We aren’t losing right now, we’ve already lost. Buzz words, countless millions, and failed security programs continue to show that we are truly struggling with how to build a successful security program. Have no fear; it’s possible to build something sustainable. This talk focuses on some of the root causes of our issues in the information security field and how to proactively build a world class information security program while strengthening business drivers. This isn’t just a high level talk; we will be showing countless examples of breaking today’s sophisticated security products that are aimed at keeping the bad guys out. Hacker’s are using these techniques on a daily basis, and our defenses are based on things that truly don’t stop them. The industry is shifting in a different direction, are you apart of it? Learn what you need to do right now in order to protect against tomorrow’s threats.

David started TrustedSec with the vision in building a world-class information security consulting company. Prior to TrustedSec, David was a Chief Security Officer (CSO) for Diebold Incorporated, a Fortune 1000 company located in over 80 countries with over 16,000 employees. David developed a global security program that tackled all aspects of information security. David is considered a thought leader in the security field and has presented at over three hundred conferences worldwide. David has had guest appearances on FoxNews, CNN, Huffington Post, Bloomberg, BBC, and other high-profile media outlets. David is the founder of DerbyCon, a large-scale information security conference. David also authored Metasploit: The Penetration Testers Guide book, which was number one on Amazon in security for over a year. David was also one of the founding members of the “Penetration Testing Execution Standard (PTES)“. PTES is the industry leading standard and guidelines around how penetration tests should be performed and methodologies. David has had the privilege to speak at some of the nations largest conferences including Blackhat, Defcon, RSA, ShmooCon, DerbyCon, INFOSEC World, ISACA, ISSA, Infragard, United Security Summit, INFOSEC Summit, Hack3rCon, BSIDES, and a number of other security related conferences. David is the creator of several widely popular open-source tools including “The Social-Engineer Toolkit” (SET), Artillery, and Fast-Track. David has also released several zero-day exploits and focuses on security research. David has over 13 years of security experience, with over 8 specifically in security consulting. Prior to the private sector, David worked for the National Security Agency (N.S.A.) and the United States Marines in cyber warfare and forensics analysis activities. David was instrumental in Operation Iraqi Freedom (OIF) and developed a multi-million dollar classified system aimed at identifying potentially harmful insurgents and worked in a top-secret environment for several years.

Back to Louisville InfoSec 2013 video list