Talks and Conferences
I am fortunate to travel the world speaking about cybersecurity, cyber policy, technology, and startups. This page includes a list of my upcoming talks and conferences, as well as a record of past talks with links to abstracts, videos, and slides.
To get in touch about speaking at your event, email [email protected].
November 22, 2024
CYBERWARCON (Arlington, VA)
October 22-25, 2024
Saintcon (Provo, UT)
Release The Hounds, Part 3 - History Repeating
June 3-5, 2024
Gartner Risk Summit (National Harbor, MD)
May 30, 2024
Hack The Capitol 7.0 (Washington, DC)
May 8, 2024
RSA Conference (San Francisco, CA)
May 5, 2024
Tongacon (San Francisco, CA) #iykyk
May 4-5 2024
BSides San Francisco (San Francisco, CA)
September 20-23, 2023
LABSCON (Scottsdale, AZ)
September 18-20, 2023
NASS, NASED, and ESRF events (Maclean, VA and Washington, DC)
August 10-13, 2023
DEF CON 31 (Las Vegas, NV)
August 8-9, 2023
BSidesLV (Las Vegas, NV)
August 5-10, 2023
Black Hat USA 2023 (Las Vegas, NV)
June 20-22, 2023
Infosec EU (London, UK)
June 9-10, 2023
Hushcon NYC (New York, NY)
May 12, 2023
B-Sides Knoxville (Knoxville, TN)
Keynote
May 10, 2023
Hack The Capitol (Maclean, VA)
The Unlikely Romance - Critical Infrastucture Edition
April 13, 2023
Security Superstream: Application Security (Virtual)
The Unlikely Romance - 10 Years On
September 24, 2022
Texas Cybersecurity Summit (Austin, TX)
Closing Keynote
September 21, 2022
Labscon (Scottsdale, AZ)
<REDACTED>
September 13, 2022
SANS Institute Webinar
SANS 2022 Top New Attacks and Threat Report w/ John Pescatore, Casey Ellis (Bugcrowd), Daniel Schwalbe (DomainTools)
March 17, 2021
InfosecEU (Manchester. UK)
Panel Discussion
February 18, 2021
SANS Log4J Summit
Keynote w/ Jake Williams
November 9, 2021
Blackhat Europe CISO Summit (London, UK)
Bug bounty or beg bounty?
Slides
November 9, 2021
Australian Control Room Network Association (Melbourne, Australia)
How Hackers are Defending Control Room Networks
Slides
October 7, 2021
tech23 Impact Circles (Virtual)
Cybersecurity is a Team Sport
Video
23 September, 2021
ISF Canadian Chapter (Toronto, Canada)
The Unlikely Romance
Conference
September 10-11, 2021
CornCon 2021 - Iowa, USA (Virtual)
The Unlikely Romance
Conference
May 14, 2021
AusCERT2021 - Gold Coast, Queensland, Australia
Speed Debating Panel (15:45 AEST)
Conference
May 13, 2021
AusCERT2021 - Gold Coast, Queensland, Australia
Inside The Unlikely Romance - Crowdsourced Security from a Financial Services Perspective (13:20 AEST)
Conference
May 13, 2021
AusCERT2021 - Gold Coast, Queensland, Australia
Opening Keynote Panel (09:25 AEST)
Conference
April 25, 2021
The Many Hats Club - IsolationCon 2 - The Second Wave
Keynote: Release The Hounds: Part 2 - 8 Years Is A Long Ass Time
Conference
March 27, 2021
Red Team Village/Hacking Is Not A Crime HackerCon - Virtual
Introduction to Disclose.io and the Current State of Hacker Safety
Conference
Slides
March 6, 2021
Crikeycon - Brisbane, Queensland, Australia
Keynote: Release The Hounds: Part 2 - 8 Years Is A Long Ass Time
Conference
Slides
March 5, 2021
Nullcon - Goa, India (Virtual)
Keynote: The Future of Bug Bounty: 2021 and Beyond
Conference
Slides
February 3, 2021
NASS 2021 Virtual Winter Conference - Washington, DC (Virtual)
Secretary of State Collaboration with Cybersecurity Researchers
Conference
October 30, 2020
AustCyber Cyberweek 2020 - Canberra, Australia (Virtual)
Mythbusting the ‘grey zone’ – The evolution of vulnerability disclosure
Conference
Video
October 29, 2020
Threatpost NOW (Virtual)
How the Pandemic is Reshaping the Bug Bounty Landscape
October 19, 2020
OWASP Global AppSec 2020 - San Francisco, California (Virtual)
Time for a Change: Why It’s More Important Than Ever to Revisit the CFAA
Conference
October 9, 2020
ROOTCON - Manila, Phillipines (Virtual)
KEYNOTE - The Unlikely Romance - Part 2: What Now?
Conference
September 6, 2020
Arab Security Conference 2020 - Cairo, Egypt (Virtual)
Disclose.io - Vulnerability Disclosure and Hacker Safeharbor in 2020
Conference
7 August, 2020 - 14:30PDT
DEF CON Biohacking Village - Las Vegas, Nevada (Virtual)
Medical Device Vulnerability Disclosure
Conference
7 August, 2020 - 11:30PDT
DEF CON Voting Village - Las Vegas, Nevada (Virtual)
Hacking Democracy II: On Securing an Election Under Times of Uncertainty and Upheaval (aka “The Infrastructure Strikes Back”)
Conference
July 21-22, 2020
Techcrunch Early Stage 2020 - San Francisco, California (Virtual)
How to prioritize cybersecurity for your startup
Conference
Slides
July 1, 2020
InnovationBay Australia - Sydney, Australia (Virtual)
Cybersecurity - How Secure Are We?
May 2, 2020
AirGap2020 by Thugcrowd - (Virtual)
Disclose.io - Connecting the Ghosts of Disclosure Past, Present, and Future
Conference
April 14, 2020
vOPCDE #3 - Abu Dhabi, UAE (Virtual)
Panel: Vulnerability Disclosure (Casey Ellis, Costin Raiu, The Grugq)
April 14, 2020
GrimmCon - Maryland, Virginia (Virtual)
Disclose.io - Vulnerability Disclosure and Hacker Safeharbor in 2020
Conference
Slides
April 10, 2020
ComfyCon Australia - Sydney, Australia (Virtual)
KEYNOTE: Disclose.io - Vulnerability Disclosure and Hacker Safeharbor in 2020
Conference
Slides
February 2, 2020
Shmoocon - Washington, DC
Hacking Democracy: On Securing an Election
Conference
October 10, 2019
Hacker Halted - Atlanta, Georgia
KEYNOTE - The Unlikely Romance - Part 2: What Now?
Conference
Slides
September 5, 2019
10th Annual Billington Cybersecurity Summit - Washington, DC
The Next Frontier - Aerospace and Space Cybersecurity Panel
Conference
Video
October 23, 2019
ENISA Summit - Léon, Spain
Bug Bounty as a tool towards a Vulnerability Management Program
Conference
June 6, 2019
cyber:secured Forum - Austin, Texas
The Hacker’s Perspective: Building Cyber Resiliency
Conference
April 13, 2019
MCCA Global TEC Forum - Houston, Texas
Bug Bounties, Ransomware, and Other Cyber Hype for Legal Counsel
Conference
Slides
April 11, 2019
NCSC CyberUK - Manchester, United Kingdom
Bug hunting through crowd sourcing
Conference
November 21, 2018
NBT5 - San Francisco, California
HackerFight - The Full Disclosure Debate
Slides
October 18, 2018
Cyberscoop Cybertalks DC - Washington, DC
Computer Fraud and Abuse Act (CFAA) Panel
Conference
September 27, 2017
Structure Security Conference - San Francisco, California
Why Outside Feedback Makes Your Engineering Team Stronger
Conference
September 26, 2017
SINET61 - Sydney, Australia
SINET Thinks Forward: Human Versus Technology - What’s Next For Bug Bounty Programs
Conference
September 13, 2017
Billington 8th Annual Cybersecurity Summit - Washington, DC
What are the latest cutting edge technologies in cybersecurity and the greatest needs?
Conference
July 27, 2017
BrightTalk - Online
Expert Panel: Bug Bounty Trends and What They Mean
Webinar
July 16, 2017
Bugcrowd LevelUp 0x01 - Online
The State of Bug Bounties & Ask Me Anything
Conference
May 26, 2017
AusCERT2017 - Gold Coast, Australia
An Unlikely Romance: The Current State of Bug Bounties
Conference
March 21, 2017
Salesforce World Tour - Sydney, Australia
Australia’s Changing Startup Environment : Decoding the New Landscape with Salesforce Ventures
Conference
March 16, 2017
Australian Cyber Security Forum - Canberra, Australia
An Unlikely Romance: The Current State of Bug Bounties
Conference
February 23, 2017
USTRANSCOM Cyber Roundtable - Scotts AFB, Illinois
Panel: National Cyber Risks with Bruce Schneier
February 11, 2017
ISSA CISO Forum 2017 - San Francisco, California
KEYNOTE - An Unlikely Romance: The Current State of Bug Bounties
Conference
October 27, 2016
Passcode Security of Things Forum - Washington, DC
How bug bounties can impact critical infrastructure
Conference
October 13, 2016
OWASP AppSec USA (2016) - Washington, DC
Your License for Bug Hunting Season
Conference
October 5, 2015
The 17th Annual AT&T Cyber Security Conference - New York, New York
Building a Bug Bounty Program
Conference
October 2, 2016
Autoblog UPSHIFT - Detroit, Michigan
The Good, The Bad, The Ugly Of Connected Cars
Conference
Autoblog Staff
September 21, 2016
BrightTalk - Online
The Bug Bounty Tipping Point: Strength in Numbers
Webinar
September 13, 2016
Billington 7th Annual Cybersecurity Summit - Washington, DC
Engaging Researchers for Vulnerability Testing
Conference
July 30, 2016
Blackhat CISO Summit - Las Vegas, Nevada
Unpacking bug bounties and vulnerability disclosure
Conference
July 26, 2016
NodeSummit - San Francisco, California
WELCOME TO THE BLUE TEAM! CREATING “OH SHIT” MOMENTS FOR FUN AND PROFIT.
Conference
July 22, 2016
Billington Global Automotive Cybersecurity Summit - Detroit, Michigan
Securing the Car Through Vulnerability Testing and Coordinated Disclosure Programs
Conference
September 23, 2015
OWASP AppSec California - Los Angeles, California
How building a better hacker accidentally built a better defender
Conference
May 20, 2015
Bugcrowd Webinar - Online
The Art & Value of Bug Bounties (with Keren Elezari)
Webinar
April 23, 2015
RSA Conference USA - San Francisco, California
Bug Bounties: Internet Savior Hype or Somewhere Between?
Conference
April 20, 2015
RSA Conference USA Innovation Sandbox - San Francisco, California
Most Innovative Company at RSA Conference
Conference
Video
October 20, 2014
AISA National Conference - Melbourne, Australia
Welcome to the blue team! How building a better hacker accidentally built a better defender.
Conference
September 27, 2014
Derbycon IV - Louisville, Kentucky
How building a better hacker accidentally built a better defender
Conference
July 10, 2014
Converge Conference - Detroit, Michigan
Welcome to the blue team! How building a better hacker accidentally built a better defender.
Conference
Slides
April 8, 2014
SOURCEconf - Boston, Massachusetts
5500 hackers + Your code = ???
Conference
June 5, 2013
LAUNCH Silicon Valley - San Jose, California
Presenting Bugcrowd (Winner: Most Innovative Company)
Conference