-
Dr. Thomas Schreck
Dr. Thomas Schreck is a Professor for IT-Security at the Munich University of Applied Sciences. Prior he was a Principal Engineer for IT-Security at Siemens and the Head of Siemens CERT. He served between 2015 and 2021 on the Board of Directors of FIRST.org and was the Chairman from 2017 to 2019.
He holds a PhD in Computer Engineering from the Friedrich Alexander University Erlangen-Nuremberg and a Diploma in Computer Science for the University of Applied Sciences Landshut.
-
Hendrik Adrian
Hendrik Adrian is the representative of FIRST Team LACERT and FIRST CTI SIG co-chair, he is working as cyber threat intrusion senior analyst at Cyber Emergency Center. Hendrik works as Japan government support for various educational security lecture activities in IPA i.e. Security Camp, CyberCREST, and he is putting more efforts in international security communities as an active lecturer and speaker in various conferences. His contributed malware analysis to the security community is listed in the Wikipedia at https://en.wikipedia.org/wiki/MalwareMustDie
-
Andreas Muehlemann
Andreas Muehlemann has been working over 15 years in IT security. After spending time at an MSSP he working in the finance industry and was hosting critical applications in a secure linux environment. His current role at SWITCH-CERT includes IOC sharing, CTI, malware analysis and helping customers from different industries to improve their security maturity or DFIR skills. He's actively contributing in FIRST SIGs and passionate about open source software.
-
Alexandre Dulaunoy
Alexandre Dulaunoy encountered his first computer in the eighties, and he disassembled it to know how the thing works. While pursuing his logical path towards information security and free software, he worked as senior security network consultant at different places (e.g. Ubizen, now Cybertrust). He co-founded a startup called Conostix, which specialised in information security management. For the past 6 years, he was the manager of global information security at SES, a leading international satellite operator. He is now working at CIRCL in the research and operational fields. He is also a lecturer in information security at Paul-Verlaine University in Metz and the University of Luxembourg. He is also the lead developer of various open source tools including cve-search and member of the MISP core team.
-
Patrick Grau
Patrick Grau is the Cyber Threat Intelligence Lead at Bosch Group where he's hands-on managing and coordinating the CTI program. Prior to that, he was part of the Bosch CERT as an incident manager with a preference for analysis and digital forensics. In addition, he graduated somewhere, holds a degree in something, has some expired certificates and owns more than one computer.
-
Alexander Jaeger
Alexander Jäger is a Senior Security Engineer working in the Incident Management and Digital Forensics team at Google. He is active in various open source projects. He studied technical computer science at the University of applied sciences in Mannheim and holds a Dipl.-Ing (FH). Alexander is the former Chair of the board of directors and CFO of FIRST (Forum for Incident Response and Security Teams). If not in front of a computer you might find him doing a swim bike run.
-
L. Aaron Kaplan
Aaron has been working at the national CERT of Austria between 2008 and 2020, he has a background in maths and computer science. Since 2020 he works for EC-DIGIT-CSIRC, the IT security team of the European Commission. He is the co-founder of intelmq.org, a tool for automating the typical tasks of IT security teams. Aaron is a regular speaker at IT security conferences such as FIRST, hack.lu, Blackhat, CCC. He also had the honor to serve as a FIRST board of director between 2014 and 2018 where he initialized multiple infrastructure projects such as misp.first.org. He believes in using automation, open source and machine learning for improving the lives of DFIR folks. In fact, he believes that without those tools, we won't be fast enough to keep up with attackers.
-
Eireann Leverett
Eireann Leverett is CTO of Waratah Analytics, and a has an interest in quantitative risk within the digital forensics and incident response community. He has written academic papers on vulnerability forecasting, ransomware, ddos, cyber insurance, liability and the internet of things, and industrial systems. He is a proud FIRST member, and looks for collaborative research capturing cyber problems from a interdisciplinary perspective.
-
Enrico Lovat
Enrico Lovat received his PhD from the Technical University of Munich for his research on the topics of usage control and information flow tracking. He joined Siemens CERT in 2016 in the dual role of Incident Handler and Cyber Threat Intelligence Team Lead. In 2022 he moved to Siemens Technology as Principal Key Expert, supervising the research in technologies and innovations for cybersecurity services.
-
Terry MacDonald
Terry has been involved in information security for over 19 years. He has been a major contributor to the STIX, TAXII, and CybOX threat intelligence sharing standards through his work on the OASIS Cyber Threat Intelligence Technical Committee, and has provided advisory services to major vendors such as Microsoft and Soltra. He is co-chair of the FIRST Information Exchange Policy Special Interest Group (IEP-SIG) and is a NZITF board member. Terry has worked in various roles during that time, spanning Security Operations, Policy, Planning, Design, Business Development and Product Development. Terry co-founded the Spark NZ Security Operations Team, has worked in senior roles at the Cisco Managed Threat Defense centre and helped Microsoft develop their internal Threat Intelligence Management solution. In recent years Terry has focused on helping organizations integrate threat intelligence, incident response and policy planning together, to gain the most benefit from their information security programmes. He currently works for Cosive as Chief Operating Officer and Senior Security Consultant. He has the CISSP, GCIA, and GCIA certifications in addition to numerous vendor specific qualifications.
-
Dr. Ryusuke Masuoka
Dr. Ryusuke Masuoka is a research principal at Fujitsu System Integration Laboratories LTD (FSI), working on Cyber Security. Over 30 years, he has conducted research in neural networks, simulated annealing, agent system, pervasive/ubiquitous computing, Semantic Web, bioinformatics, Trusted Computing, Software/Security Validation, Cloud Computing, Smart Grid, the Internet of Things, Cyber Security Policy, and Cyber Security. He also led numerous standardization activities and collaborations with universities, national and private research institutes, and startups. He is an ACM senior member and an IEEE senior member.
-
Chris O'Brien
Chris (aka "cob") is a Cyber Threat Intelligence and Cyber Defence Operator with the aim of democratising intelligence for more defendable networks. From leading on incident response to national-scale security incidents, to designing (perhaps unnecessarily detailed) STIX data models - Chris has gathered a bunch of experience from Government, Startup and Big Tech. Currently setting up a global intel function for Google Cloud.
-
Andreas Sfakianakis
Andreas is a Cyber Threat Intelligence professional with over fifteen years of experience in cyber security. He focuses on applying threat intelligence and helping organizations manage threats mostly within the Energy, Technology, and Financial sectors as well as in European Union’s Agencies and Institutions. Andreas has been contributing to the CTI community since 2012 via public reports and presentations, his blog, newsletter, and instructing. His utmost goals are the maturing of threat management programs within organizations as well as the embedding CTI in policy making. Andreas Twitter handle is @asfakian and his website is threatintel.eu
-
Vasileios Mavroeidis
Vasileios Mavroeidis is a Professor of Cybersecurity at the University of Oslo, focusing on the domains of security automation and cyber (threat) intelligence. He is a member of ENISA’s ad hoc working groups on Cyber Threat Landscapes, Security Operations Centers and the Task Force for Security Playbooks. He has been actively involved in European cybersecurity research and innovation activities and has (co)authored numerous papers contributing to the body of knowledge. In 2023 Vasileios joined the hall of fame of the standards development organisation OASIS and was awarded the title of distinguished contributor for his substantial contributions to cybersecurity standardisation. In addition, in February 2023 joined the French cybersecurity technology provider SEKOIA.IO as a senior standards architect.
-
Karthik Yetukuri
Karthik leads a globally distributed team of Security experts focused on DFIR, Incident Management, Threat Intelligence, Threat Hunting, Threat Detection and Insider Threats. He holds a Bachelor’s Degree in Electronics and Communication Engineering, a Master’s Degree in Information Systems Security & Project Management and various other security related certifications.
