Shannon Johnston has been working in IT security since 1996, working in the consumer, ISP, financial, and Federal Government industries. He has designed and implemented enterprise-class security systems focused on prevention and data loss prevention. He has also developed comprehensive incident response and forensics programs focusing on compliance and non-repudiation.
Shannon has spearheaded active defense programs and Red Teams within the Government. Shannon has deep experience in auditing (both preparing for, and performing) within the financial industry and the Federal Government. This includes NCUA, FFIEC, ISO27001, SAS70, PCI, FISMA, and USGCB. Shannon has created and presented both technical and non-technical security awareness courses for 180-200 people/year for the last four years, helping organizations meet annual training requirements.
Serge Borso is the Chief Executive Officer of SpyderSec. Serge in an active member in the information security community and has an extensive history in this industry. He has developed enterprise penetration testing programs, been involved in implementing transparent biometric security systems, creating and implementing security awareness training solutions and vocally advocating for tighter application security. In addition, Serge has worked with many financial institutions to address fraudulent online banking transactions.
Serge has presented at a number of training and public speaking events, is on the Board of Directors for the Denver OWASP Chapter and currently works with the SANS Institute to teach SEC542: "Web Application Penetration Testing and Ethical Hacking" and DEV522: "Defending Web Applications Security Essentials".