Girl Geek X

Girl Geek X

Girl Geek X ThoughtWorks Dinner – January 23rd, 2018 in San Francisco!

Girl Geek X ThoughtWorks Security Talks And Dinner

On Tuesday, January 23rd, 2018 — ThoughtWorks invites girl geeks to hear industry experts tell their security stories! In the light of Meltdown and Spectre, it is more important than ever to think about the business of hacking, risk tolerance and information ownership.

ThoughtWorks would like to invite people of all genders to enjoy a meal, grab a beer, and meet like minded security enthusiasts at this Girl Geek X ThoughtWorks security talks & dinner evening in San Francisco! Get your ticket to join us!

Agenda:

6:00pm – 7:00pm: Registration & Food
7:00pm – 8:00pm: Welcome, Security Talks & Panel Discussion
8:00pm – 9:00pm: Networking & Fun

Please Follow Us:

Twitter: @GirlGeekX @ThoughtWorks
Instagram: @GirlGeekX @ThoughtWorks
Event Hashtag: #GirlGeekXThoughtWorks

Girl Geek Speaker Bios:

Rosalie TolentinoRosalie Tolentino, ThoughtWorks Pure Energy

Rosalie started as a full stack developer at ThoughtWorks, engineering agile software for clients. Since then, she has chosen to specialize in security and privacy. She has spent the last year and a half developing privacy enhancing technologies, including a new draft of the effective Off-the-Record messaging protocol. Prior, Rosalie spent a year deploying training material on security hygiene for ThoughtWorks. This included running a capture the flag competition and a lockpicking contest for a major internal conference to engage participants from all backgrounds. Today, Rosalie is passionate about designing systems for a better future. Follow her on Twitter at @rosatolen.

Talk Proposal: “The Road to Private Disillusionment”

Vanessa ArandaVanessa Aranda, Gap Security Analyst

Vanessa is a security analyst, bridging the gap between the red and blue teams. In her role, she hunts for vulnerabilities and threats being exploited in the wild along with managing the phishing program for all Gap brands. She is the lead for intelligence sharing across a network of retailers and helps strengthen her company’s security posture by performing pentests, ensuring the protection of PII for both customers and employees worldwide. Vanessa is an alum of the Year Up Bay Area program, before that she studied biochemistry at Fresno State. Her hobbies include mentoring at devmission and Year Up, volunteering at San Francisco Pathways to Citizenship Initiative workshops, is an active member of the Bay Area’s diversity and inclusion movement, and loves Star Trek.

Talk Proposal: “With cyber security events making headlines, it’s important to understand the business of hacking, breaking the kill chain and increasing user awareness. The biggest hole in any company’s security is the end user. With my phishing campaigns, I educate the employee base to identify red flags in suspicious emails, empowering them to secure themselves, as well as the company. It’s important in my role to be the proverbial wolf in sheep’s clothing, for the benefit of the people I’m trying to protect. I have to think like an attacker.”

Ruchi ShahRuchi Shah, Google Senior Technical Program Manager

Ruchi is a senior technical program manager in security at Google, where she leads a team whose mission is to secure acquisitions and Alphabets. Ruchi has over 12 years of experience in security. Previously, she spun up the Subsidiary Security Program at Amazon and managed the product roadmap for AWS Identity and Access Management and AWS Key Management Services. Ruchi also worked at Deloitte and Touche LLP and Ernst & Young, where she helped clients implement security solutions ranging from identity and access management (IAM) and security information and event management (SIEM) to network security products. Follow her on Twitter at @ruchieng.

Talk Proposal: “What are the top 15 things that Google Security worries about when acquiring or starting a company? How do they address them in order to protect both the entity and Google itself? Along the way, she will cover the people, process, and technology aspects of information security that companies should pay attention to when acquiring or starting out.”

Aika SengirbayevaAika Sengirbayeva, Autodesk Information Security Senior Program Specialist

Aika is people-security expert focused on engaging people to be key elements of secure organizations. She is building security engagement programs focused on improving the security mindset of employees. The scope of her work runs the gamut from general awareness such as phishing and reporting activity, red team assessments and others.

Talk Proposal: “95% of security breaches are caused by human error. Changing behavior and transforming employees into your company’s strongest asset in preventing breaches is your best defense. With internet access rapidly expanding across the globe, and the increase of greater connectedness across business, finance, and individuals, ensuring privacy and security of this activity will only become more paramount. This reality makes cybersecurity – the technologies, processes and best practices that protect networks, individual computers, programs and all digital data from attack — one of the critical problems of our time. As security professionals and companies look for answers, efforts have been heavily skewed toward finding technological solutions. Yet, experts estimate most of the cost attributed to cyber-attacks is actually a result of human error. Things as simple as clicking on a bad link, opening the wrong email attachment, or using an insecure USB drive can be devastating to network security. The strongest security network in the world is only as good as the human.”

Beth Andres-BeckBeth Andres-Beck, The Long-Term Stock Exchange Software Engineering Manager

Beth has written code for everything from networking for real-time video understanding systems at BAE Systems to a serverless donation page platform for Hillary Clinton’s presidential campaign. She is a proponent of collective code ownership, automated testing, security cultures, user experience design, cyborg feminism and event-driven javascript. She has spoken at conferences like Velocity NYC, OSCON and USENIX, and has a BA in Theater from Smith College. Follow her on Twitter at @bethcodes.

Talk Proposal: “With regards to security, my focus is on creating teams that build secure systems by managing risk tolerance & sharing security principles. If people are willing to tolerate a lot of risk, then adding more security support just lets them take even bigger risks, knowing there is a safety net. By thinking of security in terms of the consequences of failure and our responsibility to our customers, we can instead lower a team’s risk tolerance. A combination of healthy fear, easy-to-apply principles and easy-to-access support can build security into our daily work the same way testing already is.”

Nicola HughesNicola Hughes, ThoughtWorks Consultant Developer

Nicola is a developer, tinkerer, data wrangler, and promoter of women in tech. She loves to learn, and is a speaker, trainer, and advocate for women learning to code. She blogs and tweets about #WomenInTech at girlmeetscode.co.uk and @GirlMeetsCode. She left CNN International to learn to code with tech startup ScraperWiki, becoming a Knight-Mozilla OpenNews fellow at the Guardian in 2012 and a data journalist at the Times & Sunday Times the following year. Now Nicola is a developer at social justice and technology consultancy, ThoughtWorks.

Nicola is the event organizer and Emcee for the Girl Geek X ThoughtWorks security talks evening!

About ThoughtWorks:

ThoughtWorks is a software company and a community of passionate, purpose-led individuals. We think disruptively to deliver technology to address our clients’ toughest challenges, all while seeking to revolutionize the IT industry and create positive social change.

Event Tickets & Details:

Tickets go onsale Wednesday, January 10th, 2018 at NOON Pacific Standard Time (PST).