Sarah Andrabi
Sr. Security Engineer, Dropbox
Sarah Andrabi is a Security Engineer who began her career at Microsoft in 2015 after graduating with her Master's in CS from University of North Carolina at Chapel Hill. While at Microsoft, Sarah worked on Windows security and Azure security building security services and solutions for cloud scale systems. Sarah has been at Dropbox since 2018, and worked on Detection and Response for cloud, and corporate environments. In her current role at Dropbox, she is exploring the use of machine learning to build security detections.
When: Thursday, October 22. 2:00 - 3:00 pm
Recording: https://youtu.be/UmP7s7FVDpA
Talks: Women in Security and Privacy Panel
Studies show that women represent just 24% of the cybersecurity and privacy workforce. At Stanford, we are constantly working towards building an inclusive and diverse workforce. In this panel, women leaders in security and privacy will share their career journeys including their unique experiences, tips for success, and the challenges they faced and overcame along the way.
This panel is sponsored by Stanford Women in Technology (Stanford WIT).
Panel members: Sarah Andrabi, Dani Brooks, Bhavya Gupta, Pegah Parsi
Facilitated by: Brittany Cripe, program lead, Stanford Women in Technology
Dani Brooks
Privacy Program Manager, Facebook
Dani Brooks is an experienced privacy professional, legal analyst, and program manager. Over the last 10 years she has focused on building privacy compliance programs. Dani is currently a Legal Privacy Program Manager at Facebook. In her current role, she focuses on privacy incident response and ensuring compliance with privacy laws and regulations. Dani was with the Stanford University Privacy Office for four years before joining Facebook in December 2018. She earned her law degree in 2009 and graduated from Syracuse University in 2006.
When: Thursday, October 22. 2:00 - 3:00 pm
Recording: https://youtu.be/UmP7s7FVDpA
Talks: Women in Security and Privacy Panel
Studies show that women represent just 24% of the cybersecurity and privacy workforce. At Stanford, we are constantly working towards building an inclusive and diverse workforce. In this panel, women leaders in security and privacy will share their career journeys including their unique experiences, tips for success, and the challenges they faced and overcame along the way.
This panel is sponsored by Stanford Women in Technology (Stanford WIT).
Panel members: Sarah Andrabi, Dani Brooks, Bhavya Gupta, Pegah Parsi
Facilitated by: Brittany Cripe, program lead, Stanford Women in Technology
Jack Cable
Security Researcher and Student at Stanford University
Jack Cable is a security researcher and student at Stanford University, currently working on election security. Jack is a top ranked bug bounty hacker, having identified over 350 vulnerabilities in companies including Google, Facebook, Uber, Yahoo, and the U.S. Department of Defense. After placing first in the Hack the Air Force challenge, Jack began working at the Pentagon’s Defense Digital Service. Jack was named one of Time Magazine’s 25 most influential teens for 2018. At Stanford, Jack studies computer science and launched Stanford’s bug bounty program, one of the first in higher education.
When: Thursday, October 22. 1:00 - 1:30 pm
Recording: https://youtu.be/QF6nf8kRLx8
Talks: Election Security Amidst a Pandemic
Amidst the COVID-19 pandemic, countless aspects of American life have been impacted, including our elections. Accommodations for the pandemic include an unprecedented shift towards mail-in balloting across the United States, as well as drastically reduced in-person voting options. Elections are forced to operate differently, constrained by health concerns around in-person voting, reduced polling place staff, and massive budget shortfalls. Such large-scale change will necessarily impact election security, as new attack surfaces open due to states relying on rapidly expanded infrastructure. With political polarization at a high, it is crucial that elections remain safe and secure despite the pandemic, and that American citizens believe their elections credible. This talk provides an overview of where election security risks stand amidst the pandemic.
Somalee Datta
Director of Research IT, Technology & Data Solutions, Stanford University
Somalee Datta is a physicist by training and a biotechnologist by profession. Prior to joining Stanford in 2012, she spent a dozen years at various biotechs in the Bay Area. This includes experiences as technology lead at Life Technologies (now Thermo Fisher) and founding team member of Verseon, a drug discovery company. She believes that with the explosion of data in healthcare and with new methods to analyze such large amounts of data, we will see massive changes in how human diseases are addressed via novel drugs, large scale genomics, wearable sensors, and software to tie it all together. Somalee wants to drive part of this revolution.
When: Thursday, October 22. 1:30 - 2:00 pm
Recording: https://youtu.be/qDW3gNjyytQ
Talks: Preserving Patient Data for Biomedical Research
This presentation will discuss state-of-the-art at Stanford and elsewhere in privacy preserving techniques for secondary use of patient data in biomedical research.
Gerhard Eschelbeck
Former Vice President of Security and Privacy Engineering, Google
After 25 years in the security industry, Gerhard Eschelbeck recently retired from Google, where he was Vice President Security and Privacy Engineering. He was leading the teams that ensure data and systems security, as well as user privacy. Gerhard has a passion for championing new technologies and is a trusted advisor and board member to several early stage startup companies. He published the “Laws of Vulnerabilities” and is one of the inventors of the Common Vulnerability Scoring System (CVSS), and holds numerous patents in the field of managed network security. Prior to joining Google, Gerhard was CTO and Senior Vice President at Sophos and Qualys, and served in senior product and technology roles at companies including Network Associates and McAfee. Gerhard has a Ph.D in computer science from University Linz, Austria.
When: Monday, October 19. 2:00 - 3:00 pm
Recording: https://youtu.be/Noaup3b4Dpw
Talks: Fireside chat
FBI Cyber Special Agent
When: Monday, October 19. 1:30 - 2:00 pm
Talks: Cybersecurity Trends in Silicon Valley
Andrew Grotto
Director, Stanford Program on Geopolitics, Technology and Governance, Stanford University
Andrew Grotto is the founding director of the Program on Geopolitics, Technology and Governance at the Stanford Cyber Policy Center; William J. Perry International Security Fellow at the Freeman Spogli Institute for International Studies; and a Visiting Fellow at the Hoover Institution. He also serves as faculty lead for the Cyber Policy and Security specialization in Stanford’s Ford Dorsey Master’s in International Policy Studies program. Before coming to Stanford in 2017, Grotto held a variety of senior positions in the executive and legislative branches of the U.S. government, most recently as the Senior Director for Cyber Policy on the National Security Council at the White House.
When: Thursday, October 20. 2:30 - 3:00 pm
Recording: https://youtu.be/FJSVBhLRbpI
Talks: China, Data Protection and Other Cybersecurity Policy Priorities for the Next Administration
Grotto will examine the past and future of U.S. cybersecurity policy, from defense to offense, and talk about what can be done in a second Trump term or a first Biden term to support American foreign policy and economic interests.
Bhavya Gupta
Information Security Officer, Stanford University
Bhavya began her career at Stanford in 2016 after completing her master's in Cyber Security Engineering at the University of Southern California. At Stanford, Bhavya is a part of the consulting team and focuses on vulnerability management, web application security and incident response.
When: Thursday, October 22. 2:00 - 3:00 pm
Recording: https://youtu.be/UmP7s7FVDpA
Talks: Women in Security and Privacy Panel
Studies show that women represent just 24% of the cybersecurity and privacy workforce. At Stanford, we are constantly working towards building an inclusive and diverse workforce. In this panel, women leaders in security and privacy will share their career journeys including their unique experiences, tips for success, and the challenges they faced and overcame along the way.
This panel is sponsored by Stanford Women in Technology (Stanford WIT).
Panel members: Sarah Andrabi, Dani Brooks, Bhavya Gupta, Pegah Parsi
Facilitated by: Brittany Cripe, program lead, Stanford Women in Technology
Christian Hamer
Chief Information Security Officer, Harvard University
Christian Hamer is the Chief Information Security Officer at Harvard University. Christian leads the University’s information security program, which includes oversight of the University-wide information security policy. His team provides security education and awareness across Harvard, ensures compliance with relevant regulatory obligations, and manages the University’s information security operations. Prior to being named CISO in 2013, Christian worked in several information security roles at the University. Before coming to Harvard in 2007, Christian worked in Information Security and other Information Technology roles from software development to systems and network administration.
When: Wednesday, October 21. 1:00 - 2:00 pm
Recording: https://youtu.be/CdgIFiuH95U
Talks: CISO Panel
Daniel Howerton
Sr. Threat Analyst at Proofpoint
Danny is a Sr. Threat Analyst at Proofpoint. While there is no specific day-to-day, the main responsibilities are analyzing data produced from the TAP sandbox and interfacing/interacting with Proofpoint customers in regards to threats and threat data seen by Proofpoint customers globally, vertically, or individually. Danny and his team are responsible for tracking and documenting daily malware campaigns, malware used by malicious actors, actor tracking/profiling, and general threat research to better protect Proofpoint customers.
When: Tuesday, October 20. 1:00 - 2:00 pm
Recording: https://youtu.be/yK84D8d7w0s
Talks: Email Threat Landscape
Techniques are constantly being tweaked by attackers to not only bypass common security controls but to increase their return during campaigns. This talk will cover the biggest trends that Proofpoint is seeing when it comes to Threat Actor TTP’s (Tactics, Techniques, and Procedures) ranging from small time actors to advanced nation state groups. These techniques are not always technical in nature and very often employ social engineering in order to convince a target to perform some action for the threat actor which often leads to compromise.
Cathy Hubbs
Associate Vice President and Chief Information Security Officer at American University
Cathy Hubbs is American University’s first chief information security officer. She is responsible for identifying areas of risk and shaping the University's information security strategy, architecture, and vision. She has a team of incredible engineers that make her look good. Cathy is an active mentor and volunteer in organizations that focus on the development of Security Professionals. She was American University's first Frye Leadership Institute Scholar in 2009, is a Certified Information Systems Security Professional and holds a number of other security credentials.
When: Wednesday, October 21. 1:00 - 2:00 pm
Recording: https://youtu.be/CdgIFiuH95U
Talks: CISO Panel
Jason Lee
CISO, Zoom Video Communications
Jason Lee is the Chief Information Security Officer at Zoom with 20 years of experience in technology, with a specialization in information security and operating mission critical services. He was recently the Senior Vice President of Security Operations at Salesforce where he was accountable for the global organization delivering critical end-to-end security operations to customers and employees including company wide network and system security, incident response, threat intel, data protection, vulnerability management, intrusion detection, identity and access management, and the offensive security team. Prior to Salesforce, he held the position of Principal Director of Security Engineering for the Windows and Devices division in Microsoft with the charter of protecting the online services of Windows Update, XBOX live, and the Microsoft online store. He was also the Senior Director of Developer Services where he was responsible for the design and management of the mission critical PKI for all products across Microsoft. This included cryptographic services in products such as Windows and SQL Server, and cloud services such as Azure and Microsoft 365. Additionally, Jason was responsible for the codesigning and anti-malware services supporting Microsoft in that role.
When: Wednesday, October 21. 2:00 - 3:00 pm
Recording: https://youtu.be/wrVvnoJkvuA
Talks: A New Era in Cybersecurity: Navigating Through a Global Crisis
Zoom has been on an incredible journey, as people around the world have now come to rely upon its technology. Last April, the company peaked at over 300 million daily participants, free and paid, up from 10 million in December 2019. As a result, Zoom had to quickly scale its infrastructure to support this new demand, while also battling new security and privacy challenges. In this session, Zoom CISO Jason Lee will share insights into how the company addressed these challenges, and maintained the security and privacy of its customers.
Ashley Lippert
Director of the Student Services, Stanford University
Ashley Lippert was appointed as Director of the Student Services Center in September 2018. After moving to the Bay Area in 2010 from Toronto Canada to pursue her Masters of Higher education at Santa Clara University, Ashley landed an internship at the FARM in Student Activities and Leadership and fell in love with Stanford. Ashley also worked in the Office of Community Standards and for the Dean of Students before officially joining the Student Services Center as a Specialist. Eventually, Ashley went onto the role of Associate Registrar for Academic Records & NCAA Certification Officer before taking the helm at the Student Services Center. Ashley has a strong passion for working with all students and the dedicated staff at the Student Services Center.
Fun Fact: Ashley remains loyal to all Toronto sports teams particularly the Maple Leafs and the Raptors!
When: Tuesday, October 20. 2:00 - 2:30 pm
Recording: https://youtu.be/kHyAFeFY3NQ
Talks: The FERPA Conundrum: Challenges in complying with an analog law in a digital world
Johanna Metzgar
Associate Vice Provost for Student and Academic Services and University Registrar, Stanford University
Johanna Metzgar joined Stanford as Associate Vice Provost for Student and Academic Services and University Registrar in May 2018. In her role, Johanna not only leads the Registrar's Office, she also oversees the Bechtel International Center, Graduate Admissions, Student Financial Services, Student Information Systems and the Student Services Center.
Before joining Stanford, she served as associate registrar at the University of California, Berkeley, a role she held since 2006. She brought to Stanford more than 20 years of combined experience in student services at Cal as well as Columbia University. In her previous roles, Johanna streamlined and improved a wide range of academic and administrative processes. She is deeply committed to student success and to the work of creating systems that can transform the ways students explore courses and design their academic paths. Johanna earned a master’s degree in public administration from Columbia and holds a bachelor’s degree in communications with a minor in journalism from San Francisco State University.
When: Tuesday, October 20. 2:00 - 2:30 pm
Recording: https://youtu.be/kHyAFeFY3NQ
Talks: The FERPA Conundrum: Challenges in complying with an analog law in a digital world
Pegah Parsi
Campus Privacy Officer, UC San Diego
Pegah is the campus privacy officer at UC San Diego where she spearheads the privacy and data protection efforts for the research, educational, and service enterprise. She manages a complex portfolio of privacy initiatives related to employees, students, applicants, alumni, and research participants and provides guidance on the GDPR, FERPA, HIPAA, California privacy laws, and research privacy/Common Rule. She provides thought leadership on privacy values, ethical frameworks, and philosophy. Her day may involve anything from a consult on license plate readers to research involving smart devices to using predictive analytics to support student success.
Prior to San Diego, Pegah was a privacy manager at Stanford University, focusing on medical studies and international collaborations. Pegah is an attorney and holds an MBA. In her spare time, she advises clients on immigration and asylum matters. She is a Veteran, who, among other things, was the Honor Grad of Army Truck Driver school!
When: Thursday, October 22. 2:00 - 3:00 pm
Recording: https://youtu.be/UmP7s7FVDpA
Talks: Women in Security and Privacy Panel
Studies show that women represent just 24% of the cybersecurity and privacy workforce. At Stanford, we are constantly working towards building an inclusive and diverse workforce. In this panel, women leaders in security and privacy will share their career journeys including their unique experiences, tips for success, and the challenges they faced and overcame along the way.
This panel is sponsored by Stanford Women in Technology (Stanford WIT).
Panel members: Sarah Andrabi, Dani Brooks, Bhavya Gupta, Pegah Parsi
Facilitated by: Brittany Cripe, program lead, Stanford Women in Technology
David Sherry
Chief Information Security Officer, Princeton University
David Sherry leads the Information Security Office at Princeton University, which has responsibility for security architecture, engineering, operations, risk assessment, compliance, business continuity, disaster recovery, and awareness and training. David has over 25 years of experience in information technology, with the last 20 solely focused on security. He led security missions in several verticals before arriving in higher education twelve years ago. David has an MBA and two security certifications, and is an active participant in the nationwide higher ed security discussion. He and his wife, lifelong residents of New England, moved to the Princeton area in 2016. David continues to work hard to teach his staff the Boston accent.
When: Wednesday, October 21. 1:00 - 2:00 pm
Recording: https://youtu.be/CdgIFiuH95U
Talks: CISO Panel
Karl Scheuerman
Principal Researcher Falcon OverWatch, CrowdStrike Inc.
Karl Scheuerman is a Principal Researcher for OverWatch, which is CrowdStrike’s managed threat hunting service. He began his career as an Air Force intelligence officer and continues to serve in the Air National Guard as commander of a cyber threat intelligence squadron. He previously led threat intelligence programs for the Department of Energy. Karl holds multiple SANS certifications, a Bachelor of Science degree from the U.S. Air Force Academy, and a Master of Public Policy degree from the University of Maryland, College Park. He currently lives in Richland, WA with his wife and three young daughters. You can follow him on Twitter at @KarlScheuerman..
When: Friday, October 23. 2:00 - 2:45 pm
Recording: https://youtu.be/7ZlAplP0AsI
Talks: Cyber Intrusions from the Frontlines in 2020
Every day, cyber criminals, state sponsored adversaries, and others are trying to exploit systems and networks belonging to universities, hospitals, and many other types of organizations. The CrowdStrike Overwatch team is a managed threat hunting service designed to stop those breaches. Hear directly from the Overwatch team as they discuss real examples of interactive and targeted intrusions, and how they uncovered them. Whether you’re a student, average enterprise user, system administrator, or executive level decision maker, these observations will provide key insights to consider for enhancing security for yourself and your teams.
Sandy Silk
Director of Information Security Education and Consulting, Harvard University
Sandy Silk is the Director of Information Security Education and Consulting at Harvard University, a member of the Board of Advisors for the MS in Information Security Leadership at Brandeis University, and a member of the Board of Advisors for Apexa Corporation. At Harvard, Sandy leads a team of information security specialists who consult with researchers, faculty, and departments on security risks and controls for the high-risk data, technology, and vendors they use within their projects. Her team also manages the annual information security self-assessment across the University, coordinates the annual review process for the Information Security Policy, and produces the security awareness campaign and related IT Academy training courses. Sandy is also passionate about diversity, inclusion and belonging in the IT and cybersecurity profession.
When: Friday, October 23. 1:00 - 2:00 pm
Recording: https://youtu.be/0I166w4WUs4
Talks: Wait, what? I didn’t expect you’d say OK….
Favorite stories when InfoSec said “OK” to projects, but the business perceived higher risk – or assumed/hoped we would say “no way.”
Michael Tran Duff
Chief Information Security Officer and Chief Privacy Officer, Stanford University
Michael completed his three degrees in computer science and physics at MIT. While there, he founded an electronic medical records company and later served as Chief Technology Officer of the acquiring organization. Michael then devoted a year to teaching undergraduate and graduate computer science courses as a Visiting Instructor at Miami University in Ohio before relocating to the Bay Area, where he led the information security program at SRI International in Menlo Park for the next 11 years. Michael joined Stanford in 2012 and ascended to the Chief Information Security Officer role in 2013. At Stanford, he added the Chief Privacy Officer role in 2019.
When: Wednesday, October 21. 1:00 - 2:00 pm
Recording (Opening Ceremony): https://youtu.be/xwdaI1uKCDs
Recording (Fireside Chat): https://youtu.be/Noaup3b4Dpw
Recording (CISO Panel): https://youtu.be/CdgIFiuH95U
Talks: CISO Panel