Keynote Speeches
Nicolas Chaillan
The Chief Software Officer at the United States Air ForceThe co-lead for the Department of Defense Enterprise DevSecOps Initiative at the United States Department of Defense
Mr. Nicolas Chaillan, a highly qualified expert, currently serves as the first Air Force Chief Software Officer, under Dr. William Roper, the Assistant Secretary of the Air Force for Acquisition, Technology and Logistics, Arlington, Virginia. He is also the co-lead for the Department of Defense Enterprise DevSecOps Initiative with the Department of Defense Chief Information Officer. As the Air Force’s senior software czar, Mr. Chaillan is responsible for enabling Air Force programs in the transition to Agile and DevSecOps to establish force-wide DevSecOps capabilities and best practices, including continuous Authority to Operate processes and faster streamlined technology adoption. He also authored the DoD Enterprise DevSecOps Reference Design.
Hasan Yaser
The Technical Manager of the Secure Lifecycle Solutions Group in the SEI's CERT DivisionHasan Yasar is the technical manager of the Secure Lifecycle Solutions Group in the SEI's CERT Division. His group focuses on software development processes and methodologies, specifically on DevOps and development, and researches advanced image analysis, cloud technologies, and big data problems. It also provides expertise and guidance to SEI's clients. Yasar has more than 25 years’ experience as senior security engineer, software engineer, software architect, and manager in all phases of secure software development and information modeling processes. He has an extensive knowledge of current software tools and techniques. He also specializes in secure software solutions design and development in the cybersecurity domain, including data-driven investigation and collaborative incident management, network security assessment, automated, large-scale malware triage/analysis, medical records management, accounting, simulation systems, and document management. He is also an adjunct faculty member in the CMU Heinz College and Institute of Software Research where he currently teaches Software and Security and DevOps: Engineering for Deployment and Operations.
Main Sessions
Dr. Hideto Tomabechi
Fellow, CyLab, Carnegie Mellon University
Visiting Professor, Center of Excellence in C4I&Cyber, George Mason University
Chairman, Resilience Japan, LLC.
Chairman, Cognitive Research Labs, Inc.
Linton Wells II, PhD
Executive Advisor, Center of Excellence in Command, Control, Communications and Intelligence (C4I) and Cyber, George Mason University (GMU)
Special Advisor, Resilience Japan
Dr. Wells focuses on the links between policy, technology and decision-making, especially in cyber resilience and cybersecurity, smart cities and community resilience, disaster mitigation and response, and space-related issues. He also has studied resilience issues related to Japan’s Digital Society. He has extensive civilian government leadership experience in national security affairs, including service as U.S. acting Assistant Secretary of Defense for Networks and Information Integration and Department of Defense (DoD) Chief Information Officer (CIO). He is Visiting Distinguished Research Fellow at the Institute for National Strategic Studies at U.S. National Defense University (NDU) and Executive Advisor to the new Center for Resilient and Sustainable Communities (C-RASC) at GMU. He also was a career naval officer. In 2014 he completed 51 years with DoD. See also
Evan Dornbush
Point3 Security, Inc.
Co-Founder and CEO
Evan co-founded Point3 in 2014 and serves as Chief Executive Officer. He worked as a Computer Network Operator for the National
Security Agency back when Cyber meant something totally different. Before co-founding Point3 Evan was Director of Customer Experience at Vulnerability Research Labs, a security research firm acquired by Computer Sciences Corporation. He holds a M.S. in computer science from
The George Washington University and has four ridiculously good looking children.
Joe Saunders
RunSafe Security, Founder & CEO
Joe Saunders is the founder and CEO of RunSafe Security, a pioneer in immunizing software without developer friction enabling the continuous delivery of runtime protected embedded systems, open source software, software containers, and cloud workloads.
He leads a team of former U.S. government cybersecurity specialists who know how attackers think about problems, how they weaponize attacks, and how they choose targets. Joe is on a personal mission to inoculate software by disrupting hacker economics.
Over his career, Joe has built and scaled technology into companies servicing both private sector and public sector security needs. Prior to forming RunSafe Security, Joe advised and supported multiple security, AI/ML, and data management companies, including Kaprica Security, Sovereign Intelligence, Analyze Corp, Thomson Reuters Special Services, and Distil Networks.
With Thomson Reuters Special Services, Joe helped law enforcement agencies identify national security threats, including the theft of intellectual property. Joe was also a member of the management team and VP, Business Development at TARGUSinfo, which was acquired by Neustar for $650M in 2011.
Joe is a frequently sought-after speaker and panelist and is regularly asked to author articles on cybersecurity issues. He is particularly interested in the intersection of technology, economics, and geopolitics, and spends time on the security of 5G, AI/ML, autonomous systems, IoT, supply chain, high value assets, and weapons programs.
Joe earned a BS degree in Mathematics from the University of Michigan, an MS in Predictive Analytics from Northwestern University, and an MBA in Finance from George Mason University where he was voted by the faculty as the Outstanding MBA Student from a 225-person graduating class. He is the founder of Children’s Voice International, a 501(c) 3 non-profit which provides scholarships for survivors of child trafficking.
Michelle Watson
Cyber Intelligent Partners, Founder, President & CEO
Michelle C. Watson - brings 25+ years of experience in international business development, focusing on information security, telecommunications, cyber intelligence, and cyber risk management, applying entrepreneur expertise to her present role as founding President and CEO of Cyber Intelligent Partners (CIP) LLC. CIP is a Washington D.C. based consulting and executive training firm focusing on: Cyber Risk Management, Geopolitical Risks Impacting Businesses, 5G-Economic & National Security Risks, and Insider Threat Risks.
Previously Michelle served as the co-founder and Director of the Cyber Intelligence Initiative at the Washington DC based, Institute of World Politics, where she was also Vice-President of Corporate Relations, and co-created, co-taught the Corporate Statecraft and Cyber Statecraft graduate courses.
Michelle began her career in Silicon Valley working for Cable & Wireless plc, and British Telecom plc (BT), in Information Security and Managed Network Services, leading business development programs in the Hi-tech sector. As Vice-President of BT's Global Solutions Group, Michelle was responsible for leading North American and European based business development teams and partnering with AT&T Solutions on joint global managed network service engagements.
Her academic research as a Professor of Practice focused on Cyber Intelligence; Cyber Risk Management; Geopolitical Risks to Businesses; 5G: Economic and National Security Risks; Nation-State Adversaries & Threat Landscape; Cyber Statecraft; and Corporate Statecraft: The complex relationship between the Public-Private sectors and the impact of those relationships on U.S. Economic and National Security.
Michelle earned a Masters’ Degree in National Security and Statecraft from the Institute of World Politics, studied International Relations at University of Oxford, New College, earned a Certification in Cyber Risk Management from Harvard University, a B.A. in Political Science from the University of Kentucky and studied Data Communications at Golden Gate University.
Ren Kimura
Founder&CEO, Ricerca Security
Shigeya Tanabe
Datadog Japan
Enterprise Sales Engineer
Yusuke Nirahara
Organizer of DevSecOps Days Tokyo, Vice President & COO, Resilience Japan
Keisuke Tsukagoshi
Google Cloud
Application Platform Specialist
Cameron Townshend
Sonatype Lead Solution Architect, APJ
Cameron Townshend has extensive experience building large mission critical applications. Developed the WeatherChannel.com.au website and backend integration. This site won 2010 Kentico site of the year for Integration and 2011 Astra award for Most Outstanding Use of Technology. Initial project lead on NSW Biosecurity Information System. As well as being the Lead Solutions Architect for Sonatype, he is a hands-on developer and leader of project teams.
Saburo Yukawa
BrainPad, Inc. Manager, Engineering Group
Shingo Kitayama
RedHat Cloud Solution Architect OpenShift Architect
Mark Miller
Co-Founder, All Day DevOps
Senior Storyteller, Sonatype
Malu Milan
President, Cryptopon
Dr. Joshua W. Walker
President & CEO of Japan Society
What is DevSecOps?
DevSecOps is the industry best practice for rapid, secure software development. DevSecOps is an organizational software engineering culture and practice that aims at unifying software development (Dev), security (Sec) and operations (Ops). The main characteristic of DevSecOps is to automate, monitor, and apply security at all phases of the software lifecycle: plan, develop, build, test, release, deliver, deploy, operate, and monitor. In DevSecOps, testing and security are shifted to the left through automated unit, functional, integration, and security testing - this is a key DevSecOps differentiator since security and functional capabilities are tested and built simultaneously. (Source: The DoD Enterprise DevSecOps Reference Design)
What is DevSecOps Days?
DevSecOps Days is a global community event founded by volunteers from Carnegie Mellon University and cutting-edge technology companies. It is a forum promoting discussions on methods for generating advanced secure system development that can counter emerging cyber threats.
In 2020, DevSecOps Days held events in twelve cities around the globe, including San Francisco, London, Singapore, and Istanbul with more than 10,000 participants. These events are the world’s largest DevSecOps community forum.
In October 2020, DevSecOps Days will host its first Japanese event in Tokyo. It will feature speakers from the US Department of Defense and Carnegie Mellon University.
Event Details
Event Dates
9:00 - 12:00, Monday, October 5, 2020
9:00 - 18:00, Tuesday, October 6, 2020
Bilingual simultaneous translation available
Capacity
5,000 (We have increased the maximum capacity to promote our event as a public forum thanks to official support from the US Embassy in Japan)
Event fees
Free (only for the 2020 event)
Event Format
Online (Registered participants will be issued unique URLs prior to the event)
Oreganizer
DevSecOps Days Tokyo Community
(managed by Resilience Japan LLC.)
Timetable
Day 1
9:00 - 12:00, Monday, October 5, 2020 (US-EST)
Speaker: Hasan Yaser
Moderator: Yusuke Nirahara
Demo Session: DevSecOps Process and Implementation
(Overview)
We deliver a custom version of the training course, DevSecOps Process and Implementation, offered exclusively at the Software Engineering Institute at Carnegie Mellon University.
The original training course at Carnegie Mellon University lasts for three days and is offered with hands-on exercises at $3,500 per participant. We offer a three hour-long version for free of charge to all participants of our event.
The original training course at Carnegie Mellon University caters to Fortune 500 firms, CTOs and CIOs at US and other governments around the world. DevSecOps Days Tokyo is pleased to waive participation fees to commemorate the community’s first Japanese event.
The three-hour session would promote understanding of the overview of DevSecOps software development, main tools and technologies used for DevSecOps, and organizational culture required for implementing DevSecOps.
Based on past case studies, including failures, the participant can expect to gain understanding of how to achieve an agile, advanced secure system development process through the implementation of DevSecOps.
Moreover, the session will deliver unique contents providing Japanese audience with substantial learning experience without expert knowledge on DevSecOps, agile development, and DevOps.
The session would be particularly beneficial for the following target audience, but it is open to all.
- Those seeking enhanced understanding of DevSecOps
- Those seeking to implement DevSecOps in their organizations
- Those seeking to upgrade their existing DevOps and implement DevSecOps
- Those seeking to learn about which technology stacks to integrate for achieving DevOps and DevSecOps
Requirements for Participation
A device, such as computer and smartphone, for viewing online contents will be required for viewing the online streaming during the session.
Day 2
20:00 - 0:00, Monday, October 5, 2020 (US-EST)
20:00 - 20:05
Yusuke Nirahara
Organizer of DevSecOps Days Tokyo
Welcome Note & Logistics
20:05 - 20:15
Dr. Hideto Tomabechi (CMU-CyLab)
Fellow, CyLab, Carnegie Mellon University
Visiting Professor, Center of Excellence in C4I&Cyber, George Mason University
Chairman, Resilience Japan, LLC.
Chairman, Cognitive Research Labs, Inc.
Opening Remarks
20:15 - 21:00
Nicolas Chaillan (U.S. Air Force)
The Chief Software Officer at the United States Air Force
Key Note: How did the Department of Defense move to Kubernetes and Istio?
21:00 - 21:25
Malu Milan (Cryptopon)
President, Cryptopon
TBD
21:25 - 21:50
Mark Miller (Sonatype)
Co-Founder, All Day DevOps
Senior Storyteller, Sonatype
Slouching Towards DevSecOps: Incremental Growth and Transformation
21:50 - 22:15
Linton Wells II (George Mason University)
Executive Advisor, Center of Excellence in Command, Control, Communications and Intelligence (C4I) and Cyber, George Mason University (GMU)
Special Advisor, Resilience Japan
Cyber Resilience and DevSecOps in an Age of Accelerating Change
22:15 - 22:40
Michelle Watson (Cyber Intelligence Partners)
Cyber Intelligent Partners, Founder, President & CEO
5G What is it & What are the National and Economic Security Risks?
22:40 - 23:05
Joe Saunders (RunSafe Security)
RunSafe Security, Founder & CEO
Building security into your CI/CD pipelines
23:05 - 23:30
Yusuke Nirahara (Resilience Japan)
Organizer of DevSecOps Days Tokyo, Vice President & COO, Resilience Japan
Cyber Threats of AI/ML and Japanized way of DevSecOps Implementation
Lunch Break 23:30 - 0:00
0:00 - 4:55, Tuesday, October 6, 2020 (US-EST)
0:00 - 0:45
Hasan Yasar (CMU-SEI)
The Technical Manager of the Secure Lifecycle Solutions Group in the SEI's CERT Division
Key Note: 5 Common Challenges to Implement DevSecOps Successfully
0:45 - 1:10
Ren Kimura (Ricerca Security)
Founder&CEO, Ricerca Security
TBD
1:10 - 1:35
Evan Dornbush (Point3 Security)
Point3 Security, Inc.
Co-Founder and CEO
TBD
1:35 - 2:00
Keisuke Tsukagoshi (Google Cloud Japan)
Google Cloud
Application Platform Specialist
Enabling DevSecOps with Google Cloud and k8s
2:00 - 2:25
Shigeya Tanabe (Datadog Japan)
Datadog Japan
Enterprise Sales Engineer
Baking Cupcakes : Experiments in DevSecOps
2:25 - 2:50
Cameron Townshend (Sonatype)
Sonatype Lead Solution Architect, APJ
The Do's and Don'ts of Open Source Software Composition Analysis (SCA)
Break 2:50 - 3:20
3:20 - 3:50
Yusuke Nirahara & other available JP speakers
Q&A Session
3:50 - 4:15
Saburo Yukawa (BrainPad)
BrainPad, Inc. Manager, Engineering Group
DevSecOps by AI/Analytics Service Company: What's done & What to be done
4:15 - 4:40
Shingo Kitayama (Red Hat Japan)
RedHat Cloud Solution Architect OpenShift Architect
What should Container secuirty be like? Tips from RedHat's experiences
4:40 - 4:55
US Ambassador to Japan (TBD)
Closing Remarks
Official Sponsors
Platinum
Gold
Silver
