CFP Reviewers

Security leader helping startups build security from 0 to 1. Former Head of Security at Microsoft Modern Life Experiences, Security Lead at Brex, and Forbes Technology Council member. CMU alumni with extensive experience presenting at national and international security conferences. Passionate about advising startups and entrepreneurs on building robust security foundations.

Senior Security Engineer at YouTube specializing in AI, product, and service security through offensive operations. Former offensive security leader for Azure Data at Microsoft with 5+ years of experience in penetration testing, red teaming, and threat modeling. Creator of "medaudit," an open-source HL7 auditing tool. Presented research on side-channel attacks at Black Hat, HITB, and Nullcon. Expert in healthcare, cloud, and AI security.

Srajan Gupta is a security-focused builder and Senior Security Engineer known for helping organizations scale securely from day one. He specializes in application security, threat modeling, AI security, and designing practical guardrails that align engineering speed with strong security outcomes. Srajan is also an active researcher, open-source creator, and conference speaker focused on the future of secure AI-assisted development and modern software delivery.

Application security professional with 10 years experience in Information security, penetration testing, Static code review & software development. Currently working as a Senior Information Security Analyst and have adept skills in Penetration testing and code review. Has good knowledge of tools like IBM AppScan, HP fortify, Hp WebInspect, CheckMarx , Veracode Burp suite, NMAP & Nessus etc. Responsible for Penetration Testing, Web Application Vulnerability Assessments, and assisting developers in fixing vulnerabilities.

Offensive Security Certificated Professional (OSCP) and Certified Ethical Hacker (CEH) with around Twelve years of experience in Threatmodeling, Secure Code Review, Penetration Testing, security architecture review, Application Security, Mobile Security, Cloud Security and Vulnerability Management. Rich experience in integrating security with SDLC. Expertise in developing Policy Checklists for Source code review and Threatmodeling. Good knowledge on Javascript security and Magecart attacks. Red teaming experience.