Home
   Books / Publications
   Membership
   Discussion Forum
   Jobs
   Events
   Contact
   Feedback
   Conferences
   Training


   UserID
  
   Password
  
  
   Forgot password?
   Free Membership


Conferences
 
Keynote Speakers - Bios

Chris Wysopal

Chris Wysopal is lead author of the book "The Art of Software Security Testing," published by Symantec Press, Winter 2006. Chris is also  CTO at Veracode, Inc. His career in the information security industry has spanned over 15 years.  Having held several positions in the industry, while also serving as a regular advisor to various government agencies, he is recognized as an expert in the field of information security. Wysopal also served as vice president of research and development for @stake. In this role, Wysopal managed a product group in developing security tools focused on wireless, infrastructure, and application security.  Working with vendors and the general public, Wysopal was also responsible for managing @stake’s vulnerability research and disclosure process.  Prior to joining @stake, Wysopal was a senior security engineer at GTE Internetworking (formerly known as BBN) and a worked as a software engineer for Lotus Development.

 As a co-founder of the Organization for Internet Safety (OIS), Wysopal works with leading technology vendors, security researchers and consultancies to develop standards for best practices on how the technology industry will report and respond to security vulnerabilities. 

Dr. Omri Bahat

Dr. Omri Bahat, PhD Electrical Engineering and Computer Science, serves as a database expert, responsible for database application development, automatic testing and change management, at large MS-SQL based server environments.

Bahat is a regular presenter in MS-SQL user groups, teaching user groups and interested companies best development, quality assurance, and change management practices. As part of his practical experience in the database field, Bahat has composed a framework and tools for automating database testing, as well as developed many custom database testing solutions.

==========================================================================================================

Expert Faculty:

Cliff Berg operates his own consulting firm, Assured By Design, based in Northern Virginia USA, and does work related to IT governance, assurance, and enterprise architecture. Cliff has recently published High-Assurance Design, which addresses principles and practices for designing reliable and secure software. Cliff has also written books on enterprise Java technology, and was the co-founder and CTO of Digital Focus, a software services company that was an early adopter of agile methods.

Paul Black has nearly 20 years of industrial experience in areas such as developing software for IC design and verification, assuring software quality, and managing business data processing.  He has published in the areas of automatic generation of mutation-adequate software tests, software configuration control, formal methods, software verification, and quantum computing.  He is a widely read member of ACM, IEEE, and the IEEE Computer Society, and has taught
Computer Science classes at Brigham Young University and Johns Hopkins University.  The web site he edits, the on-line Dictionary of Algorithms and Data Structures, http://www.nist.gov/dads is accessed almost 20,000 times a day from all over the world.

Gareth Boulton has been testing software since 1993, focusing almost exclusively on automation of testing for the last few years. This last year a team in which he is involved, launched the first collaborative automation site used by Symantec Corporation, to encourage the growth and visibility of automation within Symantec. He chairs this program called “Automation Central” an effort within Symantec to centralize all test automation efforts. Gareth’s preferred automation tools are shell and Python scripts.

Dale Brenneman is VP of Software Quality Solutions at McCabe and has been in the software development industry for 28 years, and with McCabe Software since 1997. He has served as a manager of development, testing, services, and support organizations, and as a programmer, tester, quality assurance specialist, trainer, and consultant. Mr. Brenneman has worked for the federal government, for a major industry contractor on contracts for NASA, and for a software product vendor. Applications have included communications systems, orbital flight systems, government administrative systems, and multiple development and testing tool products providing source code analysis and test coverage/performance analysis for various languages and platforms, including the commercially available McCabe Integrated Quality (IQ) tool and several federal government tools. Mr. Brenneman has taught training courses and provided presentations on various topics, including structured programming, software optimization, and software analysis and test tool usage. His education includes a degree in mathematics.


 Pravir Chandra is Chief Security Architect at Secure Software http://www.securesoftware.com  His passion is fusing cutting-edge security ideas with the real world through application of common sense. His experience includes design of innovative algorithms to audit code for vulnerabilities, creation of advanced curricula for security training, and workflow development for many security-related activities.
Having previously worked in operational security at AOL for several years, Pravir has considerable experience in managing the complex risks associated with enterprise operations. He served a senior role on the company's incident response team as well as managed a team responsible for critical security infrastructure.
Pravir has published several articles and research papers on various security topics as well as Network Security with OpenSSL, the leading reference book for the world's most popular open-source cryptographic toolkit. Pravir earned a B.S. in Computer Science from Case Western
Reserve University.

Clyneice Chaney, Corporate Quality Manager with Project Performance Corporation brings over 20 years of testing, quality assurance and process improvement experience. Clyneice holds certifications from American Society for Quality as a Certified Quality Manager, Quality Assurance Institute’s Certified Quality Analyst, and Project Management Institute’s Professional Project Manager.  She has participated as an examiner for state quality awards for Georgia and Virginia.  Focusing on process improvement and procedure development in the software testing and quality assurance areas, Clyneice has successfully lead process improvement, methodology development, and reengineering projects for organizations wishing to improve their software development, testing processes, and tool implementation.   

Kiran Chittargi  works as an Architect at Lockheed Martin EIS – Center of Excellence. He has more than 12 years of experience in the software engineering arena, specializing in Internet architectures, client/server solutions, component-based development, service oriented architecture (SOA) and object-oriented technologies, with a particular focus on the enterprise architecture like J2EE and .NET. Kiran has successfully led several software design and development efforts during his career. Kiran is also an Adjunct Faculty at the Department of Computer Science, Johns Hopkins University.

Jonathan Cogley (BS MS) is the founder and CEO of Thycotic Software - a software development company operating in the Washington DC Metro Area with
offices in Vienna, Virginia. Jonathan has worked for many interesting companies over the last decade as a software consultant in both the UK and
the USA.  Test Driven Development (TDD) is the cornerstone of the thycotic approach to software development and the company is committed to innovate
TDD on the Microsoft .NET platform with new techniques and tools. He is an active member in the developer community and speaks regularly at various
.NET User Groups, conferences and code camps across the US. Jonathan is recognized by Microsoft as an MVP for C# and has also been invited to join
the select group of the ASPInsiders who have interactions with the product teams at Microsoft.

Lisa Crispin has been a tester on agile teams which develop web-based applications since 2000.  Previous to that, she has long experience testing and programming on more traditional teams.  Her current team, at ePlan Services Inc. (aka Fast401k), uses Scrum and XP practices. You can often find Lisa at agile- and testing-related conferences, user group meetings and seminars in the U.S. and Europe, helping people discover good ways for agile teams to do testing, and for testers to add value to agile teams. She co-authored Testing Extreme Programming (Addison-Wesley, 2002) with Tip House. She contributes articles related to agile testing to magazines and newsletters such as Better Software, Methods and Tools, Agile Times and Novatica.   Find out more about Lisa’s work (and see pictures of her miniature donkey friends) at http://lisa.crispin.home.att.net. 

Dino A. Dai Zovi is a Principal Member of Matasano Security where he performs ShipSafe product penetration tests for software vendors and DeploySafe third-party software penetration tests for enterprise clients.  Mr. Dai Zovi specializes in product, application, and operating system penetration testing and has done so in his previous roles at Bloomberg, @stake, and Sandia National Laboratories.  He is also a frequent speaker on his computer security research, including
presentations at the BlackHat Briefings, IEEE Information Assurance  Workshop, Microsoft's internal BlueHat Security Briefings, CanSecWest,  and DEFCON. Dino graduated with honors with a B.S. in Computer  Science and a minor in Mathematics from the University of New Mexico.

Bruce Powel Douglass, Ph.D., is the Chief Evangelist for Teleogix Systems and Software Modeling Division (formerly I-Logix), a leading object-oriented and structured systems design automation tool vendor.  He has over 25 years experience designing safety-critical real-time applications in a variety of hard real-time environments ranging from cardiac pacemakers to spacecraft. He is an advisory board member for the Embedded Systems Conference and the UML World Conference, and Software Development Magazine. Bruce is a well-known writer on these topics, having authored twelve books, including "Real-Time UML 3rd Edition: Advances in the UML for Real-Time Systems" (Addison-Wesley, 2004) and "Doing Hard Time: Developing Real-Time Systems with UML, Objects, Frameworks and Patterns" (Addison-Wesley, 1999) and "Real-Time Design Patterns: Robust, Scalable Architectures for Real-Time Systems" (Addison-Wesley, 2002). His new book "Real-Time UML Workshop", a hands-on guide to the application of UML to real-time systems, will appear in the fall of 2006. He worked with other methodologists on the UML specification (both 1.x and 2.0), the "UML Profile for Schedulability, Performance and Time", the SysML specification and other standards within the OMG. He has been a cochair for the Real-Time Analysis and Design Working Group in the OMG standards organization, focusing on the application of UML in real-time and embedded systems.

Elfriede Dustin is on the Board of Directors and Co-Chair of VERIFY 2006. Elfriede is author of the book “Effective Software Testing” and lead author of “Automated Software Testing” and “Quality Web Systems,” books that have been translated into various languages and have sold tens of thousands of copies throughout the world. The latest book she co-authored “The Art of Software Security Testing,” Chris Wysopal, Lucas Nelson, Elfriede Dustin, et al, will be published by Symantec Press in the Fall of 2006. Dustin has also authored various white papers on the topic of software testing, teaches various testing tutorials and is a frequent speaker at various software testing conferences.  In support of software test efforts, Dustin has been responsible for implementing automated test, or has performed as the lead consultant/manager guiding the implementation of automated and manual software testing efforts. Dustin has a B.S. in Computer Science with over 15 years of IT experience and currently works as an independent consultant in the Washington, DC area. You can reach her via her website at www.effectivesoftwaretesting.com or at Elfriede_DustinATverizon.net

Paul Duvall is the CTO of Stelligent Incorporated in Reston, VA which helps companies address software quality with effective developer testing strategies and continuous integration techniques that enable teams to monitor code quality early and often. Paul has over 12 years of software development experience. An architect, developer, and inventor, he has contributed design and development expertise to complex system development efforts in various domains, from military logistics systems to translational medical research to the customization and implementation of software development processes. He contributed to a book on software architecture in 2003 and is currently co-authoring a book on Continuous Integration for Addison-Wesley. He is passionate about improving software quality through automation. He is a co-inventor of a clinical research data management system and method that is patent pending.

Matt Fisher is a Senior Security Engineer for SPI Dynamics, the leader in web application assessment software.  He has assessed and compromised multiple web applications including National Security Information Systems, multi-billion dollar extranets, and more.  He frequently consults to the military, Federal government, and various law enforcement agencies, is a registered subject matter expert for DISA, and has trained penetration tests at several scary agencies. Not just a Hollywood hacker, he performs primary research in his copious spare time and can claim several new exploit and assessment techniques as his own. He has spoken at ShmooCon, the DoD Computer Crime Conference, DallasCon, CSI, MISTI, the Federal Information Superiority Conference, Gartner and countless other conferences.  He is a contributing author to the book titled Google Hacking for Penetration Testers, and is currently working on his own book titled, Web Application Security: A Guide for Developers and Penetration Testers. In addition, Mr. Fisher shares leadership of the Washington DC OWASP chapter.   He likes long walks along the beach and poorly written PHP applications.

Robert L. Galen is a Principal Consultant of RGalen Consulting Group, L.L.C., based in Cary, North Carolina. Bob has held director, manager and contributor level positions in both software development and quality assurance organizations.  He has nearly 25 years of experience working in a wide variety of domains, from hard real-time systems to web based information systems, at companies including Bayer, Bell & Howell Mail Processing, EMC, Lucent, Unisys and Thomson. Since 2001, RGCG has provided consulting and training services targeted toward the softer side of software project challenges and improving team skills to deliver great products. Bob is an active member of ACM, ASQ, IEEE/CS, PMI, QAI and SPIN.  He regularly speaks at international conferences (STAR, Software Development, PSQT/PSTT, Better Software, and QAI) and to local North Carolina organizations on topics related to software development, project management, software testing and team leadership. He is a certified Scrum Master and a member of the Agile Alliance. In 2005 he published the book Software Endgames – Eliminating Defects, Controlling Change and the Countdown to On-Time Delivery with Dorset House. The books’ focus is how to successfully finish your software projects. Bob may be reached directly at – bob@rgalen.com and for more information check – http://www.galen.com

Andrew Glover is the President of Stelligent Incorporated, which helps companies address software quality with effective developer testing strategies and continuous integration techniques that enable teams to monitor code quality early and often. Andrew was the founder of Vanward Technologies, which was acquired by JNetDirect in 2005. He is the co-author of "Java Testing Patterns" and an author for multiple online publications including IBM's developerWorks and Oreilly's ONJava and ONLamp portals. He actively blogs about software quality at thediscoblog.com and testearly.com.

Linda Hayes is the CTO of WorkSoft, Inc., a leading innovator of automated software testing solutions.  She is also the the founder of three software companies including AutoTester, the first PC-based test automation tool. Linda holds degrees in accounting, tax and law, is an award-winning author on software quality, and has been a frequent industry speaker at numerous industry conferences and shows including the Quality Assurance Institute (QAI) 26th Annual Software Testing Conference, the STARWEST, STAREAST and Better Software conferences produced by Software Quality Engineering, the local QAI conferences and meetings for Research Triangle, Northern Ohio, and Atlanta and many others. She has been named as one of Fortune Magazine’s “People to Watch” and one of the “Top 40 Under 40” by Dallas Business Journal.  She is also a regular columnist and contributor to StickyMinds and Better Software magazines, as well as a columnist for Computerworld and Datamation, author of the Automated Testing Handbook and co-editor Dare to be Excellent with Alka Jarvis on best practices in the software industry.  You can contact Linda at lhayes@worksoft.com.

Rick Holmes is an IT professional with over 15 years experience with procurement, implementation, and maintenance of software development/management tools. Holmes has experience on all sides of the tool acquisition from tool implementation to management to sales and post sales.

Paco Hope is a Managing Consultant in Cigital's software security practice and has 12 years of experience in operating system and software security. His security experience includes embedded systems (lottery systems, cell phones, casino gaming devices, smart cards), web portal technology, and software security policy. As a trusted advisor, Mr. Hope has served as a subject matter expert to MasterCard International on security standards and has testified on electronic voting security at therequest of the legislature of the Commonwealth of Virginia. He is co-author of Mastering FreeBSD and OpenBSD Security and several magazine articles published in USENIX ;login: and IEEE Security & Privacy.

Jean James has worked across multiple industries the last couple of decades testing various software products for use by internal groups, external customers, and peers. Test cycles have included full IEEE documentation and processes, through ad-hoc, informal smoke testing, etc.  

Jeremy Kadlec is the Principal Database Engineer at Edgewood Solutions  http://www.edgewoodsolutions.com, a technology services company delivering full
spectrum Microsoft SQL Server solutions. He serves as an "Ask the Expert" at www.SearchSQLServer.com, and delivers frequent presentations at regional SQL
Server User Groups and nationally at SQL PASS. Jeremy is the co-leader of the Northern Virginia SQL Server Users Group http://www.novasql.com . He is the
author of the Rational Guide to IT Project Management and many SQL Server focused white papers. Jeremy holds a Master's Degree in Information Systems
from The University of Maryland, Baltimore County and can be reached at jeremyk@edgewoodsolutions.com.

 Joyce Long has over 20 years of industry experience in all phases of the SLC, with many years of managing risk and testing.  Her background includes both manual and automated testing, project management, process improvement, business analysis, development, databases, networking, and methodology.  She has spoken and trained for most of her career, including multiple sessions at the Mercury user conference. 

Jamie Mitchell is CTO Principal Consultant for Test & Automation Consulting LLC. Jamie Mitchell brings over 25 years of testing experience, both hardware and software, to his test automation company.Mr. Mitchell is a pioneer in the test automation field.  He has been working with a variety of test automation tools since the first Windows tools were released with Windows 3.0.  He has written test tools for several platforms, including Windows, AIX, and AS/400.  In his role as Principal Consultant at Test & Automation Consulting LLC, Jamie Mitchell is responsible for developing and implementing test automation initiatives for a range of clients.  In addition, Mr. Mitchell also provides training, mentoring, and expert technical support.  Jamie is the former Lead Automation Engineer for American Express Distributed Integration Test (lab) / Worldwide, and has successfully architected and implemented test automation projects for many top companies including American Express, Mayo Clinic, IBM AS/400 division, ShowCase Corporation and others.Mr. Mitchell holds a Master of Computer Science degree from Lehigh University in Bethlehem, Pa.  He holds the Certified Software Test Engineer certification from QAI, the Certified Tester, Foundation Level and Advanced Level (Technical Tester) from ASTQB.  He is a charter member of the Austin Workshop on Test Automation, and a regular speaker at several international conferences, including SQE, QAI and PSQT. Jamie can be reached at jamie@go-tac.com

Bill Mosteller has spent his career working with computers.  In the last 15 years, at four different companies, he has created successful automated testing programs where none existed before his arrival.  His early work in automated testing was on IBM mainframes.  Recently, he's been testing Windows applications using Segue's SilkTest.  He's currently doing this for Q.Know Technologies in Reston.  Bill has Bachelor's and Master's degrees in Psychology from the University of Pennsylvania and George Mason University, respectively, and holds the Certificate in Data Processing (CDP).

Carl Nagle of SAS Institute in Cary, NC http://www.sas.com is the lead architect and developer for the opensource SAFSDEV project on SourceForge.  What has become the SAFS Framework began opensource development in 1998 and has been growing rapidly in features and world-wide use ever since.  Carl has over 14 years experience in test automation with SAS, IBM, and other corporate and government agencies. 

Lucas Nelson Lucas Nelson has worked for Symantec for the past 3 years leading test teams engagements in a variety of services including application penetration tests, code reviews, product penetration tests, application design reviews, as well as teaching classes in cyber attacks. He counts several of the top ten banks and investment firms as his clients along with many large software development companies on the west coast. Some notable work includes assessments of electronic voting machines used in the United States and the wireless infrastructure of a stock exchange. He also leads the Application Security Center of Excellence, which focused on developing application security practices and guidelines as well as the training of new hires in the methodology of application testing, inside of Symantec.

Nate Oster is the Quality Manager with Number Six Software's Center for Software Development Innovation, where he helps clients adopt iterative development methods.  He has more than 5 years experience with Unified Process-based test approaches that emphasize continuously measuring progress with tested functionality, high levels of maintainable test automation, and testing as a serious technical discipline.  Nate inspires adopters with a combination of player-coaching and classroom simulations.  He's frequently consulted as an expert in system performance engineering and tuning distributed J2EE applications.  Nate contributes to the open-source Eclipse Process Framework's OpenUP project, focused on agile test processes.  Previous projects include military logistics, clinical healthcare, and banking financial systems.  Nate lives in northern Virginia, and enjoys technical rock climbing, backpacking, and travel, but is easily defeated at all card games.

Andrew L. Pollner is President and founder of ALP International Corporation, a leading organization in the area of test process improvement and in the use of test automation tools.  As an early adopter of test automation and quality assurance tools, Mr. Pollner has built a consulting practice serving major financial, insurance, healthcare, and telecommunications corporations ensuring their successful implementation of test automation tools and surrounding processes.  Mr. Pollner regularly speaks at major national and international testing conferences, including: STAR (Software Testing Analysis & Review), EuroSTAR, USPDI, Mercury Interactive Worldwide, and the National Capital Area Software Testing Forum which he chairs. Additionally, Mr. Pollner has published articles on software testing and automation.

Ramsey Razick in an ASQ Certified Software Quality Engineer and has a Masters Degree in Information Systems with over 20 years experience in Systems Testing. He has successfully lead the implementation of software testing efforts at numerous Fortune 500 companies and is currently a Test Manager for Nortel Government Solutions. Ramsey strongly believes that testers should be involved during the requirements phase, allowing them to understand the business rules behind them. Unless the requirements have been tested and are traceable forwards and backwards the testing effort can be destined for failure.

Greg Robidoux is the president and founder of Edgewood Solutions LLC http://www.edgewoodsolutions.com, a technology services company delivering professional services and product solutions for Microsoft SQL Server. He has authored numerous articles and has delivered presentations at regional and national SQL Server events. Greg contributes articles and tips to SearchSQLServer.com on a regular basis as well as acts as their Backup and Recovery expert.  Greg is also the founder of the NH SQL Sever Users Group http://www.nhssug.org/ 

William A. Rogers, Ph.D., P.E. is the co-inventor of the Adaptive Automated Testing Technique and AberroTest. Bill has over 20 years of software experience. Prior experience includes VP of R+D, VP of Engineering for software development, expert witness testimony in the areas of software patents and intellectual property. Bill has extensive background in a number of programming environments, and has held numerous board positions with Texas software companies.
Prior to venturing out into the business world Bill was an assistant professor in Electrical and Computer Engineering at the University of Texas at Austin where he taught hardware and software design. His research specialty is automated test generation and fault simulation algorithms for integrated circuits.
Bill’s accomplishments include Semiconductor Research Corporation awards for excellence; over 30 scholarly publications; and multiple software and hardware patents. Dr. Rogers is a registered professional engineer in the state of Texas.

Douglas Smith is CEO of Aberro Inc., deploying a totally new method for software testing that does not require scripting or programming.  Smith has
been CEO for three previous high-tech startups, following successful careers with F100 companies including Digital Equipment, Compaq, and EMC. A strong background in sales, marketing, and mergers and acquisitions, Smith is a frequent speaker at business conferences, emphasizing the tactical
implementation that builds successful companies.

‘Dr. Rebecca’ Staton-Reinstein, president of Advantage Leadership, Inc. has been helping companies get results applying the powerful Formal Inspection technique as a practitioner, facilitator and consultant for over 20 years, around the world and in all economic sectors.  She works with IT organizations to improve their ability to align with the business and deliver technical solutions that delight the customer.  She is the author of several resources including: Get Great
Requirements, The Hard Job of Making Software Work and Success Planning.

Christopher Strand has spent the last 14 years in the IT industry with an intense focus on implementing development tool solutions and quality assurance. Currently he assists a large variety of high profile corporations close the gap between their development efforts and software quality, specifically within the area of Security assessment.  Chris’ area of expertise currently focuses on increasing security within .NET based languages by addressing security requirements, security risk analysis, and application security analysis.  Chris has been chiefly involved in evangelizing the concept of application security in development by participating in many keynote addresses and seminars with some of the most powerful corporations in the software industry today.  He currently works with Compuware Corporation in the position of Subject Matter Expert, Security Solutions. 

Mary Romero Sweeney is the author of “A Tester’s Guide to .NET Programming”, and is not a Microsoft employee.  She will guide you through the pros and cons of working in this environment and discuss what testing in .NET environment today means to you, your company, and today’s testing industry.

Robert Turner graduated the University of Alberta's Computing Science program and has been working for Symantec's DeepSight team for the past two years, and has worked as the lead QA for Symantec's DeepSight Extractor, Attack Quarantine System, and @Stake's LoftCrack (now know as Symantec's LC5). He has also worked on Symantec's DeepSight Threat Management System and Alert Services, with a specific focus on QA automation and monitoring tools using Internet Explorer.

Chris Valorose is a Senior Principal SQA Engineer at Symantec with 11 years experience in software quality assurance. He graduated from Merrimack College with a BS in Electrical Engineering.  He is currently responsible for automated testing across multiple enterprise products and mentors many SQA Engineers on automation. He has created an automation framework used in automated testing across the many products.

Hernando Vera is a co-founder of Rule Concepts, LLC, a consulting firm specializing in software development using the Business Rules approach. He has over 20 years of experience with rule-based systems as well as all aspects of the software development process. Hernando is focusing on the challenges of governance, development, and testing of dynamic business logic in support of changing business needs.

Alan White has 8 years experience in information technology as an accomplished software developer and test engineer.  Tasked to spearhead an automated test effort for one of Nielsen Media Research's most critical applications, Mr. White successfully retained interest and commitment from the user community by deploying a product that is intuitive, visually cohesive, easy to maintain, and that ensures quality goals are met.  Now, several project teams within the company are using this test automation approach with favorable results.

 

 

 

 

 

 

 


 
Copyright © 2006 DCTester Portal. All Rights Reserved.