BSidesSF 2025: Full Schedule

11:15am PDT

Guardians of AI Safety: Assembling Heroes to Conquer Dragons of the Future

Saturday April 26, 2025 11:15am - 12:00pm PDT

Uncover the hidden risks of AI! Join this BoF session to explore frameworks for identifying system failures, understand new safety and harm categories with Gen AI, possible mitigations, and practical ways to govern, build and respond to AI Safety threats. Don't let what you don't know hurt you!

Speakers

Raji Vanninathan

Microsoft

Raji Vanninanthan is a Senior Security Manager at Microsoft with over 20 years of industry experience. Her current focus is Responsible AI and product security incident response(PSIRT). She has held previous leadership roles at Apple and Adobe where she established programs across... Read More →

Saturday April 26, 2025 11:15am - 12:00pm PDT
AMC Theatre 01 AMC at Metreon

Birds of a Feather

12:30pm PDT

Shifting Left: A Hands-on Introductory Guide to DevSecOps

Saturday April 26, 2025 12:30pm - 2:30pm PDT

AMC Theatre 01

See registration to determine current session availability. Event filled in Sched to limit confusion.
YOU ARE REQUIRED TO REGISTER AT https://bsidessf.regfox.com/2025 TO ATTEND THIS WORKSHOP (i.e. this session cannot be reserved with Sched)
-----
This two-hour workshop on Shifting Left guides BSidesSF participants through integrating security tooling into a GitHub Actions based DevSecOps CI/CD pipeline.

BSidesSF attendees will learn about setting up basic CI/CD processes that incorporate security using both open source and commercial tools.

Speakers

William Reyor

Director of Security, Modus Create

William Reyor is Director of Security at Modus Create, leading a global team defending software.

Andy Dennis

VP Consulting, Platform and Cloud Practice Lead, Modus Create

DevSecOps, Shifting Left and Security!

Saturday April 26, 2025 12:30pm - 2:30pm PDT
AMC Theatre 01 AMC at Metreon

Workshop

2:45pm PDT

How to Build Security Products that People Actually Buy

Saturday April 26, 2025 2:45pm - 4:45pm PDT

AMC Theatre 01

See registration to determine current session availability. Event filled in Sched to limit confusion.
YOU ARE REQUIRED TO REGISTER AT https://bsidessf.regfox.com/2025 TO ATTEND THIS WORKSHOP (i.e. this session cannot be reserved with Sched)
-----
Frustrated with your current security toolset and ready to build a better solution? You can — but it's harder than it looks! Join us to learn how to scope and design cybersecurity MVPs that attract customers, solve security problems, and draw VC interest.

Speakers

Emily Patterson

Director of Product Management, Platform Security, Dayforce

Emily Patterson has over 15 years of experience in product management and has been building cybersecurity products for the last 7 years. She is currently Director of Product for Platform Security at Dayforce, a leading HRIS platform. Prior to that, she was VP of Product at Finite... Read More →

Saturday April 26, 2025 2:45pm - 4:45pm PDT
AMC Theatre 01 AMC at Metreon

Workshop

11:15am PDT

AI Dragons: Threats, Risks, and What We Can Do About Them

Sunday April 27, 2025 11:15am - 12:00pm PDT

AMC Theatre 01

During the session, we'll explore how AI systems can pose risks to organizational security and user safety. Attendees will gain insights on AI's role in modern security and actionable strategies to safeguard organizations. Join us to learn about AI threats and ways to secure digital ecosystems.

Speakers

Tanya Janca

Staff DevRel, Semgrep

Tanya Janca, aka SheHacksPurple, is the best-selling author of 'Alice and Bob Learn Secure Coding', 'Alice and Bob Learn Application Security’ and the ‘AppSec Antics’ card game. Over her 28-year IT career she has won countless awards (including OWASP Lifetime Distinguished Member... Read More →

Sunday April 27, 2025 11:15am - 12:00pm PDT
AMC Theatre 01 AMC at Metreon

Birds of a Feather

12:30pm PDT

Purple Teaming Okta Detections

Sunday April 27, 2025 12:30pm - 2:30pm PDT

AMC Theatre 01

See registration to determine current session availability. Event filled in Sched to limit confusion.
YOU ARE REQUIRED TO REGISTER AT https://bsidessf.regfox.com/2025 TO ATTEND THIS WORKSHOP (i.e. this session cannot be reserved with Sched)
-----
In this hands-on workshop, we will show attendees how to onboard Okta logs into a SIEM and write detections as well as test them using open source adversary emulation tools. A basic understanding of YAML and writing detections is helpful, but not required.

Speakers

Ken Westin

Senior Solutions Engineer, LimaCharlie

Ken is a creative technologist with 16 years experience building and breaking things through the use/misuse of technology. His technology exploits and endeavors have been featured in Forbes, Good Morning America, Dateline, New York Times, The Economist and others. He has presented... Read More →

Sunday April 27, 2025 12:30pm - 2:30pm PDT
AMC Theatre 01 AMC at Metreon

Workshop

2:45pm PDT

Harnessing GenAI for Cutting-Edge Detection Engineering

Sunday April 27, 2025 2:45pm - 4:45pm PDT

AMC Theatre 01

See registration to determine current session availability. Event filled in Sched to limit confusion.
YOU ARE REQUIRED TO REGISTER AT https://bsidessf.regfox.com/2025 TO ATTEND THIS WORKSHOP (i.e. this session cannot be reserved with Sched)
-----
As adversary tactics evolve, detection must keep pace. This workshop shows how GenAI generates high-fidelity detection rules, automates TTP analysis, and translates threat intel into platform-agnostic detections. Learn to optimize rules, analyze threat data, and identify threats with precision.

Speakers

Matt Bromiley

Sunday April 27, 2025 2:45pm - 4:45pm PDT
AMC Theatre 01 AMC at Metreon

Workshop