Qualys Security Conference
Watch videos for insights on where the security industry is headed, Qualys’ future roadmap, best practices and use case presentations.
Industry Expert Keynote: Defend Today, Secure Tomorrow
Chris Krebs, Former Director for the Department of Homeland Security’s Cybersecurity and Infrastructure Security Agency (CISA)
Security Automation for the Digital Journey
Sumedh Thakar, President and CEO, Qualys
Bringing the Unified Power of the Qualys Cloud Platform to Address Today’s Security Challenges
Shailesh Athalye, Senior Vice President, Product Management, Qualys
Analyst Keynote: Cybersecurity Trends: The Wake-Up Call That Was 2021
Scott Crawford, Research Director, Information Security, S&P Global Market Intelligence
Customer Keynote: Security Transformation: The Changing Culture of a 120+ Year Old Company After a Crisis
Francis Finley, VP Cyber Threat Detection, Response and Vulnerability Management, Equifax
Asset Management Reimagined for Security
Constantine Vorobetz, Product Manager, Assets & Reporting, Qualys
Todd Sherinian, Sr. Manager Global Cyber Operations, Circle K
Next-Gen Vulnerability Management Program
Mehul Revankar, VP Product Management and Engineering for VMDR, Qualys
Eran Livne, Director, Product Management, Endpoint Remediation, Qualys Sara J. Griffith, Chief Information Security Officer, Euronet Worldwide
Always Audit-Ready With Continuous Compliance Management
Hariom Singh, Director Compliance Solutions, Qualys
Parveen Malik, VP, Information Security, U.S. Financial Services Company
Full Stack Container Security
Kong Yew Chan, Director, Product Management, Container Security, Qualys
Dilip Bachwani, Senior Vice President, Engineering & Cloud Operations, Qualys
Proactive Cloud Security, Compliance and Risk Management
Parag Bajaria, VP Cloud & Container Solutions, Qualys
Maryann Horst, Sr. Principal Vulnerability Management, Global Cyber Security, NortonLifeLock
Krishnakant (KK) Deharia, Vice President, Product Management, Platform Services & Integrations, Qualys
Asif Karel, Director of Product Management, Qualys Dilip Bachwani, Senior Vice President, Engineering & Cloud Operations, Qualys
Threat Detection and Response Beyond Endpoints
Andrew Morrisett, Subject Matter Expert, SMB & SME, Qualys
Jim Wojno, Senior Director, Product Management, XDR, Qualys Jacob Hahn, Cybersecurity Engineer, Montana State University
Web Application Security
John Delaroderie, Director, Web Application Security, Qualys
Jeni White, IT Risk Management Chapter Lead, University Technology Office, Arizona State University
Getting a Handle on EOL/EOS Software
Asif Karel, Director of Product Management, Qualys
Reduce Risk by Managing Software Authorizations
Asif Karel, Director of Product Management, Qualys
Give your FedRAMP & PCI Auditors Reports They Want, Out of The Box
Asif Karel, Director of Product Management, Qualys
Improving Security Coverage with Passive Sensor
Dharmesh Ghelani, Principal Product Manager, Industrial Cybersecurity, Qualys
Continuous Inventory, Vulnerability Assessment & Compliance for Industrial Assets
Dharmesh Ghelani, Principal Product Manager, Industrial Cybersecurity, Qualys
Expand VMDR to Enterprise Mobility Devices
Swapnil Ahirrao, Product Manager, Mobile Security, Qualys
Reduce the Risk From Threats Like Ransomware with Integrated Patch Management
Eran Livne, Director, Product Management, Endpoint Remediation, Qualys
Taking Care of Ransomware Vulnerability Debt Before the Holiday
Bharat Jogi, Director, Vulnerability and Threat Research, Qualys
Start Compliant, Stay Compliant by integrating Policy Compliance in CI/CD
Anu Kapil, Technical Product Manager, Compliance Solutions, Qualys
Automatically Discover and Secure Middleware Applications
Aparna Hinge, Senior Manager, Compliance Research Analysis, Qualys
Become PCI Compliant & Eliminate Alert Fatigue with Noise-Canceling FIM
Lavish Jhamb, Solution Architect, Compliance Solutions, Qualys
Achieving Continuous Container Compliance
Kong Yew Chan, Director, Product Management, Container Security, Qualys
Secure Container Services for FedRAMP Cloud Service Providers
Alex Mandernack, Security Solutions Architect, Qualys
Kubernetes Visibility and Infrastructure Security
Sean Nicholson, Security Solutions Architect, Qualys
Detect Misconfigurations in IAC Templates
Shrikant Dhanawade, Senior Product Manager, Cloud Security Solutions, Qualys
Seamless Orchestration of Cloud Security and Management Best Practices
Vinod Sisodiya, Product Manager, Qualys
Prevention and Response to Microsoft 365 Attacks
Aditi Sahasrabudhe, Product Manager, Compliance Solutions, Qualys
Incident Response with Qualys Multi-Vector EDR
Hiep Dang, VP of Product Management, EDR, Qualys
Travis Smith, Director, Malware Threat Research, Qualys
Improving Web Application Security Scans with Reconnaissance
John Delaroderie, Director, Web Application Security, Qualys
Testing API Attack Surfaces
Ed Arnold, Security Solution Architect, Qualys
As President and CEO, Sumedh leads the company’s vision, strategic direction and implementation. He joined Qualys in 2003 in engineering and grew within the company, taking various leadership roles focused on helping Qualys deliver on its platform vision. From 2014 to 2021, he served as Qualys’ Chief Product Officer, where he oversaw all things product, including engineering, development, product management, cloud operations, DevOps, and customer support. A product fanatic and engineer at heart, he is a driving force behind expanding the platform from Vulnerability Management into broader areas of security and compliance, helping customers consolidate their security stack. This includes the rollout of the game-changing VMDR (Vulnerability Management, Detection and Response) that continually detects and prevents risk to their systems, Multi-Vector EDR, which focuses on protecting endpoints as well as Container Security, Compliance and Web Application Security solutions. Sumedh was also instrumental in the build-up of multiple Qualys sites resulting in a global 24x7 follow-the-sun product team.
Sumedh is a long-time proponent of SaaS and cloud computing. He previously worked at Intacct, a cloud-based financial and accounting software provider. He also worked at Northwest Airlines developing complex algorithms for its yield and revenue management reservation system. Sumedh has a bachelor’s degree in computer engineering with distinction from the University of Pune.
Jimmy Graham is the Sr. Director of Product Management for Vulnerability Management. He has been deeply involved in information security and vulnerability management for over 10 years, and has managed teams covering security operations, incident response, application security, vulnerability management, penetration testing, governance, and compliance.
Asif is a passionate cybersecurity entrepreneur with a broad business and technology expertise that spans enterprise, healthcare and financial domains, and cloud, mobile and deep learning technologies. He was the founder and CTO of Layered Insight till it was acquired recently by Qualys. He is now the CTO for Container Security at Qualys. Layered Insight was a pioneer in the container security space that offered a solution for providing deep visibility and protection for containerized and serverless workloads, using an innovative application-centric approach. It's the only infrastructure and orchestration agnostic solution that's zero-touch to developers and DevOps, and fully portable for cloud and edge workloads.
Asif is a pioneer in the Mobile Application Management space. Back in 2011, he identified a serious gap in the enterprise solutions being offered for BYOD, envisioned an innovative user-space virtualization solution, and founded Plursona to build that solution and realize the business vision. Plursona was acquired in 2012 by HPE (Aruba Networks) for its best-in-class technology. Asif has held various technology and business leadership positions at HPE (Aruba Networks), Motorola Mobility, Wells Fargo, Juniper Networks and Boston Scientific (Guidant).
Dave Ferguson is Director of Product Management for Web Application Security at Qualys. After writing code and developing applications for over a decade, Dave transitioned to focus on application security. Prior to Qualys, he led the global application security program at Sabre Corporation and worked as a Principal Consultant at FishNet Security (now Optiv). Dave is author of the OWASP Forgot Password Cheat Sheet and holds CISSP and CSSLP certifications.
Asif Karel is the director of product management for Qualys CertView. He has over 20 years of experience in Information Security including online fraud detection, PKI, strong authentication and single sign-on. Prior to joining Qualys, he was a subject matter expert in digital certificates and certificate solutions at VeriSign and Symantec, a solutions architect in the CASB space at CipherCloud and a solutions manager at Venafi.
Chris Carlson is a vice president of strategy at Qualys, where he is in charge of the product definition, roadmap and strategy for the Cloud Agent Platform. During his 20+ year career in the infosec industry, Carlson has attained expertise in multiple areas, ranging from firewalls, VPNs and intrusion prevention systems to real-time event-processing, security analytics and next-generation endpoint platforms. Prior to joining Qualys, he held security architecture roles at UBS and at Booz Allen Hamilton, and product management positions at venture-funded startups and at leading vendors, including Hexis Cyber Solutions, Agent Logic, Informatica and Trustwave.
As Senior Vice President of Product Management, Shailesh leads the product management team and drives the Qualys product vision helping customers assess and improve their IT, security and compliance posture. Since joining Qualys in 2012, he has worked in various security and compliance roles driving innovative solutions, including remote endpoint protection, endpoint detection and response, and SaaS security. In addition, Shailesh headed engineering, research and product management for Qualys Policy Compliance and File Integrity Monitoring, where he helped customers go beyond compliance to drive their IT GRC objectives. Before Qualys, he focused on security research for Symantec ESM and Compliance solutions. Shailesh holds a master’s in computer applications (MCA) from the Vishwakarma Institute of Technology and has various security certifications including CISA, CRISC, CISM. He is also a regular speaker at industry conferences.
Pablo Quiroga is a Director of Product Management at Qualys, where he is in charge of the product definition, roadmap and strategy for the IT asset visibility & management initiatives. With over 10 years of experience in Enterprise Software and the IT industry, Pablo has helped numerous customers gain significantly better visibility to support data-powered decision that often led to multi-million-dollar savings and risk avoidance.
Hari Srinivasan is director of product management for Qualys’ security for cloud and virtualization. He has expertise in numerous enterprise software disciplines including cloud security and analytics, automation, systems management, data center transformation, Hybrid Cloud, PaaS - DBaaS, compliance and configuration management. He previously worked at Oracle both as an engineer and spent over a decade in multiple areas in product management positions.
Scott Crawford is Research Director of the Information Security practice S&P Global Market Intelligence, where he leads coverage of emerging trends, innovation and disruption in the information security market. Scott is the former CISO of the Comprehensive Nuclear-Test-Ban Treaty Organization’s International Data Centre in Vienna, Austria, where he pioneered security initiatives for an NGO serving more than 150 nations. He has served in IT and security technology roles at the University Corporation for Atmospheric Research, with Emerson, and as a security strategist at IBM.
Richard A. Clarke is a former key advisor on intelligence and counter-terrorism who worked during the administrations of Presidents Ronald Reagan, George H. W. Bush, and Bill Clinton. Starting in 1998, he also served as the National Coordinator for Security, Infrastructure Protection, and Counter-terrorism for the U.S. National Security Council.
In The Fifth Domain: Defending Our Country, Our Companies, and Ourselves in the Age of Cyber Threats, Clarke and fellow cybersecurity expert Robert K. Knake provide a vivid, engrossing tour of cyberspace, introducing us to the scientists, executives, and public servants who have learned through hard experience how government agencies and private firms can fend off cyber threats.
Upon leaving the Bush administration in 2003, Clarke began speaking about his experience and future predictions about intelligence and counter-terrorism. He is an on-air ABC News consultant on political and security issues, and lectures at the John F. Kennedy School of Government at Harvard University. Clarke has appeared on Real Time with Bill Maher, The Daily Show, The Colbert Report, CNN, and more, where he has spoken about cyber war, crisis management, terrorism, the Middle East, and other major political issues of our time. Additionally, Clarke has written several op-eds on these subjects for the New York Times, the Washington Post, and the Wall Street Journal. His 2018 podcast, Future State, discussed the issues crucial to voters in the weeks preceding the election with such high-profile guests as former Secretary Madeleine Albright and former President Bill Clinton.
Clarke currently chairs the Board of Governors of the Middle East Institute. He has written nine books, both fiction and nonfiction, including the #1 New York Times bestseller Against All Enemies: Inside America’s War on Terror.
Dilip Bachwani is Senior Vice President, Engineering and Cloud Operations at Qualys, responsible for spearheading Qualys’ Cloud Platform Engineering, DevOps and SRE initiatives. An Agile and DevOps champion passionate about its transformational potential on organizational productivity and success, Dilip has deep technology and architecture expertise and over 18 years experience in building complex scalable distributed systems.
Laurie leads the worldwide field operations teams. In this role, she works with all regional leaders to provide customers with solutions that help them secure their digital transformation efforts. She also builds technology partnerships with customers that guide and shape the direction and vision of the Qualys Cloud Platform. In addition, Laurie ensures that the field teams provide the highest level of technical support to customers – ensuring maximum performance and results from the deployment of Qualys solutions.
Laurie has 22 years of experience in the IT industry, with a focus on information security for the past 12 years. Before joining Qualys in 2012, she managed the vulnerability program for CVS Caremark. Laurie has also program managed strategic initiatives at various security companies, including SecureWorks and VeriSign.
Charles Henderson is the Managing Partner and Global Head of X-Force Red. Throughout his career, Charles and the teams he has managed have specialized in network, application, physical, and hardware/device penetration testing as well as vulnerability research. X-Force Red’s clients range from the largest on the Fortune lists to small and midsized companies interested in improving their security posture.
Charles is also an enthusiastic member of the information security community and an advocate of vulnerability research. He has been a speaker at various conferences (including Black Hat, DEFCON, RSA, SOURCE, OWASP AppSec USA and Europe, and SXSW) around the world on various subjects relating to security testing and incident response. He has also appeared on or in The Today Show, CBS Evening News, CNN, Fox News, MSNBC, BBC, The Wall Street Journal, Forbes, USA Today, The Register, SC Magazine, Engadget, eWeek, Reuters, Car & Driver, and various other media outlets.
Badri Raghunathan is a director of product management at Qualys, responsible for spearheading Qualys’ product initiatives around cloud-native infrastructure (containers, serverless). A technology entrepreneur at heart, Badri thrives on understanding customer problems, building differentiated products, and taking them to market. Badri has worked in product and engineering management roles in a variety of industries, including security, networking and consumer electronics. Most recently, Badri was a founder at an early stage cloud DevSecOps startup, and prior to that, he led cloud-based security and networking products at companies like Symantec and Cisco. Badri holds 9 U.S. patents and has several more applications in the pipeline. He holds an MBA from the University of California Berkeley, and M.S. and B.S. degrees in electrical engineering from Oklahoma State University and the University of Madras, respectively.
Chris Rodgers is a director of product management, vulnerability detection and response, at Qualys. Chris has more than 15 years of experience in technology and information security. Previously, he was an information security engineer in charge of vulnerability management at Western Union, and before that, he held business and technical roles at Arrow Electronics and Ryerson. He holds a master’s degree in organizational leadership from the University of Denver and a bachelor’s degree in leadership development from Texas A&M University.
As the CIO of Nutanix, Wendy's focus on enterprise adoption of modern technologies fuels the company's global mission. Wendy also serves on the boards of Qualys, Inc. and Girls In Tech. A consumer tech enthusiast, Wendy has led technology and operational functions for Robert Half, GoPro, Yahoo! and Cisco. Wendy's recent accolades include being named ORBiE's Bay Area Enterprise CIO of the Year, the Fisher Center for Data Analytics' CIO of the Year, and one of HMG's Top Technology Executives. She was also ranked first on Enterprise Management 360's list of Top 10 Tech CIO's, named one of Silicon Valley Business Journal's Women of Influence and listed as one of the National Diversity Council's Top 50 Most Powerful Women in Technology.
Ramesh Chinta is a group program manager and seasoned leader at Microsoft. During his tenure, he has built protocols and the storage stack for the Exchange Server and security authentication, authorization, and management services for Windows. He has experience managing Bing infrastructure services to operate systems and security at scale. In his current role, he manages Azure Security and Compliance in the security health and analytics areas. Ramesh is responsible for the security services in the Azure Security Center. He is an expert in cloud security, delivering cloud services at hyperscale, distributed systems, security health, and analytics domains and holds multiple patents in these areas.
Senthil Selvaraj is a risk and technology executive in the banking industry. He is currently with PNC Bank as the second line risk lead supporting CIO groups. Previously, Senthil was with Bank of America in multiple technology, consumer and risk roles. His focus is on technology infrastructure, data center modernization (which includes vulnerability, change, and testing aspects associated with vendor products), and impact on artificial intelligence for banking applications.
Brian Rossi has been a cybersecurity leader at Caterpillar for the past 5 years focusing on IAM best practices and vulnerability management. Prior to this role, Brian spent 15 years integrating IT operations into service management through automation to bring greater efficiency to the business. Now leveraging his passion for automation and cybersecurity, he is helping to securely enable the Caterpillar supply chain through effective technology integrations.
Grant Johnson is the Director of Risk and Compliance at Ancestry where he is responsible for a team that manages all things IT compliance, including: GDPR Privacy Controls, Payment Card Industry (PCI) reporting, Cloud Security compliance & control and Vulnerability Management. He started his career with the Big Four accounting firms and has worked in different industries since then. He has been involved with IT security and compliance for over 20 years. Vulnerability management has been a favorite pass-time of his since he took over responsibility for scanning an entire Class A sized network at General Electric and regularly involved in working through the challenges posed by scanning over 900K hosts. He most recently developed the scanning and vulnerability operations process to meet the unique needs of the cloud-based infrastructure at Ancestry. When he is not at work, he loves spending time under the hood of a car and suffering chronic seasonal mood disorder induced by following BYU’s football team.
John Njenga current lives within the Atlanta metro area and has been working as an IT professional for more than 25 years. He has held various roles in software development, IT systems and network engineering, technical management, and IT security risk and compliance within the IT technology, engineering, banking and finance, security consulting, and retail industries. He is currently employed as a Principal Security Engineer within the cybersecurity risk and engineering space for a Fortune 50 retailer based in the Southeast United States.
Chad Schieken has over 20 years of professional experience in cybersecurity in a variety of settings. His primary areas of competency include cloud security, privacy, compliance and vulnerability management. Having worked at both a large public cloud provider and one of the leading incident response firms, Chad has had a unique opportunity to see how leading organizations address today’s challenges. Chad is from Philadelphia, PA where he lives safely tucked away with his wife, 4 children and their dog, Winston.
Thomas Graham serves as the CISO for CynergisTek, a top Healthcare Security company based in Austin, Texas. Prior to this, he supported the Defense Health Agency in a variety of roles. Most recently, prior to working with CynergisTek, his team received a FedHealthIT award for innovation presented at the National Press Club in Washington, DC. He currently holds MBA and MS-Technology Systems degrees, along with being in the final stages of his PhD in Information Assurance. Thomas has received CISSP and HCISPP designations, along with other industry recognized certifications. Thomas also serves on the MIS advisory board for East Carolina University and has spoken at multiple industry-recognized conferences.
As an enterprise architect at Celestica, Andrei Hotaran focuses on security strategy and technology innovation. He brings more than 20 years of Information Technology experience spanning across application development, cloud technologies, machine learning and cybersecurity.
Geronimo Welter E. Lapinig is a senior developer with 14 years of experience in information technology and part of Celestica's Global Shopfloor application development team. His role is to ensure seamless and secure deployment of applications across all Celestica sites whether on premise or in the cloud.
Hemanta Swain is the VP & Chief Information Security Officer at TiVo Corp, headquartered in San Jose, California. TiVo is a global leader in entertainment technology and creator of Digital Video Recorder, and holds 6,000+ patents worldwide. Hemanta leads a global team of security professionals to manage cybersecurity, regulatory compliance, privacy and risk management initiatives across the company. Hemanta has more than 22 years of IT experience including greater than 15 years of cybersecurity and risk management expertise. Hemanta has held multiple roles at TiVo. Prior to joining TiVo, Hemanta held various security technical leadership roles for companies like GE and Wipro. Hemanta has been a Qualys customer for more than a decade. Hemanta holds multiple Industry standard technology certifications including Certified Information Security Manager (CISM) and Certified Information Systems Security Professional (CISSP).
Kumar Ravi brings over 18 years of diversified experience in management, consulting, and implementation in the areas of information security and cybersecurity, data privacy, risk and compliance management, project management, security architecture, and disaster recovery solution design. He is with EXL Service as vice president of Information Security and is responsible for leading EXL's global information security, cybersecurity and data privacy programs. Kumar has a a diploma in Business Management from AIM, Phillipines. He is a certified CISSP, CISA, CISM, CRISC, CEH, DCPLA, ISO 27001LA, CCNP, CCNA and MCSE.
Vinny Hoxha is the Director of the GM Cyber Defense function which is responsible for protecting against threats and vulnerabilities, detecting, analyzing, and containing attacks on GM’s digital information and infrastructure. Since joining the GM security team in 2012, Vinny has been instrumental in establishing several key GM cybersecurity capabilities including the implementation of the first industrial cybersecurity program, implementation of the global application security program, and red team capabilities to continuously assess prevent, detect, and respond capabilities. Vinny holds a Bachelor of Science degree in Computer Information Systems and a Master of Science in Business Information Technology with a concentration in Information Assurance.
Wilson Lee leads the GM Global Vulnerability Management program, responsible for the timely detection, analysis, and remediation of vulnerabilities across GM’s information technology systems. Wilson has been responsible for implementing GM’s vulnerability management system which automates risk prioritization, governance and vulnerability assessments. Wilson holds a Bachelor of Science degree in Computer Information Systems and a Master of Science in Information Assurance.
Before serving as CISA Director, Mr. Krebs served in various roles at the Department of Homeland Security, responsible for a range of cybersecurity, critical infrastructure and national resilience issues. Prior to his time at DHS, he directed U.S. cybersecurity policy for Microsoft, and advised industry and government clients on complex cybersecurity and business risk matters, while serving at positions with Obsidian Analysis and Dutko Consulting.
He also served in the George W. Bush Administration, advising DHS leadership on domestic and international risk management and public-private partnership initiatives.
Mr. Krebs holds a Bachelor’s degree in Environmental Sciences from the University of Virginia and a J.D. from the Antonin Scalia Law School at George Mason University
Sara Griffith is the Chief Information Security Officer (CISO) for Euronet Worldwide, Inc. (Nasdaq: EEFT), a public financial services company that is an industry leader in processing secure electronic transactions and payments for financial institutions, service providers, and individual customers all over the globe. Euronet has 9,000 employees in 66 offices worldwide including 41 countries across Europe, Asia Pacific, North America, the Middle East, South America, and Africa. Sara has been fortunate to work onsite in 29 of those countries during her 16 years at Euronet. Sara has been the CISO the past eight years; she has helped lead the global security team to centralize and standardize security policies, requirements, processes, reporting, tools, and training across the organization’s three core business segments, including 22 IT teams supporting 130 entities. Sara resides in Denver with her husband and three children.
Maryann Horst is a member of NortonLifeLock’s Global Cyber Security (GCS) Threat and Vulnerability Management Team (TVM). Mrs. Horst has experience in implementing a variety of cloud-native security tools, which have enabled her to fill gaps in asset inventories, assess the security posture of cloud resources, ticket security issues for remediation and improve the overall security of her company by reducing its cloud-based attack surface.
Jacob Hahn has spent the last 20 years as a cybersecurity practitioner at Montana State University (MSU), most recently holding the title of Cybersecurity Engineer. He has extensive experience in threat hunting, vulnerability management, incident response and data loss prevention. Jacob holds a bachelor's degree in biology / biological sciences from Montana State University.
Constantine Vorobetz is a product manager at Qualys. Constantine is an experienced security professional with a demonstrated history of working with enterprise security teams to meet their goals and objectives. He’s passionate about technology, security and helping others. He holds a bachelor’s degree in health and human development from Montana State University and a master’s degree in criminal justice from the University of Cincinnati.
Mehul Revankar is a cybersecurity professional with more than 15 years of experience in Vulnerability Management, Policy Compliance and Security Operations. He leads Product Management and Vulnerability Research at Qualys for VMDR. Before joining Qualys, Mehul led the development of vulnerability and patch management products at SaltStack, and prior to that he led multiple research teams at Tenable. Mehul has a bachelor’s degree in electronics from the University of Mumbai and a master’s degree in computer engineering from George Mason University.
Eran Livne is director of Product Management for Endpoint Remediation at Qualys, leading a team tasked with helping customers improve their security posture through cross-platform vulnerability remediation. He has more than 20-years of product management and computer science experience working in diverse IT and security markets. In 2014, Eran founded mobile security company, LetMobile, acquired by Ivanti. Following the acquisition, he drove Ivanti's enterprise security and endpoint security and management solutions. Eran holds a bachelor's degree in computer science from Tel Aviv University and an MBA in high-tech business administration from Technion - Israel Institute of Technology.
Hariom Singh, CISSP, is director of Product Management for Compliance Solutions at Qualys. With over 18 years of experience in cybersecurity and IT GRC, he shapes compliance products and helps clients secure their cyberinfrastructure while exceeding their IT-GRC goals. Prior to Qualys, he worked as the technical lead for Creative Breakthroughs, a technical consultancy, and as a senior consultant for Symantec, building his vast experience designing and building effective security and compliance programs for large enterprises in the healthcare, energy, financial and telecommunications industries.
Parag Bajaria is vice president of Product Management at Qualys, focused on building and evangelizing cloud and container products and solutions. He has spent the last decade working in cloud security building products in various domains including data security, cloud posture management, identity security, and workload security. Previously, Parag was head of Product Management at CloudKnox, a cloud infrastructure entitlements management (CIEM) company. Parag has held product leadership roles at HyTrust, Yahoo, and Juniper Networks. Parag has an MBA from Cornell University and a master's in electrical engineering from the University of Maine.
John Delaroderie is director of Product Management for Web Application Security. He joined Qualys in 2018 and has spent the past decade working for various government agencies and private organizations in cybersecurity, incident response, digital forensics, and systems integrations. John holds a bachelor's degree in political science from the U.S. Naval Academy and a master’s degree in computer science from the Naval Postgraduate School.
Jim Wojno is senior director of Product Management for the Qualys XDR platform. Jim has worked for several of the industry's top infosec companies covering a 25-plus year career that includes a variety of challenging assignments. As a product leader, Jim’s focus is on incident response, threat intelligence and developing tools that make the blue team a force multiplier in today’s enterprise.
Andrew Morrisett has spent the last five-plus years in Silicon Valley working in security and networking. Within his time at Qualys, he has evolved from a technical account manager into the Solutions Architect role for Qualys Multi-Vector EDR. He has extensive training as an incident responder, runs a security research blog in his free time, and is actively testing malware to help improve Qualys’ detection capabilities. Andrew holds a bachelor’s degree from the University of Colorado at Boulder.
Chris Sestito is vice president of Data Science at Qualys. Chris is a decades-long veteran of Cyber Security with experience as a Threat Researcher, Reverse Engineer, and leader of global research and data science teams. Targeting our most complex problems, Chris has committed the rest of his career to the practical application of machine learning in security products.
Krishnakant (KK) Deharia is vice president of Product Management for Platform Services and Integrations. KK leads product management functions for the Qualys Cloud Platform helping customers get immediate value from Qualys solutions including XDR, VMDR, CloudView, CSAM and inline integrated partner products. In his 21-year career, KK led product teams and delivered many innovative products and capabilities with top companies such as McAfee, Intel Corp., Dell Inc., Motorola in Security and Networking domains. KK has a bachelor’s degree in electronics and telecommunication from SGSITS Indore and a master’s degree in computer technology from the Indian Institute of Technology, Roorkee.
Kong Yew Chan is director of Product Management at Qualys, leading the container security solution. Prior to Qualys, Kong worked on multiple Kubernetes platforms at VMware and Pivotal. He has over 10 years of experience working on security solutions at Hewlett Packard and TrendMicro. Kong holds a bachelor’s degree in computer engineering from the Nanyang Technological University, Singapore, and an MBA from Babson College.
Francis Finley is the VP of Cyber Detection, Response, and Vulnerability Management at Equifax. His teams are tasked with finding malicious activity and responding to it; or threats that could potentially be exploited by malicious actors, both internal and external. For the past few years Equifax has been undergoing a massive security transformation effort, with all facets of security baked into this, not least of which are Monitoring and Vulnerability Management. Francis and his teams have been deeply technically involved in integrating into all parts of this transformation and this technical evolution.
As Chief Revenue Officer, Allan is responsible for all aspects of revenue performance driven by focusing on delivering sustainable customer value and business outcomes, the leadership of the worldwide sales and partner organization, and continuing Qualys’ growth momentum.
Allan has more than 20 years of executive sales experience, building and scaling world-class software and services organizations from private growth companies to leading public companies. He previously served as the Chief Revenue Officer of Trustwave, a leader in cybersecurity threat detection and response. Prior to Trustwave, Allan held executive sales leadership positions in public and private growth companies BigFix, Conga, SecurityFocus, CA, IBM and Symantec. He received a bachelor’s degree in business from the University of Kansas.
Jeni White leads the enterprise IT risk management team of Arizona State University, a Research I university with over 17,000 employees serving nearly 140,000 students. The team uses Qualys apps against roughly 25,000 assets and 200 applications to identify and prioritize vulnerabilities and help distributed technical staff triage and resolve them. Jeni’s background includes over ten years in systems administration and Web applications, over ten years in information security, and the past two years hands-on with Qualys including integration with reporting and ticketing tools in use at ASU.
Todd Sherinian has 27-years of experience integrating technologies, managing projects, developing and empowering employees across Health Care, Financial, Energy, and Government industries. At Circle K, he leads the Global Cyber Operations team across 26 countries and territories with over 14,000 stores and multiple data centers. In addition to Vulnerability Management and Incident Management & Response, his team is responsible for Monitoring, Detection, and Response to cyber threats globally.
Dharmesh Ghelani is Principal Product Manager at Qualys, focused on industrial cybersecurity. He has 15 years of experience spanning R&D, engineering and product management, working on various domains like virtualization, cloud computing and cybersecurity. He has contributed to developing multiple products at Symantec, VMware, IBM Software Labs and BMC Software. Dharmesh holds VCP & ITIL certifications and has a master's degree in computer networks, a master's in business administration, and a bachelor's degree in information technology.
Swapnil Ahirrao is a Product Manager for Mobile Security at Qualys. He leads Qualys product initiatives around mobile security. He has 7+ years of experience in Mobile Security, Mobile Device Management (MDM), and Enterprise Mobility Management (EMM). Prior to Qualys, Swapnil worked at 1Mobility (acquired by Qualys) as a Sr. Business Analyst, working with customers and designing solutions to manage and secure corporate and employee-owned mobile devices and the associated data across the enterprise.
Alex Mandernack is a Security Solution Architect at Qualys, focusing on Cloud and Container Security from an engineering and architecture perspective. Alex is a liaison between customers and product teams and provides a hands-on, real-world perspective. Before joining Qualys in 2018, Alex held leadership positions in various organizations from startups to MSPs and publicly traded companies.
Sean has served in the IT and security industry throughout his career. He has held leadership positions within various technology organizations, ranging from startups, SMBs, to publicly traded companies. He has spent the last six years focusing on public cloud security in an engineering and architecture role. As a security solution architect for Qualys, Sean has focused on helping customers of all sizes with security automation and integration for their public cloud deployments with the Qualys Cloud Platform.
Aditi Sahasrabudhe is a Product Manager for Compliance Solutions at Qualys and spearheads the research on new features in its Policy Compliance solution. She has also devised out-of-band configuration assessment capability for assessing critical assets in the customer environment. Before joining Qualys, she has worked in development and research roles at Symantec Corporation and KPIT infosystem’s CREST R&D labs. She holds a master's in technology from IIT Roorkee and CISSP certification. She is an author of CIS benchmarks.
Hiep Dang is Vice President of Product Management, EDR at Qualys. He is passionate about building innovative cybersecurity solutions to protect users and corporations from the evolving threat landscape. Almost 20 years ago, Hiep turned a casual curiosity in computer forensics and computer viruses into a full-time cybersecurity career. His journey has given him a spectrum of experiences from burgeoning startups to Fortune 500 companies and the opportunity to solve a range of problems from deeply technical to abstract business. He's found his sweet spot in product management at the intersection of product strategy and technical execution. Before joining Qualys, Hiep launched several enterprise and consumer products for Cylance (acquired by BlackBerry), McAfee (acquired by Intel), and Aluria (acquired by EarthLink). Hiep has also served as the Director of Anti-Malware Research for McAfee, where he oversaw a globally distributed 24x7 organization responsible for researching and responding to complex malware threats.
Travis is the Director of Malware Threat Research at Qualys. He has spent the past 15 years in the security industry with a focus on digital forensics and incident response. He holds a wide array of certifications ranging from GIAC Certified Penetration Tester to the CISSP, as well as an MBA with a concentration in information security. Travis has presented his research at conferences worldwide at venues such as BlackHat, RSA, and SecTor.
Ed Arnold is a Security Solution Architect with Qualys, focusing on web application and API security testing. He formerly held positions of Senior Security Engineer, Technical Architect and Principal Security Consultant over a 13 year security career. Ed is focused on automating security testing and enabling developers to proactively address security issues.