives, Inc. and information security consulting at Foundstone and Booz Allen Hamilton. He has taught at the Black Hat conferences in Las Vegas, Singapore, and Amsterdam, and continues to speak regularly at premier industry conferences and events around the world.

Michael's other writing credits include technical columns about Web server security for Mashable, Security Focus and DevX, and technical editor for Incident Response: Investigating Computer Crime. He holds B.S. degrees in Electrical Engineering and French from Penn State University.

Schwartz, Eddie
Chief Security Officer for RSA

Eddie Schwartz is Chief Security Officer for RSA and has 25 years experience in the information security field. Previously, he was Founder and CSO of NetWitness (acquired by EMC), CTO of ManTech, EVP and General Manager of Global Integrity (acquired by INS), SVP of Operations of Guardent (acquired by VeriSign), CISO of Nationwide Insurance, a Senior Computer Scientist at CSC, and a Foreign Service Officer with the U.S. Dept. of State. Eddie has advised a number of early stage security companies, and served on the Executive Committee for the Banking Information Technology Secretariat (BITS). Eddie has a B.I.S. in Information Security Management and an M.S. in Information Technology Management from the George Mason University School of Management.

von Solms, Prof Basie
National Cyber Security in South Africa

Prof SH (Basie) von Solms is a Research Professor in the Academy for Computer Science and Software Engineering at the University of Johannesburg in Johannesburg, South Africa.

He is also the Director of the newly established Centre of Excellence in Cyber Security, jointly created by the UN’s International Telecommunications Union (ITU) and the University of Johannesburg.

Basie specializes in research and consultancy in the area of Information and Cyber Security, Critical Information Infrastructure Protection, Cyber Crime and other related cyber aspects. He had written more than 100 papers regarding this field - most of which have been published internationally. In addition, he has supervised more than 100 post graduate students in the ICT field.

In 2009 his book, ‘Information Security Governance’, co-authored with his brother, Prof Rossouw von Solms, was published by Springer International.

Prof von Solms is the immediate Past President of IFIP, the International Federation for Information Processing (

He is a Fellow of the Computer Society of South Africa, and a Fellow of the British Computer Society and a Chartered Information Technology Professional (CITP).

Van der Walt, Charl
Founder member of Sensepost
Charl van der Walt is a founding member and managing director of SensePost, a leading international information security services provider. Pretoria-based Charl regularly presents courses and lectures for companies, conferences and universities around the world. Van der Walt is frequently published and has co-authored four books on information security and computer hacking.

van Aswegen, Marinus
Security Architect, Telic Consulting
Marinus van Aswegen is a well-known security consultant, architect, trainer and speaker. Marinus is Security Architect at Telic Consulting. In 2006 he founded Telic Consulting based in Johannesburg South Africa where he currently focuses on delivering large enterprise projects in the financial services sector. He has more than a decade’s worth of field experience and holds numerous certifications CISSP, ISSMP, ISSAP & CSSLP. Previously he consulted as a principal consultant with Deloitte serving customers in Europe, Africa, Japan and Australia. Passionate about building security competency and solving real world security problems he strives to deliver demonstrable secure business systems.


in partnership with





in partnership with


in partnership with

in partnership with


distributor of



About our sponsors 
Visit the Security Summit Virtual Press Office

in partnership with


Follow us on twitter and tweet about your thoughts around this event, #itwebsec


Tweet about the ITWeb Security Summit