Shubham Shah is a top cybersecurity expert and entrepreneur, known for co-founding Assetnote - a leading attack surface management platform. He's ranked as the #1 bug bounty hunter in Australia for three consecutive years and #27 in the world on HackerOne. Shubham specializes in discovering complex vulnerabilities in enterprise software and engineering security automation.

I am Penetration Tester and Null Bangalore chapter lead as well as Enthusiastic, committed professional with 4+ years of experience in leading, managing and delivering IOT Penetration testing, web application security, Infrastructure penetration testing, thick client Baseline review of security devices.

Jay Turla is a Principal Security Consultant at VikingCloud, and one of the goons of ROOTCON. He has presented at international conferences like ROOTCON, HITCON, Nullcon, DEFCON, etc. He used to work for HP Fortify and Bugcrowd in the areas of appsec. His main interest or research right now is about car hacking and is currently one of the main organizers of the Car Hacking Village of ROOTCON / Philippines which is recognized and supported by the Car Hacking Village community.

Ayoub Fathi is a distinguished professional currently holding the esteemed position of Group Vice President of Information Security and Chief Information Security Officer (CISO) at Noon. His expertise and accomplishments in the field of cybersecurity have garnered him significant recognition, including the prestigious Top CISO Award in 2022.

Phoram Mehta is the CISO for PayPal's Asia-Pacific region. A seasoned professional and technical leader with over two decades in Information Security, Mr. Mehta has been instrumental in building secure technology solutions for multiple companies across a spectrum of sectors including financial services, healthcare, telecommunication, and government in North America and Asia-Pacific regions. Mr. Mehta also oversees PayPal's Technology and Information program for Latin America. He currently serves on the board of Washington DC based Cyber Risk Institute, has served ISACA Singapore as chapter President and advises cybersecurity startups in Singapore, India and US. Mr. Mehta is an active participant in Cybersecurity forums across Asia-Pacific and North America.

Illyas Kooliyankal is an esteemed cybersecurity professional and the Group CEO of CyberShelter, a prominent organization based in the UAE. With an impressive track record of over 25 years in the Information Security Domain, Illyas has played a crucial role in bolstering cybersecurity for major enterprises, government agencies, telecommunication companies, and financial institutions across the UAE. Throughout his career, Illyas has been associated with renowned companies such as ADIB, ADS Securities, ADX, ETISALAT, and CGIS, gaining extensive experience and expertise in the field. His dedication and contributions have earned him well-deserved recognition, including prestigious awards such as the CNME 'Middle East CISO of the Year 2021' and the IDC 'Middle East CISO of the Year 2020.' Beyond his executive responsibilities, Illyas is renowned as an influential keynote speaker in the realm of Cyber Security. His engaging talks and insightful presentations have made him a sought-after expert in the industry, imparting valuable knowledge and best practices to fellow professionals. Furthermore, Illyas is a thought-provoking writer sharing his expertise and perspectives in the cybersecurity field. Through his written works, he contributes to the advancement of the industry and fosters a deeper understanding of the challenges and solutions in the ever-evolving cyber landscape. Illyas's mission revolves around visionary leadership in Cyber Security, Information Security, and Business Continuity. He is committed to utilizing technology and well-defined processes and empowering individuals to enhance resiliency and continuity for businesses, thereby safeguarding them from cyber threats and ensuring their long-term success. In conclusion, Illyas Kooliyankal's extensive experience, accolades, and dedication make him a highly respected figure in the field of cybersecurity. His contributions as an executive, keynote speaker, and writer have positively impacted the cybersecurity community and continue to drive advancements in the industry for a safer digital world.

Accomplished Senior Global Information Security Leader & CISO backed by a strong track record of driving comprehensive, end to end security management across Information, Cyber, Physical, and Operational Security at global organizations such as Ocwen Financial Solutions, Altisource and Wipro. Created, Curated and Conducted cybersecurity trainings and delivered successful programs for education, corporate and government sectors Key Certifications : National Cyber Security Scholar Program – NCIIPC & CERT-IN, Certified Information Security Manager – ISACA, Certified Business Continuity Professional – DRI, Cyber Crime Intervention Officer – ISAC India, Lead Auditor LA 22301 - IRCA from BSI, Certified Payment Card Security Implementer – SISA & NSD Certified Cyber Security Governance Program – ISAC India

Dhiraj is a senior infosec leader, part of the information security assurance function within a large financial institution operating out of the UAE. He is responsible for effectively managing the attack surface management of the organization, ensuring that digital products, IT services and the associated supply chain are assessed from a cyber security perspective and provide a secure banking experience.

Rahul Tyagi is the Co-Founder of Safe Security, a Cyber Risk Quantification and Management platform company. With a Master’s degree in Computer Applications, he founded in Safe Security in 2012. Incubated in IIT Bombay, and backed by Cisco’s former Chairman and CEO John Chambers, Safe Security protects the digital infrastructure of multiple Fortune 500 companies around the world with its cyber risk measurement and mitigation platform called SAFE. Rahul continues to highlight the importance of cyber risk quantification in the ASEAN region, and has been featured in Fortune Magazine’s 40-under-40 list.

Patrick Pitchappa graduated as an Electronics & Communication engineer in 1995. After 2 years in electronics he moved into Information Technology (IT) in 1997. Patrick began his IT career as a Systems and Networks engineer, and now has 28 years of total industry experience covering all aspects of IT Infrastructure & Security. He currently works for the UAE based First Abu Dhabi Bank, as a Vice President in Cybersecurity. Patrick previously worked for 18 years with four banking & financial services giants: BNP Paribas, Société Générale, Goldman Sachs and Visa. Married with three kids, Patrick is an avid sports lover with 19 marathons already under his belt. Patrick and his family are based in Dubai.

Responsible for establishing and maintaining organization's vision, strategy, and program to ensure information assets and technologies are adequately protected. Expertise in risk management, incident response, and governance Identifying, developing, implementing, and maintaining processes across the enterprise to reduce information and information technology (IT) risks.Establish appropriate standards and controls, manage security technologies,  implementation of policies and procedures.

Devesh is an accomplished product security leader with extensive experience in holding information security leadership positions at multiple Fortune 20 companies. With a career spanning nearly two decades, he has excelled in building, leading, and managing teams focused on securing products across the software development life cycle. Early on in his security journey, Devesh actively contributed to the responsible disclosure community, demonstrating his dedication to making the digital world a safer place. He reported critical vulnerabilities in companies like Google, Facebook, Mozilla, Microsoft etc and was in the top 3 Synack Redteam researchers. His deep knowledge and expertise have made him a highly sought-after speaker, regularly sharing his insights and perspectives at various international security conferences like RSA, CONfidence, Rootcon etc. He is also the co-founder of BSides Goa ( 1st edition early next year)

Kamal Sharma is industry veteran with over 25 years of experience in Technology & Cybersecurity domain. He is currently working as Vice President & CISO at ASM Technologies. Prior to this, he has worked in various leadership roles with companies like Wipro Technologies, Singtel Group, Bharti etc in India & Middle East. Kamal holds various cybersecurity certifications like CISSP, CCSP, CRISC etc. and serves on the board of ISC2 Bangalore Chapter. He has been instrumental in driving various community programs for students to prepare them for cybersecurity careers.

Hilal heads the information security practice at Razorpay, working towards the mission of revolutionizing payments for business. With a deep understanding of threat landscapes, risk management, and compliance, Hilal has a proven track record of implementing and maintaining effective security strategies. With over 16+ years of experience, he comes with a strong technical background and expertise in network security, application security, and data privacy. Hilal is poised to lead Razorpay to continued success in the ever-evolving threat landscape. Prior to joining Razorpay, Hilal was SVP and CISO at Dream11 (DreamSports) and CISO at Traveloka, where he was responsible for securing critical infrastructure and sensitive data.

Kartik Shinde, is Partner with EY and leads their Cyber Security Practice for Financial Services. He is a veteran in Cyber Security with more than 20 years of experience in advising & implementing successful Cyber/Information security strategies for large organizations. In the last two decades, he has investigated some of the largest Cyber breaches in financial services sector and has helped organisations recover and re-think their security strategy. His background in offensive security helps clients envisage unknown pitfalls in tech implementations, including the recent world of Web3/Digital assets and blockchains. He has a formal degree in computer science and is certified from SANS Institute - US, on advanced studies in Cyber Warfare and defence strategies. In addition, he also holds other professional certifications like CISSP, MCSE, CCNA, CEH and ISO27001 Lead implementer.

Krish heads Technology and Data science practices at MiQ, a leading programmatic partner within AdTech Domain. He has over 19 years of international experience and is an expert in building global technology teams that deliver highly scalable and reliable applications, from the ground up. At MiQ, his focus is on scaling MiQ Technology in terms of architecture, infra, practices, processes and people. Prior to MiQ, he was at Expedia Group where he led multiple technology teams and was the Site Lead for Expedia Group office in Bangalore. Krish holds a Master's degree in Computer Engineering and a Master's degree in Industrial Engineering from Arizona State University

Minatee Mishra is the Director of Product Security at Philips HealthTech in Bangalore, India. She has over 25 years of experience in the field of software engineering and security. She leads the Security Center of Excellence (SCoE) at Philips, which has achieved the first UL firm registration in the medical industry. She also oversees the efforts to harmonize the SBOM generation, secure cloud applications, implement DevSecOps and follow secure development lifecycle practices. Minatee Mishra is a people-oriented leader who has built and mentored high-performing teams. She is a recognized thought leader who has spoken at various forums such as HIMSS, H-ISAC, RSA, DSCI, Nullcon, ISMG, CSA and more. She is a lifelong learner who has written articles on DevSecOps, healthcare security and other topics for various publications. She received the “Cybersecurity Executive of the Year” award from BSides Bangalore in June 2023. Minatee Mishra holds a Master’s degree in electrical engineering from IIT Kharagpur and a Bachelor’s degree in engineering from NIT Rourkela. She has earned several certifications such as CISSP, GCIH, CEH and CCSK. She has been an advocate of product security at various national and international forums such as HIMSS, RSA, DSCI, Nullcon and more.

Recipient of various industry awards and accolades, Dilip Panjwani is a technologist, strategist, industry thought leader, and sought-after speaker. Currently, as the Global Head of Cybersecurity Practice and CoE at LTIMindtree, Dilip is leading a large team of security experts in building state-of-the-art and innovative cybersecurity solutions to help LTIMindtree customers in their cybersecurity transformation journeys. Prior to his role at LTIMindtree, Dilip was the Chief Information Security Officer (CISO) & IT Controller at erstwhile Larsen & Toubro Infotech Ltd (LTI), where he was responsible for the Enterprise Information Security strategy and Governance program management for LTI and all LTI clients serviced via LTI global delivery Centers. Dilip is an IT and Information security veteran with over two decades of rich and varied experience in the IT & Information Security domains in several industry verticals, both in Indian corporates and large multinationals. A seasoned hands-on leader with expertise and a proven track record of developing and implementing innovative and transformational IT and security programs for organizations across industry verticals and geographies. Dilip applies his wealth of IT, security, risk management, and leadership experience to drive technology programs based on global best practices to deliver continuous improvement, maximize efficiency, and minimize costs. Dilip serves on the advisory board of community-focused organizations such as CyberEdBoard, and Vigitrust. He is also on the client advisory board of several leading OEMs. Dilip holds a master’s degree in Electrical Engineering from George Washington University, Washington DC, USA, and a bachelor’s degree in Electronics & Telecommunications Engineering from Mumbai University, India

Lekshmi is a seasoned Cyber Security professional with over 20 years of experience in the field of Security, Risk and Compliance, Privacy, Data Security and Application Security. Lekshmi has avid consulting experience with global and domestic customers in Energy,Banking and Chemical and Petroleum segments. She is a known for her innovative problem solving, result oriented approach and fearless leadership style. Lekshmi’s journey to the leadership position is the result of her passion for work, leverage the technical abilities of the team to the fullest and willingness to take up newer challenges. She led large security transformations involving complex security requirements in her delivery role and lead teams too 100% growth in less than one year as a delivery leader. She also played key roles in the business growth to double the revenue figures for security business. Lekshmi stands out as a leader with uniqueness is because of her commitment to enable the next generation cybersecurity workforce. A passionate leader and a Cyber security evangelist, Lekshmi was the Chair of the Women in Security Excelling- India Chapter in IBM consisting of 600+ members. This forum aims towards bridging the gender gap in Cyber Security space. She was the Leader of University Relationship- Security across India and is the member in the Board of studies of some of premium engineering colleges. She is one of the founding member and General Secretary of Women in Cyber Security (WiCys) India chapter. She is a regular speaker in renowned universities, active mentor in her current organizations and external forums and also spoken in conferences like DSCI Annual Information security Conference, Executive Women’s Forum and many more. She is also an active member of Anita B.Org and was one of the review committee member for Grace Hopper India Conference 2021. Lekshmi Nair's influence as a woman in various domains has earned her widespread recognition across multiple platforms. Her remarkable achievements have been acknowledged and celebrated in various prestigious publications and awards. In March 2020, she was featured in CISO Mag as one of the Women Achievers, a testament to her significant contributions to her field. Additionally, she was honored with the title of Top 20 Women Influencers in Security by both Security Today and Wosec, highlighting her expertise and impact in the security domain. The Executive Women's Forum also bestowed upon her the Women of Influence Award, acknowledging her as a trailblazer and role model for aspiring women professionals. Moreover, Lekshmi Nair's influence extends to the realm of technology, as she was prominently featured as a Women In Technology Influencer by WeQuity, solidifying her position as an influential and inspirational figure in the tech industry. Through her remarkable achievements and dedication, Lekshmi Nair continues to leave a profound impact on her field and serve as a beacon of empowerment for women everywhere.

Experienced CISO with 15+ years in cybersecurity leadership roles. Demonstrated expertise in developing and implementing robust security strategies, risk management, incident response, and compliance frameworks. Proven track record in protecting organizations from evolving threats, driving cultural change, and building resilient security programs. Strong advocate for collaboration and continuous improvement.

Mr. Bhatnagar, Regional Director, leads the Council’s efforts in increasing adoption and awareness of the PCI Security Standards in India. In this role, Mr. Bhatnagar works closely with the PCI Council Management Team, Payment Brands, Assessors Community, Participating Organization, Government entities and Regulators. Mr. Bhatnagar is an innovative thinker, speaker, television personality, and technical writer and has been often quoted in cybersecurity news stories and has been quoted by news organizations including the BBC, ET Now, CNBC TV 18, Reuters, Economic Times and Times of India.

Satish Kumar Dwibhashi, with over 30+ years of experience in IT & Information Security is currently the Senior Vice-President & Chief Information Security Officer (CISO) at InMobi Group, a AdTech Unicorn. Prior to InMobi Satish has served as SVP & CISO at Wibmo (a PayU FinTech company) for 6 years and with IBM India for close to 5 years as the Compliance Lead - Information Security & Risk Management. He is certified on CISA, CISM, CRISC, CGEIT, CDPSE, ISO 27001 Lead Auditor & Implementer, COBIT 5 Foundation & Implementer, an active Platinum member of ISACA and enjoys coaching and mentoring. He has been actively volunteering for more than a decade and was the Past President at ISACA Bangalore Chapter. He is a regular speaker at various events, forums and provides thought leadership.

Celia Leads a central functional within the security architectural practices that does data driven threat assessments to identify control gaps within the firm’s critical platforms. Prior to this, Celia has lead various portfolios that include Penetration Tests, Secure SDLC, DevSecOps, Threat Modeling, Cloud Security Consultations and Maturity assessments. She has worked extensively in financial services organizations and in health care covering various technologies including block chain, AI/ML and Message Streaming. She has 18+ years of experience in Security Consulting and is a certified cloud security expert and an ethical hacker. She engages with various NGOs and colleges in driving Cyber Security Awareness programs in her pass time.

Godfather Orwa is the remarkable Security Researcher who dedicates their time as a full-time Bug Hunter. He has earned the prestigious title of a Top 5 P1 Warrior on Bugcrowd and triumphed as the Hack Cup Winner in 2022 and 2023. Adding to his achievements, he is also the reigning champion of LevelUpX in 2022 and 2023.

Hacking is an art believes Hussein Daher who have been working in the hacking industry for over 10 years. With a business master's degree, he chose a different path for his life's endeavor. CEO of Web Immunify which provides pentest services, he has submitted over 1000 vulnerabilities over bug bounty platforms, won Vigilante award at H1-2010 event, won best team collaboration at H1-2010, won BugBash best team collaboration, won Intigriti 1337up's competition in May, finished Yahoo Elite top 1 in last cycle, and took down a lot of other challenges. On the other hand, he enjoys traveling and spending time on the African's tropical sea.

André Baptista is a hacker, co-founder and CTO of Ethiack and bug bounty hunter. He is an invited professor at the University of Porto and has won multiple awards while helping enterprises worldwide fix impactful vulnerabilities. This includes critical issues on Shopify, Yahoo, GitHub and many others. André is also a coach for the ECSC Portuguese Team and former captain of the xSTF CTF team.

Bharat Panchal is a prominent industry leader in Cyber Security in India, with 30 years of experience in risk management, mainly in the banking and telecommunication sectors. He is recognized globally as a thought leader and evangelist for enterprise risk, cyber security, and data sovereignty. Bharat has made significant contributions to building a safe and secure digital banking ecosystem in India. At the National Payments Corporation of India (NPCI), where he served as Chief of Risk Management and a founding member for over 8.5 years, Bharat played a critical role in creating a risk culture across the banking ecosystem by designing, implementing, and monitoring risk controls. He led key functions like Enterprise Risk Management, Cyber Security, Compliance, Operational Risk Management, Fraud Management, and AML for NPCI and its entire digital banking ecosystem. Bharat has designed and implemented a robust cyber security framework for every product rolled out by NPCI i.e. RuPay, IMPS, NACH, CTS, BBPS, FasTag, AEPS for Direct Benefit Transfer (DBT) and the most prestigious UPI. He also significantly contributed to defining cyber security frameworks and related controls for RBI, the Government of India, and other regulators. Bharat was instrumental in ensuring that all foreign players connected with NPCI comply with data localization regulations. Bharat has also contributed immensely to several projects with IB, NIA, CBI, Cert-IN, Narcotics Control, FIU India, and almost every state police department in India. Bharat is the original designer of the web portal www.cybercrime.gov.in, which is now managed by MHA and has become a vital resource to fight various cybercrimes in India. Currently, Bharat serves as the Chief Industry Relations & Regulatory Officer for Discover Financial Services, overseeing and monitoring compliance with applicable laws and regulations of India. Before moving to Discover on Oct 21, He was working as a Chief Risk Officer for APAC, Middle East and Africa with FIS Global a Fortune 300 and world's no. 1 fintech supporting banking and payment services across the world. At FIS, he was responsible to ensure risk management & security compliance for their customers across regions. Before joining NPCI, Bharat worked with Kotak Mahindra Bank, Citibank, Reliance Communications, and Tata Telecom. Bharat has received several prestigious awards and recognitions, including the 'Security Leader of the Year' Award in 2014 and 2017 by the Data Security Council of India (DSCI) for his significant contribution to cyber security in the banking sector. The Computer Society of India awarded him the 'Best CRO of the Year' in 2016. He has been conferred with an award in March 2023 by United Nations & ITU jointly for excellent leadership in Cyberspace. Bharat is also a sought-after speaker on worldwide risk management, data sovereignty, and cyber security subjects. He has been part of over 500 conferences in India and 50 international conferences worldwide as a keynote speaker or panellist. He is a visiting faculty for Cyber security at SVPNPA, IDRBT, NIBM, ASCI and many prestigious institutes. Bharat is also serving as a chief mentor for cyber security start-ups and a member of Governing Council of C3I Hub, an Incubation centre at IIT Kanpur. He has been part of many Government of India and RBI committees on cyber security. He has written several articles and papers on cyber security and risk management and is a co-author of 'Data Sovereignty - The Pursuit of Supremacy,' one of the most popular books on data, with 25,000 copies sold so far. He is an MBA and Science graduate in Information Technology. In recognition of his immense contribution to building a safe and secure digital banking ecosystem for India, Bharat was conferred with a 'Doctor of Literature' (D.Litt.) by GNA University, Punjab, on Nov. 22.

Navaneethan Carries a deep passion and love for the cybersecurity space, He is working as a Vice President- Chief Information security Officer & Data Privacy Officer, TataPlay Group, He has extensive 22 years of experience and expertise in areas such as CISO/CIO operation, Strategic Cybersecurity Account Management, Enterprise Security and Risk management, Cyber emerging technology, Cyber Threat Landscape, Hacking and countermeasures, Business development, Cyber security Business Operations, Program Management and People leadership. He is Result oriented and effectual leader with proven ability in driving results to the benefit of clients. He had demonstrated on Launching new services for the various niche cyber security areas. Led a team distributed across global locations pertaining to Cyber Security. Achieving highest level of customer satisfaction, delivering cost effective industrialised delivery as well as quality. Demonstrated on creating a cybersecurity Strategy and road map to achieve client’s business objective by thought leadership. Key speaker in cybersecurity forum & leading university/colleges/ISACA/DSCI/Leading firm/forum in India & across the world. Published several Cyber technical papers in international journals. He has done Diploma in electrical and electronics engineering, Engineering in Electronics and communication, Master in Information communication Engineering, Current pursuing Ph.D.( Cyber security). He is holding 21 Cybersecurity Industry leading certification. Mentoring and coaching Students and employees across different university & Industry. Awarded by DSCI & NASSCOM as Cyber security leader of the year. Awarded , Featured and recognized by several forums and Organization body as best CISO & CIO. He is SIG council Member of NASSCOM’s Cybersecurity Future skill - Govt. of india. Mentoring Many start-up organization & Part of Board of studies across different university. He played vital cyber security role in Xerox, Capgemini, Deloitte, PayU, Groww

Nitesh Surana works as a Senior Threat Researcher with Trend Micro. His passion revolves around Cloud Vulnerability & Security Research, Developer Security, Threat Hunting, building honeypots targeting container environments and finding abuse vectors for cloud services. Previously, Nitesh has been credited for reporting security issues to various companies, startups, and governments. His findings have been recognized by the US Department of Defense, the Zero Day Initiative and his research has been mentioned across ZDNet, BleepingComputer, TheHackerNews, Dark Reading, The Register amongst others. In addition to his previous work in a Managed Security Operations Center and Purple Teaming, he has presented on existing and new research in communities and conferences such as Null/OWASP Bangalore, DecodePH, c0c0n, Security BSides, NDC. Apart from playing with packets and syscalls, Nitesh is found attending concerts and playing music.

Mr. Ashish has had a dynamic and accomplished career in the technology and cybersecurity industry, holding various key roles. Currently, he serves as the Chief Technology Officer at Cogze AI Systems, where he demonstrates exemplary leadership and technical expertise. Prior to this, Mr. Ashish excelled as a Principal Cyber Security Architect at ArmorCode Inc, contributing significantly to fortifying critical systems and data. Notably, he also served as a Cloud Security Architect at Symantec Corp, showcasing his proficiency in securing cloud environments. In his journey, Mr. Ashish has also played pivotal roles as a Project Manager and Associate Technical Manager at HCL Technologies Ltd, skillfully managing projects and showcasing his technical prowess. His contributions as a Network Management Team Member at Cisco Systems and as a Senior Network Security Engineer at IBM India Pvt. Ltd further highlight his extensive knowledge and dedication to network security. Mr. Ashish's career trajectory exemplifies his unwavering commitment and expertise in the technology and cybersecurity domains.

Alex is a cybersecurity professional specializing in VAPT. With a deep understanding of information security principles and emerging cyber threats, Alex works with top-tier organisations in the public and private sector to identify and mitigate vulnerabilities within complex digital infrastructures.Through working with governments & enterprises, Alex develops bespoke strategies and leverages offensive security to conduct comprehensive security assessments in order to provide valuable insights and recommendations to enhance cyber-defenses.

Dr. Abhilasha Vyas is Business Unit Head, Cloud Security & BI at CloudThat Technologies, an executive committee member of Women in Big Data (WiBD) and Gujarat Chapter Lead, infosecgirls, and a Microsoft certified trainer. Her research is focused on Cyber Security and Detection of DDoS attacks. Dr. Vyas has spoken at numerous conferences and delivered cybersecurity awareness sessions to various organizations. She's recognized as a Top Indian Women Influencer in Security 2022 and has received several awards for her contributions in the field.

Milind G. Mungale, started his career in 1987. Since then, he has been working in IT Industry in various capacities. He has completed 36.5 years in Information Technology and Cyber Security. Majority of the experience is in BFSI since, he joined NSDL in September 1996 and has been with the organization for around 27 years. During his tenure with Protean / NSDL, he was heading the Information Security, Cyber Security, Network Security, IT Infrastructure and Data Center functions of the organization. He has set-up ISMS, NextGen Security Operations Center, Compliance Framework for Business Continuity, and Indian Information Technology Law. He has implemented various Information / Cyber Security technologies and practices has been actively contributing to mature the Enterprise Risk Management practices within the organization. He was the Executive Vice President & CISO for Protean before Protean eGov Technologies Limited (formerly NSDL eGov), in later part of 2021, appointed him as Managing Director & Chief Executive Officer (CEO) to fully owned subsidiary company named Protean InfoSec Services Limited. This company was formed to offer Cyber Security Consulting and Advisory Services. He was responsible for operational strategies to effectively carve out a market niche in this space of Cyber / Information Security domain. In the month of June 2023, he has opted to take early retirement from the regular employment. At present he is the Information Technology & Information Systems Advisor to National Securities Depository Limited (NSDL).

Rao Arvind Mallari is Computer Scientist at the Defence Research and Development Organization (DRDO) currently tasked to coordinate with Gujarat University for DIA-SVPCoE(DRDO-Industry-Academia Sardar Vallabhbhai Patel Center of Excellence). With a career spanning 11.5 years, he has made significant contributions to the development of secure operating systems and has excelled in the domain of IT infrastructure compliance and auditing. Rao Arvind Mallari has been an integral part of DRDO's cutting-edge cyber security research and development efforts. His expertise in both Applied Mathematics and Information Security has provided a unique perspective to his work. His proficiency in information security has led to his involvement in the development of highly secure operating systems for sensitive government applications. His contributions to ensuring the confidentiality, integrity, and availability of data in these systems have been paramount in safeguarding national security. In addition to his involvement in secure OS development, Arvind has been instrumental in carrying out comprehensive compliance assessments and audits of IT infrastructure. His meticulous approach and in-depth knowledge have ensured that nation's IT systems adhere to the highest security standards and industry best practices. As coordinator DIA-SVPCoE, he is tasked to interface with academia and various volunteer based forums such as BSIDES, and identify potential areas as well as partners/talent for collaborative research.

Ankita Dhakar is the visionary Co-Founder of Capture The Bug, NZ's First Bug Bounty and Pentesting as a service platform powered by AI. As a cybersecurity influencer and advisor to tech startups in NZ and the U.S., Ankita has fearlessly secured 50+ high-growth tech startups worldwide. Her electrifying presence on esteemed stages like NZ Cyber Security Challenge and Christchurch Hacker Conference leaves audiences in awe. With unwavering passion and expertise, Ankita spearheads innovation, empowers others, and revolutionizes the cybersecurity landscape. She is a trailblazer destined to shape the future.

Information Security Risk Management leader with 17 years of strong experience in efficiently managing Cyber risk for diverse business functions and leading transformation across enterprises.

She is working as an independent Security Consultant & Practitioner for Product Security. Her area of work includes developing & managing large scale Security implementation programs, threat identification, vulnerability assessments & management, building security mindset through trainings & automation with the goal of Building Security Into the application ecosystems. She has an extensive background in offensive security across Vulnerability Assessments and Penetration testing, Red Teaming, Social Engineering, reconnaissance along with experience in Threat Modelling, Design Reviews and Security Code Reviews. She is an OSCP and has spoken/trained at various security conferences such as BlackHat(Primary Trainer, Basic Infrastructure Hacking-2017), speaker- DevSecCon24(keynote), OWASP APAC, Agile India, AllDayDevOps, c0c0n, rootconf & BSidesDelhi and organised villages at DefCon(Recon) and Nullcon(Social Engg.). She started & organised the corporate security conference for Thoughtworks - SecConf in 2021-22. She started & runs the technical security podcast- br3akp0int. She is also on the review board for BSides Singapore , CySEK Marketplace(Karnataka Gov) and NullCon Security Conference, India.

With +15 years of professional experience as a software developer, nowadays I am more on the breaking-things side as a senior security researcher at Char49. I'm an active OWASP volunteer and contributor for more than 10 years now. Among other contributions, I'm OWASP API Security Project and OWASP Go Secure Coding Practices co-Leader. I've presented in several security conferences such as Def Con AppSec Village and BSides. I'm also used to deliver security awareness and training sessions in academia.

Dhruva Goyal, Co-Founder & CEO of BugBase, is a self-taught ethical hacker certified with CEH, OSCP, and OSWE. Under his leadership, BugBase, an Indian-origin bug bounty platform, has scaled globally in just two years, assisting companies in integrating continuous ethical hacking into their SDLC without hassle.

Ebrahem is a Senior Manager at Visa Cybersecurity team, where he is responsible for the security of Visa Tokenization solution. Previously, have worked at HackerOne as part of H1 Triage team, Manager for Deloitte Netherlands Pentest/RedTeam and multiple other previous roles. Speaker at multiple international conferences and TV Guest. Ebrahem is also a Bug Bounty Hunter since 2012 and was ranked as a top security researcher on many bug bounty programs such as Yahoo.

Title : Hunting the Hunters

Description : In this session i will be talking about my research on millions of the compromised devices, for which were published in the Dark Web and other sources. Explaining the root cause of the compromise, researching on compromised Hackers devices, such as bug bounty hunters and demonstrating the results per platform and per country. This is not a traditional 3rd part data leaks but rather the credentials were harvested from the Hackers laptops itself.

Yazad Khandhadia (Yaz) is a cyber security professional with more than 15 years of experience. He was instrumental in creating the DevSecOps culture mindset at Emirates NBD and has successfully embedded guard rails that helped raise developer productivity, ensure adequate security and create products and services that provide a secure and seamless user experience for customers. He also introduced the concept of the Secure Software Factory within Emirates NBD to ensure the security of images and containers deployed in production environments. He is currently working hard on socializing and influencing the high use of Threat Modeling within Agile squads J In his free time teaches Cyber Security to Masters students at Middlesex University, Dubai and is volunteering as an author/contributor to Cloud Security Alliance’s (CSA) Shared Security Responsibility Model (SRRM). As an innovator, he is the inventor of MePay, the person to person payment system used in the ENBD Mobile App that allows sending money to any ENBD customer using only their mobile number; for this he was awarded the ‘Steve Jobs of Innovation’ title during the Innovation hackathon in 2014. Yaz is also a certified Coach and Mentor within Emirates NBD and helps Group HR recruit high potential UAE Nationals for the organization.

Apurva Dalal is a seasoned professional with over 30 years of experience, currently holding the esteemed position of Chief Information Officer at Adani Green Energy Limited and Adani Solar Manufacturing. His expertise spans technology planning, cybersecurity, and strategic leadership across diverse sectors, including Pharma, Manufacturing, EPC, and Renewable Energy. Dalal's visionary approach to digital transformation is evident in his development of IT roadmaps that have led to significant cost savings, while his proficiency in information security, enterprise IT infrastructure, and risk mitigation strategies showcases his comprehensive skill set. As a Certified Chief Information Security Officer, he has consistently driven innovation and operational excellence throughout his distinguished career.

Setu Parimi is Co-Founder & CTO of RiskProfiler.io. He have embarked on a journey in the cybersecurity realm that initially kicked off during my school days as a script kiddie. Over time, this passion evolved into architecting and delivering advanced security solutions for esteemed organizations including Amazon Web Services, HSBC, Barclays, Santander, Time, and Vodafone.

Setu’s engagement extends beyond the corporate landscape. As an active trainer and speaker, I've had the privilege of sharing my knowledge at prestigious conferences such as DEF CON, BlackHat, OWASP, Seasides, and Bsides. In my capacity as CTO at RiskProfiler.io, I take the lead in driving technical innovation, conducting research, and shaping strategic product planning.

His areas of expertise span a wide spectrum, encompassing cloud security, application security, penetration testing, and product security. I'm deeply committed to open-source projects and consider it a privilege to mentor aspiring cybersecurity professionals who are eager to make their mark in the field.

Smith's fascination with computers began at the age of 3, blossoming into a fervent drive to master the realm of cyber security by the time he hit 15. With 9 years of experience, he has meticulously crafted security strategies for global giants, spanning from multi-million dollar MNCs to billion-dollar unicorn companies.As a Virtual Chief Information Security Officer and Security Advisor, he has guided board members across diverse sectors—SAAS products, Logistics, Automobile, EdTech, Pharma, BPOs, Metal & Steel, Oil & Gas—enabling them to fortify assets and navigate compliance challenges seamlessly.

He's the architect behind CyberSmithSECURE, safeguarding corporations and MNCs, ensuring unhindered growth by repelling threats. His track record includes safeguarding over 200 companies in the past 3 years.

Vandana Verma is a Security Leader at Snyk, Podcast host, Diversity and Inclusion Advocate and an International speaker and influencer on a range of themes in Information Security, including Application Security, DevSecOps, Cloud Security and Security Careers. From being the Chair of the OWASP Global Board of Directors to running various groups promoting security to organising conferences to even delivering keynote addresses at several of them, she is engaged continuously and proactively in making the global application security community a better place for individuals, organizations and societies.

A seasoned Security Researcher with a strong background in application security. His current role involves identifying and analyzing potential security threats, as well as implementing effective countermeasures in ultra secure communication solutions.He is dedicated to staying at the forefront of the ever-evolving security landscape.

Title: Hacking into the iOS's VOLTE implementation

Abstract:

In this talk, we will be discussing a critical security vulnerability that has been discovered in the Voice over LTE (VoLTE) interface of iOS devices, including iPhones and Apple Watches. This vulnerability has been present in the iOS operating system since the inception of 4G VoLTE, and we will shed light on the issue, its root cause, and how it arises due to improper implementation of GSMA guidelines, highlighting a design flaw in the implementation of the iOS IMS SIP agent.

We will delve into the technical details of the vulnerability, providing a comprehensive analysis of its impact on iOS devices and the potential risks it poses to users' privacy and security. We will also explore the challenges faced during the discovery and disclosure of the vulnerability to Apple and discuss the response and mitigation measures taken by the company.

Furthermore, we will discuss the lessons learned from this vulnerability, highlighting the importance of adhering to industry standards and best practices in the implementation of communication protocols. We will also provide recommendations for improving the security of VoLTE interfaces in iOS devices and similar systems.

This talk is a must-attend for security researchers, mobile device manufacturers, network operators, and anyone interested in understanding the intricacies of VoLTE security and the implications of design flaws in the implementation of communication protocols in iOS devices. Join us as we uncover the details of this critical security issue and discuss its implications for the iOS ecosystem.

A security researcher previously worked as a cyber security consultant with various consulting firms. I have worked with clients inthe Telecommunication, Media, Technology, Manufacturing and BFSI sectors across South-Asian and Middle Eastern countries.

Title: Hacking into the iOS's VOLTE implementation

Abstract:

In this talk, we will be discussing a critical security vulnerability that has been discovered in the Voice over LTE (VoLTE) interface of iOS devices, including iPhones and Apple Watches. This vulnerability has been present in the iOS operating system since the inception of 4G VoLTE, and we will shed light on the issue, its root cause, and how it arises due to improper implementation of GSMA guidelines, highlighting a design flaw in the implementation of the iOS IMS SIP agent.

We will delve into the technical details of the vulnerability, providing a comprehensive analysis of its impact on iOS devices and the potential risks it poses to users' privacy and security. We will also explore the challenges faced during the discovery and disclosure of the vulnerability to Apple and discuss the response and mitigation measures taken by the company.

Furthermore, we will discuss the lessons learned from this vulnerability, highlighting the importance of adhering to industry standards and best practices in the implementation of communication protocols. We will also provide recommendations for improving the security of VoLTE interfaces in iOS devices and similar systems.

This talk is a must-attend for security researchers, mobile device manufacturers, network operators, and anyone interested in understanding the intricacies of VoLTE security and the implications of design flaws in the implementation of communication protocols in iOS devices. Join us as we uncover the details of this critical security issue and discuss its implications for the iOS ecosystem.

Deepika Kumari, a proficient Offensive Security Engineer, boasts over 8 years of expertise in the realm of information security.

Beyond her current position at PayPal, Deepika's passion extends to fostering a community of security enthusiasts, cultivating like-minded cybersecurity professionals, nurturing emerging talent, and sharing knowledge through a variety of events and workshops.

She holds the role of a chapter lead within the Null Bangalore community (Nullblr). she has made valuable contributions as a speaker at Null Bangalore, as well as serving as a technical resource at Bsides Bangalore.

Aarushi Koolwal is a Cyber Security Consultant at CloudSEK with a dynamic background in cybersecurity spanning two years, encompassing diverse industry sectors. She's known for her strong analytical skills and a good grasp of industry standards.

Aarushi is also a confident public speaker, having given successful talks at events like C0C0n and null meetups. Her ability to communicate complex cybersecurity concepts with clarity and charisma has made her a sought-after speaker in the cybersecurity community. Aarushi is excited to share her insights at the upcoming conference.

Parth Malhotra is a highly accomplished Research Team Lead at ProjectDiscovery.io. With a rich background in cybersecurity, Parth's journey began as an independent security researcher, where he demonstrated exceptional expertise by uncovering and responsibly disclosing critical vulnerabilities within industry giants such as Uber, PayPal, Airbnb, Zomato, and Yahoo. His relentless pursuit of security excellence has made him a respected figure in the field, and he now leads a dedicated team at ProjectDiscovery.io, where they continue to push the boundaries of digital security and threat detection.

Title : CVEs in the Fast Lane: How to Prioritize and Automate What Matters Most

A technology professional with 18+ years of experience that spans across information security, devops, fraud management and building large scale tech platforms

Vaibhav Mahadik is a Cybersecurity Professional, having 15+ years of experience in security operation and compliance. He worked across the private sector and government organizations, helping them to understand the technical aspects of information security. He is leading Cybersecurity Services within ControlCase and providing multiple security services to all customers globally which helped organizations to improve their security posture and maintain multiple compliances.

Binal Patel is a Senior Specialist at SISA, with over five years of specialized experience in Application Penetration Testing and Code Review. In addition to her responsibilities, she is the Regional Lead in the Appsec domain. As a Regional Lead, she oversees cybersecurity initiatives across the organization, focusing on enhancing application and system security. Her expertise extends beyond technical skills to leadership qualities, guiding her team in tackling some of the industry's most challenging security issues. Through her role, Binal has made significant contributions to improving the cybersecurity landscape.

Gunjan Chhillar is a seasoned Cybersecurity with rich industry experience, confident public speaker having given successful talks at multiple events including Microfinance &NBFCs Exhinicum Conference. Her expertise includes Endpoint security, Cloud Security, Data encryption, Cyber risk management. She has worked with various Fortune500 organisations to help them improve their overall cybersecurity risk posture.

Shreyas Dighe leads as the Co-Founder and CEO of SECASURE, a renowned Cybersecurity Solutions Provider based in Indore, India. His strategic vision drives SECASURE's VAPT engagements across the globe. Co-Founded by two brothers - Shreyas & Yuvraj, SECASURE aids clients by bringing in early-visibility on threats & contextually-relevant vulnerabilities that could jeopardise revenue streams, business continuity plans, customer and user data, and cloud infrastructure.

Dr. Lopa Mudraa Basuu - The Clairvoyant - Choreographing Brilliant Cyber Security Compositions for over two decades. Shattering the glass ceiling, her relentless efforts & services in this male dominated field not only made her a globally recognized visionary leader who leads by example but also an inspiration for women to opt cyber as a career & move into the C-Suite. Dr. Basuu has led global inclusive teams in Fortune 100 companies that include Automotive, BFSI, ITES & Manufacturing sectors ((JPMorgan Chase & Co., Nissan Motor Corp. Ocwen, SLK, MetLife, Infosys & PCM Group). She holds a master degree in Information Technology, Doctor of Excellence in (hc) Cyber Risk Management along with required industry certifications including Certified Global CIO from ISB Hyderabad, C|CISO, CRISC, CISM, CDPSE, CHFI, ECSA, CEH, DCPLA, Certified DevSecOps Engineer. She is a mentor, author, international speaker and judge for prestigious awards including – IFSEC Global Security Influencers, Ally of The Year, To 100 CIO, Cyber Security Leadership CXO Security Innovation and Women Leadership & Influencers. She also serves on different advisory boards including CSA Government Affairs Advisory Council, CSA APAC Research Advisory Council, EC Council Global Advisory Board, DLC Global Cyber Security Committee. A long list of accolades - Most Inspiring 10 Digital Leaders of India, Top IT Security Influencers & Community Contributors, Top 7 GRC Professional of the World, 3 Powerful Women In Cybersecurity, CSO 100, Top 100 CISO, CIO Leader Of the Year, The IT Change Maker to name a few.

Dr Deepak Kumar (D3) is Sr. Digital Forensic & Cyber Intelligence Professional. He has been working on several consulting and investigating engagements with organisations such as Academia, Corporates, Law Enforcement Organisations national & international, Government Sectors & PSUs related to Information Security, Security Operation centres, and Capacity Building for Cyber Crime & Digital Forensics domains. He is presently engaged with the Indian Cyber Crime Coordination Centre (I4C) of the Ministry of Home Affairs, New Delhi. He holds professional International certifications and skills in the areas of Operational & Cyber Security, Digital Forensics, Social Media Intelligence, Incident & Response, Blockchain, Industrial Control Systems, Fraud Detection, Counter-Terrorism & National Security, etc.