Qualys Security Conference
Explore the security impacts of the digital journey and how to build in security automation from endpoints to the data center to the cloud. Join us in person to scale your capability and meet the challenges of ever-growing attack surfaces. Hear from industry experts, learn strategies and tactics to secure your organization, and network with your peers and other Qualys experts to accelerate your career.
Network with your peers. Below is a sample of companies attending:
Kick off QSC on the Road on Wednesday, April 27. Meet old friends, make new ones, enjoy cocktails, and connect with Qualys experts and peers.
|8:00 – 9:00 AM Breakfast|
9:00 – 10:00 AM
Security Automation for the Digital Journey
Jonathan Trull, CISO, Qualys
10:00 – 11:00 AM
Bringing the Unified Power for the Qualys Cloud Platform to address Today’s Security Challenges
Eran Livne, Director of Product Management, Endpoint Remediation, Qualys
|11:00 – 11:30 AM Break and Q&A Bar|
11:30 AM – 12:15 PM
Protecting Critical IT Assets While Navigating Business Growth and Cloud Transformation
Terry Barber, Information Security Manger, American Express Global Business Travel
|12:15 – 1:30 PM Lunch and Q&A Bar|
1:30 – 2:30 PM
Playbook for Combating Threats from Log4shell to Ransomware and More
Colton Pepper, Solution Architect, VM SME
2:30 - 3:15 PM
Leveraging VMDR to Boost Audit Efficiency and Safeguard Customers
Brian Penn, Security Posture Manager, Aflac Incorporated
|3:15 – 3:30 PM Break and Q&A Bar|
3:30 – 4:15 PM
Customer Presentation - Schlumberger
Maher Al Awar, Vulnerability Program Manager
David Busby, Service Manager - Vulnerability Management Architect
4:15 – 5:00 PM
Start and Stay Secure Throughout Your Cloud and Container Journey
Parag Bajaria, VP, Cloud & Container Security Solutions, Qualys
|5:00 PM Cocktail Reception|
Dive into the profound impact of the digital journey and explore how to build in security automation from the data center to the cloud. Industry experts and Qualys leaders discuss automation strategies, preview product roadmaps, listen to your challenges, and answer your questions.
Engage with Qualys’ customer-facing teams and your peers around best practices and user case studies for applying security automation to real-world challenges.
Two days of free training covers forward-looking strategies, best practices to improve effectiveness and productivity, and core and expanded product features to up-level your security program.
CIOs, CSOs and CTOs; directors and managers of network, security and cloud; developers and DevSecOps practitioners; Qualys partners and consultants; or any forward-thinking security professionals.
Qualys Security Conference will be held at The Highland Hotel Dallas.
5300 E. Mockingbird Lane
Dallas, TX 75206
T: (214) 520-7969
The Highland Hotel
Attendance at QSC is complimentary. This includes access to all general sessions, breakfast, lunch, breaks, and training.
Travel and hotel accommodations are not included with QSC or pre-conference training.
As President and CEO, Sumedh leads the company’s vision, strategic direction and implementation. He joined Qualys in 2003 in engineering and grew within the company, taking various leadership roles focused on helping Qualys deliver on its platform vision. From 2014 to 2021, he served as Qualys’ Chief Product Officer, where he oversaw all things product, including engineering, development, product management, cloud operations, DevOps, and customer support. A product fanatic and engineer at heart, he is a driving force behind expanding the platform from Vulnerability Management into broader areas of security and compliance, helping customers consolidate their security stack. This includes the rollout of the game-changing VMDR (Vulnerability Management, Detection and Response) that continually detects and prevents risk to their systems, Multi-Vector EDR, which focuses on protecting endpoints as well as Container Security, Compliance and Web Application Security solutions. Sumedh was also instrumental in the build-up of multiple Qualys sites resulting in a global 24x7 follow-the-sun product team.
Sumedh is a long-time proponent of SaaS and cloud computing. He previously worked at Intacct, a cloud-based financial and accounting software provider. He also worked at Northwest Airlines developing complex algorithms for its yield and revenue management reservation system. Sumedh has a bachelor’s degree in computer engineering with distinction from the University of Pune.
Brian Penn has over 25+ years of cyber security experience mostly in Vulnerability Management and Compliance. In his current role at Aflac, he is the Security Posture Manager helping to detect vulnerabilities in the network. Prior to joining Aflac, he spent 21 years at InterCall in a similar capacity. He holds a Master’s Degree from the University of Alabama, Birmingham in Management Information Systems and Cyber Security.
As Senior Vice President of Product Management, Shailesh leads the product management team and drives the Qualys product vision helping customers assess and improve their IT, security and compliance posture. Since joining Qualys in 2012, he has worked in various security and compliance roles driving innovative solutions, including remote endpoint protection, endpoint detection and response, and SaaS security. In addition, Shailesh headed engineering, research and product management for Qualys Policy Compliance and File Integrity Monitoring, where he helped customers go beyond compliance to drive their IT GRC objectives. Before Qualys, he focused on security research for Symantec ESM and Compliance solutions. Shailesh holds a master’s in computer applications (MCA) from the Vishwakarma Institute of Technology and has various security certifications including CISA, CRISC, CISM. He is also a regular speaker at industry conferences.
Colton Pepper has over 10 years of experience in cybersecurity and is a subject matter expert (SME) in Vulnerability and Asset Management and Asset Tagging. As a member of the SME team, he works directly with customers and provides consultation to improve their use of the Qualys Vulnerability Management tool. Colton provides guidance to customers at all levels of maturity levels of their VM program to ensure their needs and requirements are met, while adhering to best practices. Prior to joining Qualys, Colton built the VM program for a privately held multinational corporation from the ground up and managed the program until coming to Qualys.
Parag Bajaria is vice president of cloud and container security solutions at Qualys, focused on building and evangelizing cloud and container products and solutions. He has spent the last decade working in cloud security building products in various domains including data security, cloud posture management, identity security, and workload security. Previously, Parag was head of Product Management at CloudKnox, a cloud infrastructure entitlements management (CIEM) company. Parag has held product leadership roles at HyTrust, Yahoo, and Juniper Networks. Parag has an MBA from Cornell University and a master’s in electrical engineering from the University of Maine.
Maher Al Awar is CyberSecurity leader at Schlumberger with over 13 years of experience in Oil & Gas industry. He is currently leading the Enterprise Vulnerability Management program that covers both Customers and internal Business digital solutions. He has two mottos: “Data as Asset” and “Data as new language” and prides himself in his data analytics skills that empowers the Cyber Security Compliance program and the overall company to define and execute strategic decisions. Over the course of the last 10 years, he played major leadership and technical roles in Schlumberger by leading the “Cyber Security – Physical Security Program”, Information Security internal audit and various IT technical positions. “Comfort zone” is not his comfort zone: his intellectual curiosity defines his different approaches to optimize and efficiently deliver his projects.
Eran Livne is director of Product Management for Endpoint Remediation at Qualys, leading a team tasked with helping customers improve their security posture through cross-platform vulnerability remediation. He has more than 20-years of product management and computer science experience working in diverse IT and security markets. In 2014, Eran founded mobile security company, LetMobile, acquired by Ivanti. Following the acquisition, he drove Ivanti’s enterprise security and endpoint security and management solutions. Eran holds a bachelor’s degree in computer science from Tel Aviv University and an MBA in high-tech business administration from Technion - Israel Institute of Technology.
Jonathan Trull is a longtime security practitioner and CISO with over 18 years of experience in the cybersecurity industry and is currently the Senior Vice President of Customer Solutions Architecture and Engineering at Qualys. His career has spanned operational CISO and infosec roles with the State of Colorado, Qualys, Optiv, and Microsoft. While at Microsoft, Jonathan led the Microsoft Detection and Response Team (DART) whose mission was to respond to cyber security incidents around the globe ranging from cyber espionage initiated by nation-state actors to ransomware attacks and included the investigation of and response to the NOBELIUM threat actor campaign which leveraged the SolarWinds supply chain. Jonathan also serves as an advisor to several security startups and venture capital firms and supports the broader security community through his work with the Cloud Security Alliance, Center for Internet Security, and IANS. He is also an adjunct faculty member at Carnegie Mellon University where he mentors and coaches those attending the CISO Executive Education Program. Jonathan is a frequent speaker at industry conferences such as BlackHat, RSA, and SANS and holds several industry certifications including the CISSP, OSCP, CCSP, and GCFA. Jonathan is a veteran of the U.S. Navy finishing his career as a Lieutenant Commander supporting the Information Warfare Domain.
David Busby is a seasoned cyber security professional specializing in penetration testing, scripting, programming and vulnerability management, currently at Schlumberger. David prides himself in staying involved and giving back to the security community by his decade-long active participation in the local Houston InfraGard chapter and as former member of the leadership team for InfraGard’s Technology Special Interest group which provided monthly cyber security focused webinars and meetups to educate professionals in the local Houston community. At Schlumberger, he has held positions tasked with managing, triaging and hardening risks targeting endpoints extending out to the perimeter. David is active in business engagement at Schlumberger by leading a team focused on software and hardware security assessments to ensure products and services deployed to the enterprise are secure by design. Optimization, automation, and efficiency are his core working principles - always seeking ways to do things better with a little bit of white hat hacking on the side.
Terry hails from Santa Cruz California originally and began his career in Information Technology at Mighty Net, Inc. (founding company for Creditreport.com) as CTO – Director of Systems and Security while attending California State University Northridge. There he was responsible for all Infrastructure, networking, and security. In 2007, Terry took a Director of IT position at Protocol and left the company as Director of US IT Operations when they were acquired by Expert Global Solutions.
At EGS he ventured back into Information Security role full-time and worked alongside his CISO as the two man team responsible for achieving PCI compliance across the Enterprise. In 2015 he transitioned to American Express Global Business Travel as an Information Security Manager. Today his responsibilities include Cyber Security Metrics, Managing the Vulnerability management platforms including Qualys and several other Information Security platforms at GBT.