As Senior Manager at LTIMindtree, Ashish leads the organization’s Vulnerability Management program, driving enterprise-wide initiatives to strengthen cyber resilience and risk posture. With over a decade of experience, including more than seven years dedicated to cybersecurity, he has been instrumental in implementing and optimizing a wide range of security technologies and frameworks across global environments. Throughout his career, Ashish has successfully led deployments and integrations of key cybersecurity capabilities such as SIEM, NAC, IPS/IDS, EDR, MDM, Data Classification, and Third-Party Risk Management (TPRM). His strategic focus lies in building scalable, process-driven programs that align technology, people, and governance to reduce organizational risk and enhance compliance maturity. Ashish is a Certified Information Systems Security Professional (CISSP) from ISC² and an ISO 27001:2022 Lead Auditor, underscoring his commitment to advancing security standards and operational excellence within the evolving threat landscape.

Debashish Jyotiprakash is the Managing Director, India and ASEAN for Qualys and is responsible for sales, marketing, channel management and success in the region. Debashish joined Qualys in 2012 and has held various leadership roles at Qualys including Chief Technical Security Officer and managing director for India and Australia & New Zealand. Debashish is a passionate customer advocate. He helps Qualys customers leverage their investment in the Qualys Cloud Platform and its IT, Security and Compliance applications to reduce cyber risk and prepare defenses for emerging cyber threats. Previously Debashish held head of business and sales leadership roles at leading India-based technology companies. He holds a bachelor’s degree in computer science from the Government College Rourkela, and a master’s degree in Computer Science from Utkal University / Ravenshaw College.

As a cybersecurity professional, Mukesh brings deep expertise in vulnerability remediation, patch management, and risk mitigation. With a proven track record in implementing proof-of-concept solutions and developing custom scripts to neutralize zero-day threats, he plays a pivotal role in strengthening enterprise security postures. A passionate researcher and problem-solver, Mukesh has hands-on experience in conducting vulnerability research, fine-tuning File Integrity Monitoring (FIM) systems, and aligning organizational security programs with global standards such as NIST and PCI DSS. Driven by precision and a continuous learning mindset, he approaches cybersecurity with a balance of technical depth and strategic foresight—collaborating closely with teams to transform complex challenges into actionable, scalable security outcomes.

Lavish Jhamb is Solution Architect for Compliance Solutions at Qualys, focused on building security solutions such as 'Custom Assessment and Response' and 'File Integrity Monitoring' and helping customers assess and improve their security and compliance posture. He has over 7 years of experience working on security solutions, regulatory standards, and cyber security frameworks, with thorough understanding of operating systems. Lavish holds a bachelor's degree in computer engineering from the Kurukshetra University Institute of Engineering and Technology and a Post Graduate Diploma in IT Infrastructure, Systems and Security from CDAC Pune.

As Senior Vice President of Product Management, Shailesh leads the product management team and drives the Qualys product vision helping customers assess and improve their IT, security and compliance posture. Since joining Qualys in 2012, he has worked in various security and compliance roles driving innovative solutions, including remote endpoint protection, endpoint detection and response, and SaaS security. In addition, Shailesh headed engineering, research and product management for Qualys Policy Compliance and File Integrity Monitoring, where he helped customers go beyond compliance to drive their IT GRC objectives. Before Qualys, he focused on security research for Symantec ESM and Compliance solutions. Shailesh holds a master’s in computer applications (MCA) from the Vishwakarma Institute of Technology and has various security certifications including CISA, CRISC, CISM. He is also a regular speaker at industry conferences.

As President and CEO, Sumedh leads the company’s vision, strategic direction and implementation. He joined Qualys in 2003 in engineering and grew within the company, taking various leadership roles focused on helping Qualys deliver on its platform vision. From 2014 to 2021, he served as Qualys’ Chief Product Officer, where he oversaw all things product, including engineering, development, product management, cloud operations, DevOps, and customer support. A product fanatic and engineer at heart, he is a driving force behind expanding the platform from Vulnerability Management into broader areas of security and compliance, helping customers consolidate their security stack. This includes the rollout of the game-changing VMDR (Vulnerability Management, Detection and Response) that continually detects and prevents risk to their systems, Multi-Vector EDR, which focuses on protecting endpoints as well as Container Security, Compliance and Web Application Security solutions. Sumedh was also instrumental in the build-up of multiple Qualys sites resulting in a global 24x7 follow-the-sun product team.

As the Chief Risk Technology Officer at Qualys, Richard helps customers and the broader security community measure, communicate, and eliminate risk. With over 10 years of experience as a CISO, he's led and supported security strategy, operations, and governance across critical infrastructure and cloud-native organizations. Richard has published two books, "How To Measure Anything In Cybersecurity Risk" and "The Metrics Manifesto: Confronting Security With Data." Each provides practical and innovative approaches to quantifying and reducing security risk. His first book is the main curriculum at the US Dept of Defense (DoD) CISO program at Carnegie Mellon University and numerous other institutions of higher education.

Jonathan Trull is a longtime security practitioner and CISO & SVP Security Solution Architecture with over 18 years of experience in the cybersecurity industry and is currently the Senior Vice President of Customer Solutions Architecture and Engineering at Qualys. His career has spanned operational CISO and infosec roles with the State of Colorado, Qualys, Optiv, and Microsoft. While at Microsoft, Jonathan led the Microsoft Detection and Response Team (DART) whose mission was to respond to cyber security incidents around the globe ranging from cyber espionage initiated by nation-state actors to ransomware attacks and included the investigation of and response to the NOBELIUM threat actor campaign which leveraged the SolarWinds supply chain. Jonathan also serves as an advisor to several security startups and venture capital firms and supports the broader security community through his work with the Cloud Security Alliance, Center for Internet Security, and IANS. He is also an adjunct faculty member at Carnegie Mellon University where he mentors and coaches those attending the CISO Executive Education Program. Jonathan is a frequent speaker at industry conferences such as BlackHat, RSA, and SANS and holds several industry certifications including the CISSP, OSCP, CCSP, and GCFA. Jonathan is a veteran of the U.S. Navy finishing his career as a Lieutenant Commander supporting the Information Warfare Domain.

Kunal is currently VP of Product Management for the CyberSecurity Asset Attack Surface Management (CAASM), Web App and API Security product line at Qualys HQ in Foster City, CA. He is Qualys boomerang. He worked at Qualys for 3 years and incubated the XDR product line from inception. Kunal has spent 15+ years working at startups, and big and mid-size companies in cybersecurity, networking, and application security in both product and engineering roles at Juniper Networks, Extreme Networks, Sun Microsystems and Infinera. Prior to re-joining Qualys, Kunal was heading products at Israeli startup in API security and bot management AppSec space.

Himanshu Kathpal is VP, Product Management, Platform and Technologies at Qualys. He has over 13 years of experience in cybersecurity and product management, with a specialization in vulnerability management, remediation, and next-generation endpoint security. Himanshu is passionate about developing security solutions that align with the company's cybersecurity product strategy to meet customer needs, reduce the attack surface, and strengthen the organization's security posture. He holds a master's degree in engineering from D.Y.Patil University, Pune, as well as an MBA in International Business Management from NMIMS, Mumbai.

Eran Livne is Senior Director, Endpoint Remediation at Qualys, leading a team tasked with helping customers improve their security posture through cross-platform vulnerability remediation. He has more than 20-years of product management and computer science experience working in diverse IT and security markets. In 2014, Eran founded mobile security company, LetMobile, acquired by Ivanti. Following the acquisition, he drove Ivanti's enterprise security and endpoint security and management solutions. Eran holds a bachelor's degree in computer science from Tel Aviv University and an MBA in high-tech business administration from Technion - Israel Institute of Technology.

Mukesh Choudhary is the Principal SME for Remediation, CAR, and FIM at Qualys. He focuses on managing security solutions such as 'Patch Management', 'File Integrity Monitoring', and 'Custom Assessment and Response'. Mukesh helps customers assess and improve risk reduction and conducts workshops on risk reduction and file integrity monitoring.

Ashish Bapana leads the Vulnerability Management program at LTIMindtree, bringing over 10 years of experience, with more than 7 years dedicated to cybersecurity. Throughout his career, Ashish has successfully implemented a wide range of cybersecurity technologies and processes, including SIEM, NAC, IPS/IDS, EDR, Vulnerability Management, MDM, Data Classification, and Third-Party Risk Management (TPRM). Ashish holds key industry certifications: - CISSP (ISC2) - ISO27001:2022 Lead Auditor

Abaya is a group manager with Infosys and heads the Information Security Validation Function. Her career expands over two decades in Information Security comprising of vast areas including Vulnerability Management, Compliance Management, Application Security, Secure SDLC, Offensive Security, Security solutions evaluation, process building, evangelization and institutionalization of DevSecOps amongst others. Abaya is passionate about Vulnerability Analytics and its impact in the organization ecosystem, working on building processes and models that can bring about progressive improvements that result in continuous changes to achieve maturity in the system.

Shantanu Bapna is a skilled Cybersecurity Engineer with over 2.5 years of experience at Adani Digital Labs. Specializing in __Cloud Security, Container and Kubernetes Security, Web Application Security__, and __Vulnerability Management__, Shantanu has developed and executed comprehensive security strategies to protect digital environments from emerging threats. He began his cybersecurity journey as an intern at Adani Enterprises Ltd., conducting internal audits based on __ISO 27001__ and __PCI DSS__ standards. Currently, as an __Assistant Manager at Adani Digital Labs__, he focuses on application security, infrastructure protection, penetration testing, and incident response. His expertise in securing cloud environments and Kubernetes clusters using __CIS Benchmarks__ ensures a robust security posture across ADL's infrastructure. Shantanu’s certifications include: __eJPT – Junior Penetration Tester__, INE __Certified Network Security Practitioner__, SecOps Group __Qualys Certified Specialist VMDR__ Shantanu’s dedication to cybersecurity and his leadership in cloud and application security make him a valuable speaker, offering insights into the rapidly evolving security landscape.

Pranjal is a Senior Product Manager at Qualys, focusing on Application Security, including Web Application Security, API Security, and Malware Detection Services. With a passion for developing innovative security solutions, he is dedicated to safeguarding applications from both external and internal threats. He brings extensive hands-on experience across the security landscape, having worked with a range of application security technologies and methodologies.

Major Gaurav Arya (Retd) is an Indian Army veteran, writer and public speaker with twenty-nine years of experience including Indian Army, top multi-national companies, media, consulting and public speaking. Major Arya is the founder of Chanakya Forum, a digital magazine on Geopolitics, National Security and Foreign Affairs. He is the host of the immensely popular conclave The Chanakya Dialogues. He believes that the teachings of the Indian Army are actually very potent and functional management tools, but need to be accurately interpreted for them to be relevant in the corporate sector. This is what he brings to the table, having worked in the corporate sector for 17 years, before joining media in 2017. As a public speaker, he speaks at national and international corporate events, and also institutional events. He talks about leadership, motivation, team building, strategic affairs, national security, capability building and more. He has spoken at various TEDx events and in October 2017, he was invited to speak at the UK Parliament on the Kashmir issue.

As Chief Revenue Officer (CRO), Dino is responsible for driving revenue generation including expanding the worldwide sales and partner organizations, continuing to deliver high levels of customer value, and furthering Qualys’ growth momentum. Dino is a passionate and accomplished leader with over 20 years of experience leading go-to-market teams within cybersecurity and information technology companies. Most recently, Dino served as the CRO for Snyk, an industry leader in developer security, where he was responsible for all customer-facing go-to-market functions. Prior to Snyk, Dino held positions at Mimecast including CRO where he was part of the senior leadership team that scaled the company from $100M to $600M in annual recurring revenue over five years. Earlier in his career, Dino held various senior go-to-market leadership positions at EMC and RSA Security, spanning over 12 years. Dino has a bachelor’s degree in business administration from Wilfrid Laurier University in Waterloo, Canada.

Todd Waskelis is the driving force behind the LevelBlue Cybersecurity Solutions, where he leads a dynamic team dedicated to delivering transformative solutions that enhance client defense and protection. As a key figure in ensuring high-quality, innovative service, Todd plays a crucial role in addressing and overcoming the most critical security challenges faced by clients today. With over 20 years of expertise in the cybersecurity realm, Todd excels in guiding clients through the complexities of the modern cyber landscape. His comprehensive experience covers cyber risk management, threat intelligence, network security, incident response, attack surface management, privacy and data protection, and business resilience. Todd is a highly respected leader, renowned for his extensive consulting and managed security services background, and is known for his ability to consistently achieve exceptional results across diverse business problems and industries. Todd holds a B.S. in Management Information Technology and is a Certified Information Systems Security Professional (CISSP). His influence extends beyond the office as he frequently contributes to security conferences and advisory councils across various sectors, including healthcare and finance, and actively participates in industry forums. He also serves on the board of the New Hampshire Chapter of the Information Systems Security Association (ISSA). In addition to his professional accomplishments, Todd has a rich background in media relations, encompassing radio, press, and television appearances.

In academia, the private sector, the government and the media, Professor Juliette Kayyem is an international leader in crisis management and homeland security. Juliette currently serves as the faculty chair of the Homeland Security, and Security and Global Health Projects at Harvard's Kennedy School of Government. She also serves as a Senior National Security Analyst for CNN, where she has been described as the network’s “go-to” for disasters. A Pulitzer Prize finalist, she is now a contributing writer for The Atlantic and has a weekly security segment on NPR’s Boston station WGBH. Her most recent book, The Devil Never Sleeps: Learning to Live in an Age of Disasters, was described in a New Yorker profile of her as an “engagingly urgent blueprint for rethinking our approach to disaster preparedness and response.” In government, she most recently served as President Obama’s Assistant Secretary for Intergovernmental Affairs at the Department of Homeland Security. Previously, she was Massachusetts Governor Deval Patrick’s Homeland Security Advisor. She is the recipient of many government honors, including the Distinguished Public Service Award, the Coast Guard’s highest medal awarded to a civilian. She is a frequent advisor to major corporations and associations on national and homeland security, planning for a crisis, cybersecurity and resiliency efforts. From 2020-2022, she served as faculty for a joint effort with Bloomberg Philanthropies and Harvard University to train mayors and city leaders for pandemic planning. She is a Senior Advisor to Teneo, a global consulting firm. Juliette was named Inc. magazine’s top 100 Female Founders in 2019 and received the Lifetime Achievement Pinnacle Award from the Greater Boston Chamber of Commerce in 2023.

Sundhar Annamalai is President of LevelBlue, among the largest security service providers globally (previously the cybersecurity services division of AT&T). He brings more than 20 years of experience in technology services and strategic execution to his role, guiding LevelBlue in defining and implementing a strategy that drives product innovation, helps to solve difficult customer challenges, and accelerates revenue and profitability. Sundhar leads product management, engineering, customer operations, consulting, and professional services, focusing on delivering impactful customer outcomes through the development of industry-leading security orchestration and threat detection and response platforms. 

Leading the Vulnerability Management team for Admiral EUI Insurance. Lisa has been working with Admiral for 4 years, is an experienced Technical Security Consultant and been leading with VM function for 2 years. Admiral have undergone significant change in the VM space over this time, implementing enterprise vulnerability management capabilities, adopting a threat led approach to prioritisation and streamlining processes.

As Senior Director of Product Management, Sandeep Potdar leads product strategy and its execution for the Qualys VMDR product portfolio. He is an Engineer-turned-Architect-turned-PM, with close to 2 decades of experience in Enterprise Software and Cybersecurity domains and an extensive consulting experience in various Retail, Banking, Insurance, Travel, and Manufacturing Fortune 500 companies. Prior to joining Qualys, he led Platform and Product Management at Tenable. Before that, he led Product Management at WhiteHat Security and launched several Application Security products. Sandeep has a bachelor’s in computer science engineering from Visvesvaraya Technological University, India and a certificate of business excellence from Haas School of Business, University of California, Berkeley.

Sean leads Anglo American’s Cyber Security Operations team comprising a Security Operations Centre (SOC), Vulnerability Management, Threat Intelligence and Digital Forensics capabilities. Sean has been with Anglo American, a global mining company, for six and a half years and has overseen a period of growth and maturity in Anglo American’s Security Operations capability across its IT and OT environments.

Will North has over 15 years of experience across industry and professional services helping organisations to identify critical information security gaps and implement pragmatic solutions to mitigate risks to an acceptable level. Will joined MHR in 2019 with a wealth of experience working within organisations of all sizes across all industry segments, with particular knowledge within the financial services sector having worked for a number of retail, private and investment banks.

Pablo Quiroga is a Director of Product Management at Qualys, where he is in charge of the product definition, roadmap and strategy for the IT asset visibility & management initiatives. With over 10 years of experience in Enterprise Software and the IT industry, Pablo has helped numerous customers gain significantly better visibility to support data-powered decision that often led to multi-million-dollar savings and risk avoidance.

As the lead officer spearheading critical initiatives within Falkirk Council's ICT landscape, Murat Dilek is an accomplished professional dedicated to shaping and fortifying the organization's digital infrastructure. With a wealth of experience in enterprise network management and Security Operations Centre (SOC) leadership, Murat has consistently demonstrated strategic vision and technical prowess. One of Murat's notable latest achievements has been the design and implementation of the Security Operations Centre (SOC) from the ground up. This involved defining robust processes, selecting and configuring cutting-edge security tools, and leading a team of skilled security analysts. Under their guidance, the SOC has become a linchpin in safeguarding the council's digital assets against internal and external threats, In the realm of cybersecurity, Murat architected and implemented a zero-trust network model, significantly enhancing security posture and mitigating potential threats effectively. Regular risk assessments and vulnerability management are second nature to Murat who addresses and mitigates security issues promptly to ensure the resilience of the ICT infrastructure. Murat, a visionary architect and delivery leader, successfully orchestrated and implemented transformative projects, including Hybrid Cloud, Modern Workspace, SD-WAN, WiFi 6, immutable backup solutions, and data center relocation. He is dedicated to maintaining secure networks and information, gaining PSN Code of Conduct accreditation, and ensuring legal compliance across the organization. Their portfolio extends to full ownership of ICT disaster recovery, mitigating negative impact, and collaborating with corporate integrity and risk groups.

Kevin O'Keefe is a Senior Security Solutions Architect for EMEA North at Qualys, a pioneer and leading provider of disruptive cloud-based IT, security and compliance solutions designed to streamline and consolidate customer’s security and compliance solutions in a single platform. Kevin has extensive experience in the cybersecurity industry, having worked in two FTSE 100 organisations delivering critical Cyber security projects. Kevin joined Qualys in 2019, after successfully deploying a worldwide vulnerability management and remediation program, and has since worked with Qualys’ largest customers to improve theirs.

Clement Fouque is a Principal Information Security Analyst at Elastic, where he leads the vulnerability management program within the InfoSec department. Before joining Elastic, Clément worked as a Microsoft SharePoint Consultant in a consulting company and then at Richemont, the second biggest luxury company in the world. He internally moved to the InfoSec department and worked as an incident response analyst and a red team coordinator.

Lisa Forte is a highly respected Cyber Security Expert with an impressive background in the field. Her career began with her work to combat piracy off the coast of Somalia, followed by a role in UK Counter Terrorism Intelligence, and eventually moving on to one of the UK Police Cyber Crime Units. In 2017, she co-founded Red Goat Cyber Security and has since become one of the most prominent voices in the industry. Lisa is an internationally recognised speaker, named as one of the Top 100 Women in Tech, who is renowned for her expertise in cyber crisis management, ransomware, risk management, insider threats, and social engineering. Her extensive knowledge has helped large companies improve their incident response plans and rehearse for potential cyber-attacks. She has also appeared in documentaries and on BBC’s Newsnight, and is a regular contributor to national news, radio, and newspapers. As a speaker, Lisa is known for her energetic presentations that draw on storytelling and real-life experiences. She has a passion for the “tech for good” philosophy and co-founded the Cyber Volunteers 19 movement in 2020 to help protect hospitals from cyber-attacks during the pandemic. She also co-founded Respect In Security, which aims to combat hate and harassment in the industry. Lisa’s presentations are not limited to cyber security, however. As an experienced climber, mountaineer, and caver, she is able to offer unique perspectives on risk management and motivation. Her dynamic and engaging approach, coupled with her personal experiences and research, make her a highly sought-after keynote speaker, panel chair, and conference chair. Lisa Forte is also an experienced cyber security trainer, capable of effectively communicating her message to all types of audiences.

I am currently Head of IT Security at AB Mauri, a global yeast & bakery ingredients organisation with businesses spanning across 32 countries. My role encompasses the creation, maintenance, and delivery of our global cyber security strategy. Having held various IT roles in my career, in 2018, I embarked on my journey in cyber security. Since then, I have not only enjoyed the challenges and rewards this field offers but also had the privilege of collaborating with an exceptional and supportive community of professionals. I am looking forward to sharing my experiences and insights at this conference.

Chintan Gurjar is an experienced cybersecurity expert with over 12 years of dynamic experience. Chintan specializes in various areas, including vulnerability management, threat intelligence, penetration testing, and attack surface management. He has worked with a diverse range of clients, from agile consulting firms to large-scale retail organizations on a global level. Chintan possesses a wealth of core competencies, including Risk-Based Vulnerability Management, Penetration Testing & Red Teaming, Attack Surface Management, Threat Intelligence, and proficiency in Security Operation Center. He has held esteemed roles such as Threat & Vulnerability Manager at M&S, Global Senior Vulnerability Management Analyst at TikTok, Security Engineering Manager at Tesco, and Cybersecurity Manager at KPMG. Chintan's academic credentials are equally impressive, with an MSc in Computer Security & Forensics from the University of Bedfordshire. He also carries numerous industry certifications, including OSCP, CEH, ACCISO, CTIA, CCFH, CCFA, and SANS MGT516. Apart from being an expert in his field, he has co-trained at the prestigious HackCon Norwegian cybersecurity conference. His contributions to the cybersecurity domain have earned him recognition in multiple Bug-Bounty programs and official CVE entries for identifying key vulnerabilities.

Mike Orosz is Global Chief Information and Product Security Officer at Vertiv accountable for all aspects of global information and product security. He was previously Sr. Director Global Cyber and Physical Security at Citrix and Global compliance Officer for Citi. Mike also served in the US Army focusing on Intelligence, Security and Analytics. He holds a master's degree in information sciences, cybersecurity from PennState University.

Nayeem Islam is the Vice President of Product Management at Qualys for the TotalCloud initiative. Prior to joining he was founder and CEO of Blue Hexagon, a cloud security company that pioneered the use of AI to detect cloud threats. Blue Hexagon is now part of Qualys.

As Senior Manager at LTIMindtree, Ashish leads the organization’s Vulnerability Management program, driving enterprise-wide initiatives to strengthen cyber resilience and risk posture. With over a decade of experience, including more than seven years dedicated to cybersecurity, he has been instrumental in implementing and optimizing a wide range of security technologies and frameworks across global environments. Throughout his career, Ashish has successfully led deployments and integrations of key cybersecurity capabilities such as SIEM, NAC, IPS/IDS, EDR, MDM, Data Classification, and Third-Party Risk Management (TPRM). His strategic focus lies in building scalable, process-driven programs that align technology, people, and governance to reduce organizational risk and enhance compliance maturity. Ashish is a Certified Information Systems Security Professional (CISSP) from ISC² and an ISO 27001:2022 Lead Auditor, underscoring his commitment to advancing security standards and operational excellence within the evolving threat landscape.

Debashish Jyotiprakash is the Managing Director, India and ASEAN for Qualys and is responsible for sales, marketing, channel management and success in the region. Debashish joined Qualys in 2012 and has held various leadership roles at Qualys including Chief Technical Security Officer and managing director for India and Australia & New Zealand. Debashish is a passionate customer advocate. He helps Qualys customers leverage their investment in the Qualys Cloud Platform and its IT, Security and Compliance applications to reduce cyber risk and prepare defenses for emerging cyber threats. Previously Debashish held head of business and sales leadership roles at leading India-based technology companies. He holds a bachelor’s degree in computer science from the Government College Rourkela, and a master’s degree in Computer Science from Utkal University / Ravenshaw College.

As a cybersecurity professional, Mukesh brings deep expertise in vulnerability remediation, patch management, and risk mitigation. With a proven track record in implementing proof-of-concept solutions and developing custom scripts to neutralize zero-day threats, he plays a pivotal role in strengthening enterprise security postures. A passionate researcher and problem-solver, Mukesh has hands-on experience in conducting vulnerability research, fine-tuning File Integrity Monitoring (FIM) systems, and aligning organizational security programs with global standards such as NIST and PCI DSS. Driven by precision and a continuous learning mindset, he approaches cybersecurity with a balance of technical depth and strategic foresight—collaborating closely with teams to transform complex challenges into actionable, scalable security outcomes.

Lavish Jhamb is Solution Architect for Compliance Solutions at Qualys, focused on building security solutions such as 'Custom Assessment and Response' and 'File Integrity Monitoring' and helping customers assess and improve their security and compliance posture. He has over 7 years of experience working on security solutions, regulatory standards, and cyber security frameworks, with thorough understanding of operating systems. Lavish holds a bachelor's degree in computer engineering from the Kurukshetra University Institute of Engineering and Technology and a Post Graduate Diploma in IT Infrastructure, Systems and Security from CDAC Pune.

As Senior Vice President of Product Management, Shailesh leads the product management team and drives the Qualys product vision helping customers assess and improve their IT, security and compliance posture. Since joining Qualys in 2012, he has worked in various security and compliance roles driving innovative solutions, including remote endpoint protection, endpoint detection and response, and SaaS security. In addition, Shailesh headed engineering, research and product management for Qualys Policy Compliance and File Integrity Monitoring, where he helped customers go beyond compliance to drive their IT GRC objectives. Before Qualys, he focused on security research for Symantec ESM and Compliance solutions. Shailesh holds a master’s in computer applications (MCA) from the Vishwakarma Institute of Technology and has various security certifications including CISA, CRISC, CISM. He is also a regular speaker at industry conferences.

As President and CEO, Sumedh leads the company’s vision, strategic direction and implementation. He joined Qualys in 2003 in engineering and grew within the company, taking various leadership roles focused on helping Qualys deliver on its platform vision. From 2014 to 2021, he served as Qualys’ Chief Product Officer, where he oversaw all things product, including engineering, development, product management, cloud operations, DevOps, and customer support. A product fanatic and engineer at heart, he is a driving force behind expanding the platform from Vulnerability Management into broader areas of security and compliance, helping customers consolidate their security stack. This includes the rollout of the game-changing VMDR (Vulnerability Management, Detection and Response) that continually detects and prevents risk to their systems, Multi-Vector EDR, which focuses on protecting endpoints as well as Container Security, Compliance and Web Application Security solutions. Sumedh was also instrumental in the build-up of multiple Qualys sites resulting in a global 24x7 follow-the-sun product team.

As the Chief Risk Technology Officer at Qualys, Richard helps customers and the broader security community measure, communicate, and eliminate risk. With over 10 years of experience as a CISO, he's led and supported security strategy, operations, and governance across critical infrastructure and cloud-native organizations. Richard has published two books, "How To Measure Anything In Cybersecurity Risk" and "The Metrics Manifesto: Confronting Security With Data." Each provides practical and innovative approaches to quantifying and reducing security risk. His first book is the main curriculum at the US Dept of Defense (DoD) CISO program at Carnegie Mellon University and numerous other institutions of higher education.

Jonathan Trull is a longtime security practitioner and CISO & SVP Security Solution Architecture with over 18 years of experience in the cybersecurity industry and is currently the Senior Vice President of Customer Solutions Architecture and Engineering at Qualys. His career has spanned operational CISO and infosec roles with the State of Colorado, Qualys, Optiv, and Microsoft. While at Microsoft, Jonathan led the Microsoft Detection and Response Team (DART) whose mission was to respond to cyber security incidents around the globe ranging from cyber espionage initiated by nation-state actors to ransomware attacks and included the investigation of and response to the NOBELIUM threat actor campaign which leveraged the SolarWinds supply chain. Jonathan also serves as an advisor to several security startups and venture capital firms and supports the broader security community through his work with the Cloud Security Alliance, Center for Internet Security, and IANS. He is also an adjunct faculty member at Carnegie Mellon University where he mentors and coaches those attending the CISO Executive Education Program. Jonathan is a frequent speaker at industry conferences such as BlackHat, RSA, and SANS and holds several industry certifications including the CISSP, OSCP, CCSP, and GCFA. Jonathan is a veteran of the U.S. Navy finishing his career as a Lieutenant Commander supporting the Information Warfare Domain.

Kunal is currently VP of Product Management for the CyberSecurity Asset Attack Surface Management (CAASM), Web App and API Security product line at Qualys HQ in Foster City, CA. He is Qualys boomerang. He worked at Qualys for 3 years and incubated the XDR product line from inception. Kunal has spent 15+ years working at startups, and big and mid-size companies in cybersecurity, networking, and application security in both product and engineering roles at Juniper Networks, Extreme Networks, Sun Microsystems and Infinera. Prior to re-joining Qualys, Kunal was heading products at Israeli startup in API security and bot management AppSec space.

Himanshu Kathpal is VP, Product Management, Platform and Technologies at Qualys. He has over 13 years of experience in cybersecurity and product management, with a specialization in vulnerability management, remediation, and next-generation endpoint security. Himanshu is passionate about developing security solutions that align with the company's cybersecurity product strategy to meet customer needs, reduce the attack surface, and strengthen the organization's security posture. He holds a master's degree in engineering from D.Y.Patil University, Pune, as well as an MBA in International Business Management from NMIMS, Mumbai.

Eran Livne is Senior Director, Endpoint Remediation at Qualys, leading a team tasked with helping customers improve their security posture through cross-platform vulnerability remediation. He has more than 20-years of product management and computer science experience working in diverse IT and security markets. In 2014, Eran founded mobile security company, LetMobile, acquired by Ivanti. Following the acquisition, he drove Ivanti's enterprise security and endpoint security and management solutions. Eran holds a bachelor's degree in computer science from Tel Aviv University and an MBA in high-tech business administration from Technion - Israel Institute of Technology.

Mukesh Choudhary is the Principal SME for Remediation, CAR, and FIM at Qualys. He focuses on managing security solutions such as 'Patch Management', 'File Integrity Monitoring', and 'Custom Assessment and Response'. Mukesh helps customers assess and improve risk reduction and conducts workshops on risk reduction and file integrity monitoring.

Ashish Bapana leads the Vulnerability Management program at LTIMindtree, bringing over 10 years of experience, with more than 7 years dedicated to cybersecurity. Throughout his career, Ashish has successfully implemented a wide range of cybersecurity technologies and processes, including SIEM, NAC, IPS/IDS, EDR, Vulnerability Management, MDM, Data Classification, and Third-Party Risk Management (TPRM). Ashish holds key industry certifications: - CISSP (ISC2) - ISO27001:2022 Lead Auditor

Abaya is a group manager with Infosys and heads the Information Security Validation Function. Her career expands over two decades in Information Security comprising of vast areas including Vulnerability Management, Compliance Management, Application Security, Secure SDLC, Offensive Security, Security solutions evaluation, process building, evangelization and institutionalization of DevSecOps amongst others. Abaya is passionate about Vulnerability Analytics and its impact in the organization ecosystem, working on building processes and models that can bring about progressive improvements that result in continuous changes to achieve maturity in the system.

Shantanu Bapna is a skilled Cybersecurity Engineer with over 2.5 years of experience at Adani Digital Labs. Specializing in __Cloud Security, Container and Kubernetes Security, Web Application Security__, and __Vulnerability Management__, Shantanu has developed and executed comprehensive security strategies to protect digital environments from emerging threats. He began his cybersecurity journey as an intern at Adani Enterprises Ltd., conducting internal audits based on __ISO 27001__ and __PCI DSS__ standards. Currently, as an __Assistant Manager at Adani Digital Labs__, he focuses on application security, infrastructure protection, penetration testing, and incident response. His expertise in securing cloud environments and Kubernetes clusters using __CIS Benchmarks__ ensures a robust security posture across ADL's infrastructure. Shantanu’s certifications include: __eJPT – Junior Penetration Tester__, INE __Certified Network Security Practitioner__, SecOps Group __Qualys Certified Specialist VMDR__ Shantanu’s dedication to cybersecurity and his leadership in cloud and application security make him a valuable speaker, offering insights into the rapidly evolving security landscape.

Pranjal is a Senior Product Manager at Qualys, focusing on Application Security, including Web Application Security, API Security, and Malware Detection Services. With a passion for developing innovative security solutions, he is dedicated to safeguarding applications from both external and internal threats. He brings extensive hands-on experience across the security landscape, having worked with a range of application security technologies and methodologies.

Major Gaurav Arya (Retd) is an Indian Army veteran, writer and public speaker with twenty-nine years of experience including Indian Army, top multi-national companies, media, consulting and public speaking. Major Arya is the founder of Chanakya Forum, a digital magazine on Geopolitics, National Security and Foreign Affairs. He is the host of the immensely popular conclave The Chanakya Dialogues. He believes that the teachings of the Indian Army are actually very potent and functional management tools, but need to be accurately interpreted for them to be relevant in the corporate sector. This is what he brings to the table, having worked in the corporate sector for 17 years, before joining media in 2017. As a public speaker, he speaks at national and international corporate events, and also institutional events. He talks about leadership, motivation, team building, strategic affairs, national security, capability building and more. He has spoken at various TEDx events and in October 2017, he was invited to speak at the UK Parliament on the Kashmir issue.

As Chief Revenue Officer (CRO), Dino is responsible for driving revenue generation including expanding the worldwide sales and partner organizations, continuing to deliver high levels of customer value, and furthering Qualys’ growth momentum. Dino is a passionate and accomplished leader with over 20 years of experience leading go-to-market teams within cybersecurity and information technology companies. Most recently, Dino served as the CRO for Snyk, an industry leader in developer security, where he was responsible for all customer-facing go-to-market functions. Prior to Snyk, Dino held positions at Mimecast including CRO where he was part of the senior leadership team that scaled the company from $100M to $600M in annual recurring revenue over five years. Earlier in his career, Dino held various senior go-to-market leadership positions at EMC and RSA Security, spanning over 12 years. Dino has a bachelor’s degree in business administration from Wilfrid Laurier University in Waterloo, Canada.

Todd Waskelis is the driving force behind the LevelBlue Cybersecurity Solutions, where he leads a dynamic team dedicated to delivering transformative solutions that enhance client defense and protection. As a key figure in ensuring high-quality, innovative service, Todd plays a crucial role in addressing and overcoming the most critical security challenges faced by clients today. With over 20 years of expertise in the cybersecurity realm, Todd excels in guiding clients through the complexities of the modern cyber landscape. His comprehensive experience covers cyber risk management, threat intelligence, network security, incident response, attack surface management, privacy and data protection, and business resilience. Todd is a highly respected leader, renowned for his extensive consulting and managed security services background, and is known for his ability to consistently achieve exceptional results across diverse business problems and industries. Todd holds a B.S. in Management Information Technology and is a Certified Information Systems Security Professional (CISSP). His influence extends beyond the office as he frequently contributes to security conferences and advisory councils across various sectors, including healthcare and finance, and actively participates in industry forums. He also serves on the board of the New Hampshire Chapter of the Information Systems Security Association (ISSA). In addition to his professional accomplishments, Todd has a rich background in media relations, encompassing radio, press, and television appearances.

In academia, the private sector, the government and the media, Professor Juliette Kayyem is an international leader in crisis management and homeland security. Juliette currently serves as the faculty chair of the Homeland Security, and Security and Global Health Projects at Harvard's Kennedy School of Government. She also serves as a Senior National Security Analyst for CNN, where she has been described as the network’s “go-to” for disasters. A Pulitzer Prize finalist, she is now a contributing writer for The Atlantic and has a weekly security segment on NPR’s Boston station WGBH. Her most recent book, The Devil Never Sleeps: Learning to Live in an Age of Disasters, was described in a New Yorker profile of her as an “engagingly urgent blueprint for rethinking our approach to disaster preparedness and response.” In government, she most recently served as President Obama’s Assistant Secretary for Intergovernmental Affairs at the Department of Homeland Security. Previously, she was Massachusetts Governor Deval Patrick’s Homeland Security Advisor. She is the recipient of many government honors, including the Distinguished Public Service Award, the Coast Guard’s highest medal awarded to a civilian. She is a frequent advisor to major corporations and associations on national and homeland security, planning for a crisis, cybersecurity and resiliency efforts. From 2020-2022, she served as faculty for a joint effort with Bloomberg Philanthropies and Harvard University to train mayors and city leaders for pandemic planning. She is a Senior Advisor to Teneo, a global consulting firm. Juliette was named Inc. magazine’s top 100 Female Founders in 2019 and received the Lifetime Achievement Pinnacle Award from the Greater Boston Chamber of Commerce in 2023.

Sundhar Annamalai is President of LevelBlue, among the largest security service providers globally (previously the cybersecurity services division of AT&T). He brings more than 20 years of experience in technology services and strategic execution to his role, guiding LevelBlue in defining and implementing a strategy that drives product innovation, helps to solve difficult customer challenges, and accelerates revenue and profitability. Sundhar leads product management, engineering, customer operations, consulting, and professional services, focusing on delivering impactful customer outcomes through the development of industry-leading security orchestration and threat detection and response platforms. 

Leading the Vulnerability Management team for Admiral EUI Insurance. Lisa has been working with Admiral for 4 years, is an experienced Technical Security Consultant and been leading with VM function for 2 years. Admiral have undergone significant change in the VM space over this time, implementing enterprise vulnerability management capabilities, adopting a threat led approach to prioritisation and streamlining processes.

As Senior Director of Product Management, Sandeep Potdar leads product strategy and its execution for the Qualys VMDR product portfolio. He is an Engineer-turned-Architect-turned-PM, with close to 2 decades of experience in Enterprise Software and Cybersecurity domains and an extensive consulting experience in various Retail, Banking, Insurance, Travel, and Manufacturing Fortune 500 companies. Prior to joining Qualys, he led Platform and Product Management at Tenable. Before that, he led Product Management at WhiteHat Security and launched several Application Security products. Sandeep has a bachelor’s in computer science engineering from Visvesvaraya Technological University, India and a certificate of business excellence from Haas School of Business, University of California, Berkeley.

Sean leads Anglo American’s Cyber Security Operations team comprising a Security Operations Centre (SOC), Vulnerability Management, Threat Intelligence and Digital Forensics capabilities. Sean has been with Anglo American, a global mining company, for six and a half years and has overseen a period of growth and maturity in Anglo American’s Security Operations capability across its IT and OT environments.

Will North has over 15 years of experience across industry and professional services helping organisations to identify critical information security gaps and implement pragmatic solutions to mitigate risks to an acceptable level. Will joined MHR in 2019 with a wealth of experience working within organisations of all sizes across all industry segments, with particular knowledge within the financial services sector having worked for a number of retail, private and investment banks.

Pablo Quiroga is a Director of Product Management at Qualys, where he is in charge of the product definition, roadmap and strategy for the IT asset visibility & management initiatives. With over 10 years of experience in Enterprise Software and the IT industry, Pablo has helped numerous customers gain significantly better visibility to support data-powered decision that often led to multi-million-dollar savings and risk avoidance.

As the lead officer spearheading critical initiatives within Falkirk Council's ICT landscape, Murat Dilek is an accomplished professional dedicated to shaping and fortifying the organization's digital infrastructure. With a wealth of experience in enterprise network management and Security Operations Centre (SOC) leadership, Murat has consistently demonstrated strategic vision and technical prowess. One of Murat's notable latest achievements has been the design and implementation of the Security Operations Centre (SOC) from the ground up. This involved defining robust processes, selecting and configuring cutting-edge security tools, and leading a team of skilled security analysts. Under their guidance, the SOC has become a linchpin in safeguarding the council's digital assets against internal and external threats, In the realm of cybersecurity, Murat architected and implemented a zero-trust network model, significantly enhancing security posture and mitigating potential threats effectively. Regular risk assessments and vulnerability management are second nature to Murat who addresses and mitigates security issues promptly to ensure the resilience of the ICT infrastructure. Murat, a visionary architect and delivery leader, successfully orchestrated and implemented transformative projects, including Hybrid Cloud, Modern Workspace, SD-WAN, WiFi 6, immutable backup solutions, and data center relocation. He is dedicated to maintaining secure networks and information, gaining PSN Code of Conduct accreditation, and ensuring legal compliance across the organization. Their portfolio extends to full ownership of ICT disaster recovery, mitigating negative impact, and collaborating with corporate integrity and risk groups.

Kevin O'Keefe is a Senior Security Solutions Architect for EMEA North at Qualys, a pioneer and leading provider of disruptive cloud-based IT, security and compliance solutions designed to streamline and consolidate customer’s security and compliance solutions in a single platform. Kevin has extensive experience in the cybersecurity industry, having worked in two FTSE 100 organisations delivering critical Cyber security projects. Kevin joined Qualys in 2019, after successfully deploying a worldwide vulnerability management and remediation program, and has since worked with Qualys’ largest customers to improve theirs.

Clement Fouque is a Principal Information Security Analyst at Elastic, where he leads the vulnerability management program within the InfoSec department. Before joining Elastic, Clément worked as a Microsoft SharePoint Consultant in a consulting company and then at Richemont, the second biggest luxury company in the world. He internally moved to the InfoSec department and worked as an incident response analyst and a red team coordinator.

Lisa Forte is a highly respected Cyber Security Expert with an impressive background in the field. Her career began with her work to combat piracy off the coast of Somalia, followed by a role in UK Counter Terrorism Intelligence, and eventually moving on to one of the UK Police Cyber Crime Units. In 2017, she co-founded Red Goat Cyber Security and has since become one of the most prominent voices in the industry. Lisa is an internationally recognised speaker, named as one of the Top 100 Women in Tech, who is renowned for her expertise in cyber crisis management, ransomware, risk management, insider threats, and social engineering. Her extensive knowledge has helped large companies improve their incident response plans and rehearse for potential cyber-attacks. She has also appeared in documentaries and on BBC’s Newsnight, and is a regular contributor to national news, radio, and newspapers. As a speaker, Lisa is known for her energetic presentations that draw on storytelling and real-life experiences. She has a passion for the “tech for good” philosophy and co-founded the Cyber Volunteers 19 movement in 2020 to help protect hospitals from cyber-attacks during the pandemic. She also co-founded Respect In Security, which aims to combat hate and harassment in the industry. Lisa’s presentations are not limited to cyber security, however. As an experienced climber, mountaineer, and caver, she is able to offer unique perspectives on risk management and motivation. Her dynamic and engaging approach, coupled with her personal experiences and research, make her a highly sought-after keynote speaker, panel chair, and conference chair. Lisa Forte is also an experienced cyber security trainer, capable of effectively communicating her message to all types of audiences.

I am currently Head of IT Security at AB Mauri, a global yeast & bakery ingredients organisation with businesses spanning across 32 countries. My role encompasses the creation, maintenance, and delivery of our global cyber security strategy. Having held various IT roles in my career, in 2018, I embarked on my journey in cyber security. Since then, I have not only enjoyed the challenges and rewards this field offers but also had the privilege of collaborating with an exceptional and supportive community of professionals. I am looking forward to sharing my experiences and insights at this conference.

Chintan Gurjar is an experienced cybersecurity expert with over 12 years of dynamic experience. Chintan specializes in various areas, including vulnerability management, threat intelligence, penetration testing, and attack surface management. He has worked with a diverse range of clients, from agile consulting firms to large-scale retail organizations on a global level. Chintan possesses a wealth of core competencies, including Risk-Based Vulnerability Management, Penetration Testing & Red Teaming, Attack Surface Management, Threat Intelligence, and proficiency in Security Operation Center. He has held esteemed roles such as Threat & Vulnerability Manager at M&S, Global Senior Vulnerability Management Analyst at TikTok, Security Engineering Manager at Tesco, and Cybersecurity Manager at KPMG. Chintan's academic credentials are equally impressive, with an MSc in Computer Security & Forensics from the University of Bedfordshire. He also carries numerous industry certifications, including OSCP, CEH, ACCISO, CTIA, CCFH, CCFA, and SANS MGT516. Apart from being an expert in his field, he has co-trained at the prestigious HackCon Norwegian cybersecurity conference. His contributions to the cybersecurity domain have earned him recognition in multiple Bug-Bounty programs and official CVE entries for identifying key vulnerabilities.

Mike Orosz is Global Chief Information and Product Security Officer at Vertiv accountable for all aspects of global information and product security. He was previously Sr. Director Global Cyber and Physical Security at Citrix and Global compliance Officer for Citi. Mike also served in the US Army focusing on Intelligence, Security and Analytics. He holds a master's degree in information sciences, cybersecurity from PennState University.

Nayeem Islam is the Vice President of Product Management at Qualys for the TotalCloud initiative. Prior to joining he was founder and CEO of Blue Hexagon, a cloud security company that pioneered the use of AI to detect cloud threats. Blue Hexagon is now part of Qualys.