-
Patrick Grau, Co-Chair
Patrick Grau is a Senior Manager at the Bosch Group and is responsible with his team for Cyber Threat Intelligence, Threat Hunting and Threat Control Management (including Detection Engineering). Prior to that, he was the Cyber Threat Intelligence Lead and part of the Bosch CERT as an incident manager with a preference for analysis and digital forensics. In addition, he graduated somewhere, holds a degree in something, has some expired certificates, and owns more than one computer.
-
Dr. Thomas Schreck, Co-Chair
Dr. Thomas Schreck is a Professor for IT-Security at the Munich University of Applied Sciences. Prior he was a Principal Engineer for IT-Security at Siemens and the Head of Siemens CERT. He served between 2015 and 2021 on the Board of Directors of FIRST.org and was the Chairman from 2017 to 2019.
He holds a PhD in Computer Engineering from the Friedrich Alexander University Erlangen-Nuremberg and a Diploma in Computer Science for the University of Applied Sciences Landshut.
-
Hendrik Adrian
Hendrik Adrian is the representative of FIRST Team LACERT and FIRST CTI SIG co-chair, he is working as cyber threat intrusion senior analyst at Cyber Emergency Center. Hendrik works as Japan government support for various educational security lecture activities in IPA i.e. Security Camp, CyberCREST, and he is putting more efforts in international security communities as an active lecturer and speaker in various conferences. His contributed malware analysis to the security community is listed in the Wikipedia at https://en.wikipedia.org/wiki/MalwareMustDie
-
Alexander Jaeger
Alexander Jäger is a Senior Security Engineer working in the Incident Management and Digital Forensics team at Google. He is active in various open source projects. He studied technical computer science at the University of applied sciences in Mannheim and holds a Dipl.-Ing (FH). Alexander is the former Chair of the board of directors and CFO of FIRST (Forum for Incident Response and Security Teams). If not in front of a computer you might find him doing a swim bike run.
-
Enrico Lovat
Enrico Lovat received his PhD from the Technical University of Munich for his research on the topics of usage control and information flow tracking. He joined Siemens CERT in 2016 in the dual role of Incident Handler and Cyber Threat Intelligence Team Lead. In 2022 he moved to Siemens Technology as Principal Key Expert, supervising the research in technologies and innovations for cybersecurity services.
-
Terry MacDonald
Terry has been involved in information security for over 19 years. He has been a major contributor to the STIX, TAXII, and CybOX threat intelligence sharing standards through his work on the OASIS Cyber Threat Intelligence Technical Committee, and has provided advisory services to major vendors such as Microsoft and Soltra. He is co-chair of the FIRST Information Exchange Policy Special Interest Group (IEP-SIG) and is a NZITF board member. Terry has worked in various roles during that time, spanning Security Operations, Policy, Planning, Design, Business Development and Product Development. Terry co-founded the Spark NZ Security Operations Team, has worked in senior roles at the Cisco Managed Threat Defense centre and helped Microsoft develop their internal Threat Intelligence Management solution. In recent years Terry has focused on helping organizations integrate threat intelligence, incident response and policy planning together, to gain the most benefit from their information security programmes. He currently works for Cosive as Chief Operating Officer and Senior Security Consultant. He has the CISSP, GCIA, and GCIA certifications in addition to numerous vendor specific qualifications.
-
Tobias Mainka
Tobias Mainka serves as the Technical Lead for Cyber Threat Intelligence at Infineon AG, actively involved in building and coordinating the Cyber Threat Intelligence process. Before his current role, he was part of Siemens CERT specializing as a senior incident responder, particularly drawn to special vulnerability handling including zero-day exploits and advanced persistent threats.
-
Dr. Ryusuke Masuoka
Dr. Ryusuke Masuoka is a research principal at Fujitsu System Integration Laboratories LTD (FSI), working on Cyber Security. Over 30 years, he has conducted research in neural networks, simulated annealing, agent system, pervasive/ubiquitous computing, Semantic Web, bioinformatics, Trusted Computing, Software/Security Validation, Cloud Computing, Smart Grid, the Internet of Things, Cyber Security Policy, and Cyber Security. He also led numerous standardization activities and collaborations with universities, national and private research institutes, and startups. He is an ACM senior member and an IEEE senior member.
-
Vasileios Mavroeidis
Vasileios Mavroeidis is a Professor of Cybersecurity at the University of Oslo, focusing on the domains of security automation and cyber (threat) intelligence. He is a member of ENISA’s ad hoc working groups on Cyber Threat Landscapes, Security Operations Centers and the Task Force for Security Playbooks. He has been actively involved in European cybersecurity research and innovation activities and has (co)authored numerous papers contributing to the body of knowledge. In 2023 Vasileios joined the hall of fame of the standards development organisation OASIS and was awarded the title of distinguished contributor for his substantial contributions to cybersecurity standardisation. In addition, in February 2023 joined the French cybersecurity technology provider SEKOIA.IO as a senior standards architect.
-
Andreas Muehlemann
Andreas Muehlemann has been working over 15 years in IT security. After spending time at an MSSP he working in the finance industry and was hosting critical applications in a secure linux environment. His current role at SWITCH-CERT includes IOC sharing, CTI, malware analysis and helping customers from different industries to improve their security maturity or DFIR skills. He's actively contributing in FIRST SIGs and passionate about open source software.
-
Andreas Sfakianakis
Andreas is a Cyber Threat Intelligence professional with over fifteen years of experience in cyber security. He focuses on applying threat intelligence and helping organizations manage threats mostly within the Energy, Technology, and Financial sectors as well as in European Union’s Agencies and Institutions. Andreas has been contributing to the CTI community since 2012 via public reports and presentations, his blog, newsletter, and instructing. His utmost goals are the maturing of threat management programs within organizations as well as the embedding CTI in policy making. Andreas Twitter handle is @asfakian and his website is threatintel.eu
