Explore the security impacts of the digital journey and how to build in security automation from endpoints to the data center to the cloud. Join us in person to scale your capability and meet the challenges of ever-growing attack surfaces. Hear from industry experts, learn strategies and tactics to secure your organization, and network with your peers and other Qualys experts to accelerate your career.
|8:30 Registration and Coffee|
|9:15 Keynote - Dynamics of CyberSecurity Risk on a Continuously Changing Attack Surface Sumedh Thakar, President and CEO, Qualys|
|10:00 Managing & Reducing Risk with Qualys Platform Shailesh Athalye Senior Vice President, Product Management, Qualys|
|10:45 Coffee Break|
Keynote & Q&A: Global Security Horizon:
Frank Gardner OBE, Security Correspondent & Author,
An unmissable strategic overview from award-winning Security Correspondent and Author, Frank Gardner OBE's on the emerging global security landscape.
Navigating Today’s Threat Landscape to Reduce Cyber Risk with Qualys VMDR and
Mehul Revankar, VP Product Management, VMDR,
As the threat of vulnerabilities and zero-day exploits soars, organizations must have rapid, efficient ways to respond. Legacy approaches struggle to keep up and often fall short. This session delves into how Qualys VMDR and TruRisk revolutionize the way enterprises visualize, measure and automate the remediation of risk and threats. Explore cutting-edge cyber risk management techniques and how these solutions empower IT and security teams to collaborate seamlessly, such as integrating with ITSM tools like ServiceNow. Learn how your organization can improve security posture, compliance, and risk reduction with actionable insights and powerful remediation strategies.
Moving from a vulnerability management to a risk based VM Program
Liam Baines, Security and Vulnerability Manager, Virgin Media O2
Paul Baird, CTSO, Qualys
Understand why organisations are moving from the traditional VM scanning to a full lifecycle program to reduce risk. Join the team as we discuss why and how you make the step change to a proactive risk reduction.
Service Management Integration with Qualys
Ritesh Patel, Security Principal, BP
Learn how BP have integrated their vulnerability lifecycle program fully into their service management program, giving individual teams and owners full visibility of their risk and remediation requirements.
Unlocking Intelligence-Backed Remediation: Insights from the Qualys Threat Research
Eran Livne, Senior Director, Endpoint Remediation, Qualys
Travis Smith, Vice President, Threat Research Unit, Qualys
The Qualys Threat Research Unit (TRU) collected and analyzed data from the 2022 threat landscape underpinning insights for the 2023 TruRisk Threat Research Report. In this session, you will learn key findings from the Threat Research Unit and how these contribute to intelligence-backed remediation strategies using Qualys Patch Management.
Detection is nothing without remediation
Murat Dilek, Network, Infrastructure & Cyber Security Project Manager, Falkirk Council
Mark Jones, Global Threat and Vulnerability Manager, Costa
Eran Livne, Senior Director, Endpoint Remediation, Qualys
Charles McAlpin, Director, Technical Account Management, Post-Sales, Qualys
Listen to a discussion of why security teams are taking more control of remediation functions to dramatically reduce their risk exposure. We will try and answer why we are not leaving it to the traditional patching teams, and how we got approval to do it in the first place!
A Modern Approach for Protecting Multi-Cloud Environments Using Qualys Total Cloud
Nayeem Islam, Vice President, Product Management, Qualys
Digital transformation has accelerated the push of IT into multi-cloud environments. Legacy on-premises solutions don’t do cloud, which means security and compliance stakeholders must adopt solutions designed for cloud-native requirements. Qualys TotalCloud is a cloud-native solution that provides unified vulnerability, threat, and posture management across a multi-cloud environment. This session describes the components of TotalCloud, including cloud-native application protection platform (CNAAP), cloud security posture management (CSPM), cloud workload protection (CWP), infrastructure as code (IaC), cloud detection and response (CDR), and container security (CS).
Detecting real time cloud threats
Greg Coutouvidis, Director of Security Engineering and Operations, Centrica
Karl Alderton, Major Account Solution Architect, Qualys
Cloud security - Explore and share the journey to detecting real time threats in the cloud.
Attack Surface Management with an Attackers’ and Defenders’ View
Kunal Modasiya, VP, Product Management, Attack Surface Management & AppSec, Qualys
With CyberSecurity Asset Management 2.0 and EASM, Qualys provides security
practitioners with both an outside-in and inside-out view of their entire attack
surface, allowing them to see their assets as an attacker would. This new capability
lets stakeholders who already trust Qualys for vulnerability management (VM)
streamline detection, automatically prioritize threats with TruRisk, and rapidly
remediate urgent threats
|17:15 Closing Remarks|
|17:15 Drinks Reception and Networking|
Dive into the profound impact of the digital journey and explore how to build in security automation from the data center to the cloud. Industry experts and Qualys leaders discuss automation strategies, preview product roadmaps, listen to your challenges, and answer your questions.
Engage with Qualys’ customer-facing teams and your peers around best practices and user case studies for applying security automation to real-world challenges.
One day of free training covers forward-looking strategies, best practices to improve effectiveness and productivity, and core and expanded product features to up-level your security program.
CIOs, CSOs and CTOs; directors and managers of network, security and cloud; developers and DevSecOps practitioners; Qualys partners and consultants; or any forward-thinking security professionals.
Click here to read insights from last year’s QSC London
Qualys Security Conference will be held at the Sheraton Grand London Park Lane.
W1J 7BX, United Kingdom
T: +44 20 7836 2400
Sheraton Grand London Park Lane - London | Marriott Bonvoy
Attendance at QSC is complimentary. This includes access to all general sessions, breakfast, lunch, breaks, and training.
Travel and hotel accommodations are not included with QSC or pre-conference training.
Mark is currently the Global Threat and Vulnerability Manager for Costs Coffee and for the last 8 months has been responsible for helping to reduce the external and internal threats the company face using different aspects of the Qualys suit to do so. Before this he has worked in multiple well-known companies in banking and broadcasting performing a similar role for the past 8 years.
Travis is the Vice President of Malware Threat Research at Qualys. He has spent the past 15 years in the security industry with a focus on digital forensics and incident response. He holds a wide array of certifications ranging from GIAC Certified Penetration Tester to the CISSP, as well as an MBA with a concentration in information security. Travis has presented his research at conferences worldwide at venues such as BlackHat, RSA, and SecTor.
Nayeem Islam is the Vice President of Product Management at Qualys for the TotalCloud initiative. Prior to joining he was founder and CEO of Blue Hexagon, a cloud security company that pioneered the use of AI to detect cloud threats. Blue Hexagon is now part of Qualys.
Ritesh Patel is Security Principal at BP, responsible for owning, developing and operating services which reduce the attack surface and vulnerabilities within BP. Ritesh is a solutions‐orientated security engineering professional with more than 20 years of experience developing and implementing complex infrastructures and technical solutions for industry leaders. Has high expertise in the design, installation and configuration of solutions to drive company growth and technical innovation and automation as well as proficient in determining system requirements and resolving technical issues quickly.
As President and CEO, Sumedh leads the company’s vision, strategic direction and implementation. He joined Qualys in 2003 in engineering and grew within the company, taking various leadership roles focused on helping Qualys deliver on its platform vision. From 2014 to 2021, he served as Qualys’ Chief Product Officer, where he oversaw all things product, including engineering, development, product management, cloud operations, DevOps, and customer support. A product fanatic and engineer at heart, he is a driving force behind expanding the platform from Vulnerability Management into broader areas of security and compliance, helping customers consolidate their security stack. This includes the rollout of the game-changing VMDR (Vulnerability Management, Detection and Response) that continually detects and prevents risk to their systems, Multi-Vector EDR, which focuses on protecting endpoints as well as Container Security, Compliance and Web Application Security solutions. Sumedh was also instrumental in the build-up of multiple Qualys sites resulting in a global 24x7 follow-the-sun product team.
Sumedh is a long-time proponent of SaaS and cloud computing. He previously worked at Intacct, a cloud-based financial and accounting software provider. He also worked at Northwest Airlines developing complex algorithms for its yield and revenue management reservation system. Sumedh has a bachelor’s degree in computer engineering with distinction from the University of Pune.
Frank Gardner spent nine years as an investment banker in New York, London and Bahrain before switching to journalism and joining the BBC in 1995. Frank has reported extensively on the global ‘War on Terror’ in Guantanamo Bay, Yemen, Afghanistan, Iraq and elsewhere in the Middle East. In 2004 Frank survived being shot six times at close range by Al-Qaeda terrorists in a Riyadh suburb in Saudia Arabia. He went on to write the best-selling book Blood and Sand, the poignant story of what can happen to your belief system when the culture you have embraced ends up trying to kill you. Frank has gone onto write three best-selling spy thrillers Crisis, Ultimatum and Outbreak. He was awarded an OBE in 2005 for services to journalism. In 2018 he was awarded the University of Southern California’s Tommy Trojan Trophy for distinguished speaking. As a career broadcaster and a witty and gifted communicator, Frank shares his passion for the Middle East, travel and adventure. He draws on a unique perspective and understanding of both domestic and international security.
As Senior Vice President of Product Management, Shailesh leads the product management team and drives the Qualys product vision helping customers assess and improve their IT, security and compliance posture. Since joining Qualys in 2012, he has worked in various security and compliance roles driving innovative solutions, including remote endpoint protection, endpoint detection and response, and SaaS security. In addition, Shailesh headed engineering, research and product management for Qualys Policy Compliance and File Integrity Monitoring, where he helped customers go beyond compliance to drive their IT GRC objectives. Before Qualys, he focused on security research for Symantec ESM and Compliance solutions. Shailesh holds a master’s in computer applications (MCA) from the Vishwakarma Institute of Technology and has various security certifications including CISA, CRISC, CISM. He is also a regular speaker at industry conferences.
As an Enterprise Network & Cyber Security Team Leader, I am passionate about keeping organizations secure in the face of ever-evolving cyber threats. With years of experience in the industry, I have developed a deep understanding of the complex nature of enterprise network and cyber security, and the importance of staying one step ahead of potential risks.
As a leader, I believe in fostering a collaborative and supportive environment for my team, where open communication, creativity, and innovation are encouraged. I prioritize the ongoing professional development of my team members and empower them to take ownership of their work, while providing guidance and support as needed.
In my role, I am committed to working closely with stakeholders across the organization to ensure that security policies and procedures are aligned with business goals and objectives. I understand the critical role that security plays in enabling business success, and I am dedicated to delivering solutions that meet both security and operational requirements.
Mehul Revankar is a cybersecurity professional with more than 15 years of experience in Vulnerability Management, Policy Compliance and Security Operations. He leads Product Management and Vulnerability Research at Qualys for VMDR. Before joining Qualys, Mehul led the development of vulnerability and patch management products at SaltStack, and prior to that he led multiple research teams at Tenable. Mehul has a bachelor’s degree in electronics from the University of Mumbai and a master’s degree in computer engineering from George Mason University.
My initial foray into computing was through programming. It was and still is a key skillset in what I do today. I believe that good security is good systems administration. My role at Centrica is working with the Chief Security Officer and the Head of Security Architecture to create and take ownership of the security product roadmap, evaluating and creating a capability matrix for each application, service or platform already in place, covering antivirus, DLP, EDR, Threat Protection, Threat Intelligence and Incident Response..
Liam Baines is the Senior Vulnerability Manager for VMO2 and is responsible for leading teams that carry out vulnerability management activities across the majority of the organisation. With over 24 years’ experience in the telecommunications and cable industry, Liam’s direct work with customers at the beginning of his career instilled in him a strong customer focus that has persisted throughout his professional life. He worked closely on the Analogue to Digital Cable TV conversion and the introduction of ground-breaking Video On Demand services before moving into multiple technical programme management and OSS roles. For the last 7 years, his focus has been on compliance and vulnerability management both in the UK and across Europe. He was involved in the inception of the initial Virgin Media vulnerability management programme and has been working on it ever since. Liam and his teams are currently working on rolling out Qualys across the VMO2 Estate.
Eran Livne is Senior Director, Endpoint Remediation at Qualys, leading a team tasked with helping customers improve their security posture through cross-platform vulnerability remediation. He has more than 20-years of product management and computer science experience working in diverse IT and security markets. In 2014, Eran founded mobile security company, LetMobile, acquired by Ivanti. Following the acquisition, he drove Ivanti’s enterprise security and endpoint security and management solutions. Eran holds a bachelor’s degree in computer science from Tel Aviv University and an MBA in high-tech business administration from Technion - Israel Institute of Technology.
Kunal is currently VP of Product Management for the CyberSecurity Asset Attack Surface Management (CAASM), Web App and API Security product line at Qualys HQ in Foster City, CA. He is Qualys boomerang. He worked at Qualys for 3 years and incubated the XDR product line from inception. Kunal has spent 15+ years working at startups, and big and mid-size companies in cybersecurity, networking, and application security in both product and engineering roles at Juniper Networks, Extreme Networks, Sun Microsystems and Infinera. Prior to re-joining Qualys, Kunal was heading products at Israeli startup in API security and bot management AppSec space.