Agenda

11:00 a.m.

Opening Keynote

11:30 a.m.

12:00 p.m.

The Nooks and Crannies of AppSec

12:00 p.m. - 12:00 p.m. ET John Tsangaris

Breaking Into The Cloud

12:00 p.m. - 1:00 p.m. ET Savannah Lazzara and Aaron Martin

12:30 p.m.

Is Your SBOM a Dud or Da Bomb

12:45 p.m. - 1:30 p.m. ET Doug Rogahn

1:00 p.m.

AI for Red Teamers (what it looks like when the matrix actually comes for you)

1:00 p.m. - 2:00 p.m. ET Tim Elrod

Gamification: How to make your TTX's not suck!

1:00 p.m. - 2:00 p.m. ET Sabastian Hague at Hack the Box

1:30 p.m.

Cyber Insurance: Why It's an Assest NOT a Liability in a Cyber Event

1:30 p.m. - 2:15 p.m. ET Dara Gibson

2:00 p.m.

Assessing iOS application

2:00 p.m. - 3:00 p.m. ET Vandan Pathak

The Key to Successful App Sec: Developer Buy-In

2:00 p.m. - 3:00 p.m. ET Eric Kim at Veracode

2:30 p.m.

LOLBins -The Quieter Way

2:15 p.m. - 3:00 p.m. ET Mattia Campagnano

3:00 p.m.

15 minute break

3:30 p.m.

Vertical Risk Reports and You: Practical Applications of Cyber Threat Intelligence

3:15 p.m. - 4:00 p.m. ET Nick Hyatt and Emily Lee

Hacking a Bird

3:15 p.m. - 4:00 p.m. ET Tim Fake

Overcoming your Cyber Risk Silos

3:15 p.m. - 4:00 p.m. ET Alex Babar at Brinqa and Pete Chestna at Checkmarx

4:00 p.m.

How to use AI for decision making for vulnerability remediation planning

4:00 p.m. - 4:45 p.m. ET David Halka

Top Cyber Security Threats to Healthcare Companies and How to Disrupt Them

4:00 p.m. - 5:00 p.m. ET Nikhil Ollukaren

4:30 p.m.

5:00 p.m.

11:00 a.m.

11:30 a.m.

Deliberate Engagements – Using USAF Ops Battle Rhythm for Pen Testing

11:00 a.m. - 11:45 a.m. ET John Quadrino

This Talk Is About Incident Response Processes

11:00 a.m. - 12:00 p.m. ET Curtis Fechner

State of Code Security – The AppSec Maturity Marathon

11:00 a.m. - 12:00 p.m. ET Stan Wisseman at OpenText

12:00 p.m.

Pre-Windows 2000 Backdoors and Bypasses

11:45 a.m. - 12:30 p.m. ET Garrett Foster

Security Risks with Low-Code and No-Code Application Development Platforms

12:00 p.m. - 1:00 p.m. ET Dan Sharp

Challenges in Automatically Testing for API Business Logic Vulnerabilities

12:00 p.m. - 1:00 p.m. ET Nir Meiron at Noname Security

12:30 p.m.

Gaining a Foothold: Penetration Testing as a Second Career

12:30 p.m. - 1:15 p.m. ET William Giles

1:00 p.m.

Ransomware: An Epidemic for the Digital Age

1:00 p.m. - 2:00 p.m. ET Matthew Waddell

Sleeping With One AI Open: An Introduction to Attacks Against Artificial Intelligence and Machine Learning

1:00 p.m. - 2:00 p.m. ET Eoin Wickens at HiddenLayer

The "I" in CTI: "Intelligence" or Just "Information". Re-applying Risk and Fundamentals Back Into Intelligence

1:15 p.m. - 2:00 p.m. ET Aamil Karimi

1:30 p.m.

2:00 p.m.

30 minute break

2:30 p.m.

Ghost in the Machine: Adversarial AI Attacks

2:30 p.m. - 3:30 p.m. ET Nikhil Ollukaren and Timothy Sotack

(Security) Culture Eats Strategy For Breakfast

2:30 p.m. - 3:30 p.m. ET Brendan Collins

The Cyber Security Industry Has a Data Problem

2:30 p.m. - 3:30 p.m. ET Mike Parkin and Tony Taylor at Vulcan at Vulcan

3:00 p.m.

3:30 p.m.

Managing Perspectives for Assessment Reports with Few or Zero Findings

3:30 p.m. - 4:15 p.m. ET Mayank Singh

Do you know what your API is doing?

3:30 p.m. - 4:15 p.m. ET Bryce Harty

Software Composition Analysis: Tools and Techniques

3:30 p.m. - 4:15 p.m. ET Rushyendra Reddy Induri

4:00 p.m.

Don't [You] Forget About [Me]... (or Forgotten Components of a Vulnerability Management Program)

4:15 p.m. 5:00 p.m. ET Vince Pascale

Automating Offensive Security Infrastructure

4:15 p.m. 5:00 p.m. ET Joe Berry

4:30 p.m.

5:00 p.m.

11:00 a.m.

11:30 a.m.

Developers Gone Wild

11:00 a.m. - 11:45 a.m. ET Tim Farley

Optiv Vulnerability Management Maturity Model

11:00 a.m. - 12:00 p.m. ET Luis Castillo

At War With Ransomware

11:00 a.m. - 12:00 p.m. ET David Bonvillain at Halcyon

Current State of Linux Rootkits

11:45 a.m. - 12:30 p.m. ET Phillip Haas

12:00 p.m.

12:30 p.m.

Securing Your AWS Cloud: Best Practices and Pentesting Techniques

12:30 p.m. - 1:15 p.m. ET Prasad Nadkarni

Filter Evasion (Workshop)

12:00 p.m. - 1:00 p.m. ET Tanner Scott

One Piece at a Time: A Guide to Building a CTI Program

12:00 p.m. - 1:00 p.m. ET Nick Hyatt

1:00 p.m.

Business Email Compromise (BEC) & Phishing Investigations in Office365

1:00 p.m. - 2:00 p.m. ET Justin Safa

1:30 p.m.

2:00 p.m.

15 minute break

Closing Keynote: Cyber Insurance - Panacea or a House of Cards?

Bill Young

2:30 p.m.

3:00 p.m.

Frequently Asked Questions

Is there a fee to participate?

By attending the full live event, including keynote, panel discussion & breakout sessions, attendees can earn up to 3 credits. Optiv will submit to ISC(2) on your behalf as long as you provide us with the following credentials: full name & member number. If you need to submit credits to a different organization, a certificate to submit will be available during the virtual event.
How do I earn CPEs for attending?

In libero ex, luctus vel consectetur sit amet, lacinia sed nisi. Phasellus at vulputate augue. Aenean id semper elit, facilisis rutrum libero. Curabitur blandit pretium accumsan. Proin scelerisque purus quam, facilisis tristique lectus elementum interdum. Cras non pharetra massa. Sed quis sodales neque. Fusce consequat eget nibh ut condimentum. Vivamus tempor vitae sapien eget scelerisque.
What time does the event start?

In libero ex, luctus vel consectetur sit amet, lacinia sed nisi. Phasellus at vulputate augue. Aenean id semper elit, facilisis rutrum libero. Curabitur blandit pretium accumsan. Proin scelerisque purus quam, facilisis tristique lectus elementum interdum. Cras non pharetra massa. Sed quis sodales neque. Fusce consequat eget nibh ut condimentum. Vivamus tempor vitae sapien eget scelerisque.
Do I have to attend the entire event?

In libero ex, luctus vel consectetur sit amet, lacinia sed nisi. Phasellus at vulputate augue. Aenean id semper elit, facilisis rutrum libero. Curabitur blandit pretium accumsan. Proin scelerisque purus quam, facilisis tristique lectus elementum interdum. Cras non pharetra massa. Sed quis sodales neque. Fusce consequat eget nibh ut condimentum. Vivamus tempor vitae sapien eget scelerisque.
What can I expect from OptivCon Virtual?

In libero ex, luctus vel consectetur sit amet, lacinia sed nisi. Phasellus at vulputate augue. Aenean id semper elit, facilisis rutrum libero. Curabitur blandit pretium accumsan. Proin scelerisque purus quam, facilisis tristique lectus elementum interdum. Cras non pharetra massa. Sed quis sodales neque. Fusce consequat eget nibh ut condimentum. Vivamus tempor vitae sapien eget scelerisque.

Source Zero Con

This box would be hidden by default but can be used to update attendees on date changes,cancellations and other important bulletins.

Learn Industry Insights

Connect with Technical Peers

Earn CPE Credits

Keynote Speakers

Jason Lewkowicz

Bill Young

Name Here

Meet the Source Zero Con Planning Committee

Name Here

Name Here

Name Here

Name Here

Name Here

Name Here

Name Here

Name Here

Name Here

Name Here

Name Here

Name Here

Name Here

Name Here

Name Here

Name Here

Name Here

Name Here

Name Here

Name Here

Name Here

Name Here

Name Here

Name Here

Name Here

Agenda

11:00 a.m.

Opening Keynote

11:30 a.m.

12:00 p.m.

12:30 p.m.

1:00 p.m.

1:30 p.m.

2:00 p.m.

2:30 p.m.

3:00 p.m.

15 minute break

3:30 p.m.

4:00 p.m.

4:30 p.m.

5:00 p.m.

11:00 a.m.

11:30 a.m.

12:00 p.m.

12:30 p.m.

1:00 p.m.

1:30 p.m.

2:00 p.m.

30 minute break

2:30 p.m.

3:00 p.m.

3:30 p.m.

4:00 p.m.

4:30 p.m.

5:00 p.m.

11:00 a.m.

11:30 a.m.

12:00 p.m.

12:30 p.m.

1:00 p.m.

1:30 p.m.

2:00 p.m.

15 minute break

2:30 p.m.

3:00 p.m.

Source Zero Con Sponsors

Technology Sponsors

Virtual Platform Powered By

Venue

Frequently Asked Questions

This box would be hidden by default but can be used to update attendees on date changes,
cancellations and other important bulletins.