Information Security Summit IV Speaker Bios

Alan Paller, Director of Research, SANS
Alan Paller is founder and research director of the SANS Institute, a graduate degree granting college and security training and research institution with more than 135,000 alumni in seventy-two countries. At SANS, he oversees the Internet Storm Center (an early warning system for the Internet), NewsBites, (the semi-weekly security news summary that goes to 210,000 people), and the annual publication of the “Seven Most Dangerous New Attack Vectors” being discovered each year. He leads a global security innovation program that identifies people and practices that have made a measureable difference in cyber risk reduction, and illuminates those innovations so other security practitioners can take full advantage of them to improve security in their enterprises.  He is also one of the founders of the U.S. Cyber Challenge.

He has testified multiple times before both the US Senate and House of Representatives. In 2000 President Clinton recognized his leadership by naming him as one of the initial members of the President’s National Infrastructure Assurance Council.  Under President Bush, the U.S. Office of Management and Budget and the Federal CIO Council named Alan as their 2005 Azimuth Award winner, a singular lifetime achievement award recognizing outstanding service of a non-government person to improving federal information technology. In May of 2010, the Washington Post named seven people as “worth knowing, or knowing about” in cyber security and included Alan on that list.

Earlier in his career Alan helped build a software company, took it public, and merged it into a larger company listed on the New York Stock Exchange. His degrees are from Cornell University and the Massachusetts Institute of Technology.

Abstract: SecurityHeroes
What are the four key controls that actually protect businesses and governments from the advanced persistent threat and most other popular cyber attack vectors?  Do you know? The controls are so effective, that any security officer or consultant who does not implement them first may soon be sued for malpractice.  In this fast-paced briefing, Alan will show you how you can be sure they actually work and what they are.  He’ll also share with you the story of how federal IT security has been transformed over the past few months, and, in particular,  how a security team transformed itself from “compliance nazis” to “security heroes using tools that are freely available.  Finally he’ll show you the key technical skills that are the foundation for effectiveness as cybersecurity professionals and how California (and especially the LA area) provided the catalytic leadership that is now being followed by nearly every other state to identify and develop its young cyber talent.


Marc Maiffret, Chief Technology Officer, eEye Inc.
Marc Maiffret co-founded eEye Digital Security in 1998 and returned to the company in July 2010 as Chief Technology Officer. Marc is an industry expert in network security and has accepted three separate invitations to testify before the United States Congress on matters of national cybersecurity and critical infrastructure protection. Marc famously discovered the first Microsoft computer worm, “CodeRed” and was named one of People Magazine’s 30 People Under 30. He has been featured for cover stories in Details, the Los Angeles Times, Entrepreneur, Inc, and USA Today in addition to numerous television appearances. Prior to returning to eEye, Marc was serving as Chief Security Architect at FireEye.