Bio: Dr. Chenxi Wang

Dr. Wang is a member of Forrester's Security and Risk Management research team. She covers application security and content security. She is a frequent keynote speaker in research and industry conferences.

Prior to joining Forrester, Chenxi was the principal Scientist for KSR, Inc, a risk management service provider firm. Prior to that, Chenxi was an Associate Professor at Carnegie Mellon University for computer security. At CMU, Chenxi led a number of large research projects, including research effort funded by the Department of Defense and National Science Foundation. Chenxi conducted consultative projects for the Federal Trade Commission, HP Labs, Lucent, and a number of Venture Capital companies.

Earlier on in her career, Chenxi held one of the first research associate positions at Citibank's Corporate Information Security Office (CISO), the very first CISO designation in the country. Chenxi holds a Ph.D. in Computer Science from the University of Virginia.

Bio: Ari Takanen

Ari Takanen, founder and CTO of Codenomicon, has since 1998 been focusing his work on information security issues in next-generation networks and security critical environments. The work of Codenomicon and the University of Oulu aims at ensuring that new technologies are accepted by the general public by providing means of measuring and ensuring quality in networked software.

Ari Takanen is one of the people behind the PROTOS research that studied information security and reliability errors in e.g. WAP, SNMP, LDAP, VoIP implementations. His company, Codenomicon Ltd. provides automated tools with a systematic approach to test a multitude of interfaces on mission critical software, including but not limited to VoIP platforms, Internet routing infrastructure and 3G devices. Ari has been speaking at numerous security and testing conferences, and also at leading universities and international corporations. Especially the presentations at commercial companies have shown that that what we do at Codenomicon really matters and makes a change to the information society in general.

He has co-authored a book on Voice over IP security (published by Addison-Wesley), and has a book upcoming on Fuzzing (Artech House).

Bio: Sammy Migues

Sammy Migues is a Principal at Cigital, Inc. Mr. Migues has spent nearly three decades advancing the cause of information security through entrepreneurial innovation, intellectual capital development, practical business solutions, and performance optimization. He has day-to-day experience in chief architect, chief technologist, and evangelist roles, working directly with customers, product development, and consultants.

As a founding member of four security services organizations, Mr. Migues was responsible for creating the practical knowledge leveraged for repeatability and business growth. As an early participant in activities ranging from NSA "Rainbow Books," NIST Common Criteria, and DoD DITSCAP initiatives to state-of-the-art compliance management and software security risk models, he made critical observations on the evolving relationships between information security threat, vulnerability, risk, and business objectives. Mr. Migues expressed many of these ideas in various publications and workshops, as well as in patent applications for the iDEFENSE intelligence generation process, the TruSecure risk management process, and the Cybertrust security risk index.

He most recently has been working on the Building Security In Maturity Model (BSIMM) for software security groups, available at http://bsi-mm.com.

Sammy holds a BS in Computer Science and a Master's degree in Information Security.