Program Speakers

Speakers – IT-DEFENSE 2018

Marc Gassert

Marc Gassert spent a major part of his life in different cultures on various continents and has learned the Asian martial arts with renowned grandmasters. He studied Communication Studies and Intercultural Communication in Munich and Japanese Studies in Tokyo. With master ranks in three Asian martial arts, he is the expert on “the Tao of discipline”. Marc Gassert is a speaker who transfers knowledge between Far Eastern and Western cultures.

Prof. Dr. Thomas Hoeren

Born in Dinslaken on August 22, 1961. 1980 – 1987 theology and law studies in Münster, Tübingen and London. 1986 Church licentiate degree in theology. 1987 First State Examination in Law, 1991 Second State Examination in Law. 1989 Doctorate at the University of Münster (title of dissertation: „Software Licensing as a Product Purchase“). 1994 Habilitation at the University of Münster (title of habilitation: „Self-regulation in Bank and Insurance Law). 1995 – 1997 Professor at the Law Faculty of the Heinrich-Heine University Düsseldorf (Professorship for Civil Law and International Business Law). Since April 1996 "Judge at the Court of Appeal (Oberlandesgericht) Düsseldorf. Since April 1997 Professor at the Law Faculty of the Westfälische Wilhelms-University Münster (Professor of IT Law and Legal Informatics) and Managing Director of the Institute for Information, Telecommunication and Media Law (ITM). Focus of research: IT law, legal informatics, bank and insurance law, competition and anti-trust law, international business law. Co-editor of the journals „Law, Computers and Artificial Intelligence“, „EDI-Law Review“ and „MultiMedia and Law“. Legal Adviser to the European Commission/DG XIII on the „Legal Advisory Board on Information Technology“. Member of the Task Force Group on Intellectual Property of the European Commission. Since June 2000: WIPO 2000, Domain Name Panelist. Member of the Communication Committee of the German UNESCO Commission. 2004: Research Fellow at the Oxford Internet Institute/Balliol College. Lecturer at the Academy of Art Münster, focusing on copyright law and art trade law. Lecturer on Information and IT law at the Universities of Zurich and Vienna. Member of the Kulturrat Münsterland. 2005: honored with the ALCATEL-SEL Research Award „Technical Communication“. Member of the Technical Committee for Copyright and Publishing Law of the German Association for Intellectual Property and Copyright Protection. Since 2006: Liaison lecturer at the Studienstiftung des Deutschen Volkes. Married, two children.

Mikko H. Hypponen

Mikko Hypponen is the Chief Research Officer for F-Secure. He has worked with F-Secure in Finland since 1991.

Mr. Hypponen has led his team through the largest outbreaks in history. His team took down the world-wide network used by the Sobig.F worm. He was the first to warn the world about the Sasser outbreak, he named the infamous Storm Worm and he has done classified briefings on the operation of the Stuxnet worm.

Mr. Hypponen has assisted law enforcement in USA, Europe and Asia on cybercrime cases. He has written for magazines such as Scientific American and Foreign Policy and for newspapers like The New York Times.

Mr. Hypponen has addressed the most important security-related conferences worldwide. He is also an inventor for several patents, including US patent 6,577,920 "Computer virus screening". He has been the subject of dozens of interviews in global TV and print media, including a 9-page profile in Vanity Fair.

Mr. Hypponen, born in 1969, was selected among the 50 most important people on the web by the PC World magazine. He also received the Virus Bulletin Award, awarded every ten years, as "Best in industry".

Apart from computer security issues, Mr. Hypponen enjoys collecting and restoring classic arcade video games and pinball machines from past decades.

Paula Januszkiewicz

Paula Januszkiewicz is CEO and founder of CQURE Inc. and CQURE Academy. She is also Enterprise Security MVP and a world-class cybersecurity expert, consulting customers all around the world.

She has 14 years of experience in the cybersecurity field, performing penetration tests, architecture consulting, trainings and seminars. She has performed hundreds of security projects, including those for governmental organizations and big enterprises. At the same time, Paula is a top speaker and a keynote speaker at many well-known conferences, including Microsoft Ignite (rated as No. 1 speaker among 1,100 speakers and 26,000 attendees), RSA (in 2017 in San Francisco, her session was one of the 5 hottest sessions), Black Hat, TechEd North America, TechEd Europe, TechEd Middle East, CyberCrime, etc., where she is often rated as No. 1 speaker. Her presentations gather thousands of people.

Paula also creates security awareness programs for various organizations, including awareness sessions for top management (telecoms, banks, government, etc.). Paula is passionate about sharing her knowledge with others. In private, she enjoys working with her research team, converting the results of her findings to authored leading-edge trainings and tools used in practice in projects. She wrote a book about Threat Management Gateway and is currently working on the next one.

She has access to a source code of Windows, an honor granted to just few people around the world!

Paula is a type that suffers when doing nothing; every year, she takes over 215 flights to provide security services to international organizations and enterprises. You can always expect some thoughtful ideas and interesting arguments!

Volker Kozok

Lieutenant Colonel Volker Kozok works as a technical officer in the legal department of the German Federal Ministry of Defence and is a proven cyber security expert. For more than 20 years, he has been working in various positions in the IT security of the German Armed Forces. In 2002, he planned and trained the Computer Emergency Response Team of the German Armed Forces.

He is a trained IT forensics expert and conducted the first training courses for computer forensics and incident management in the German Armed Forces.

He is a speaker at both national and international events, lecturing on cyber security and data protection topics, and he focuses on the “dark side of the Internet”, which includes the analysis of hacker attacks, cybercrime and social media attacks.

Since 2002, he has been leading the annual US study tour, where cyber security experts of the German Armed Forces and of the industry exchange views on cyber security with US offices and organizations in a 14-day trip in the United States.

At his annual confidential security conference, the international “Bulletproofhosting & Botnetkonferenz”, national and international representatives of the German Armed Forces, authorities, intelligence services, industry and the hacker scene exchange views on example cases, attacks and ways to react.

Nikhil Mittal

Nikhil Mittal Nikhil Mittal is a hacker, infosec researcher, speaker and enthusiast. His area of interest includes penetration testing, attack research, defense strategies and post-exploitation research. He has 8+ years of experience in penetration testing for his clients, which include many global corporate giants. He is also a member of Red teams of selected clients. He specializes in assessing security risks at secure environments that require novel attack vectors and an "out-of-the-box" approach. He has worked extensively on using human interface devices in penetration tests and PowerShell for post exploitation. He is the creator of Kautilya, a toolkit that makes it easy to use HIDs in penetration tests, and Nishang, a post-exploitation framework in PowerShell. In his spare time, Nikhil researches on new attack methodologies and updates his tools and frameworks. Nikhil has held trainings and boot camps for various corporate clients (in the US, Europe and SE Asia) and at the world’s top information security conferences. He has spoken/trained at conferences like DEF CON, Black Hat USA, Black Hat Europe, RSA China, Shakacon, DeepSec, PHDays, Black Hat Abu Dhabi, Hackfest, ClubHack, EuSecWest and more. He blogs at

Vesselin Popov

Vesselin Popov is the Business Development Director for the University of Cambridge Psychometrics Centre, a multidisciplinary research institute specialising in online behaviour and psychological assessment. Vess oversees the Centre’s commercial partnerships and focusses on the impact that Big Data and psychometrics, used together, can have in business and the community.
Vess also runs the Apply Magic Sauce project, a battery of predictive algorithms based on 8 million users’ psychological and social media data. Apply Magic Sauce API translates digital footprints of human behaviour into accurate psycho-demographic profiles, and can more accurately predict a user’s personality than people’s friends, family and loved ones. It makes psychological sense of social media data, such as Pages liked on Facebook or language used on Twitter.
Vess is a law graduate of Trinity College, Cambridge and has delivered Big Data projects for many global brands, such as Ubisoft, Hilton, Warner Bros., Nissan and National Geographic.

Marcus J. Ranum

Marcus J. Ranum is Chief Security Officer at Tenable Security, Inc. and is a world-renowned expert on security system design and implementation. He has been involved in every level of the security industry from product coder to CEO of a successful start-up. He is an ISSA fellow and holds achievement and service awards from several industry groups.


Starbug studied microsystems technology and computer engineering in Berlin. Since receiving his degree in engineering, he has worked at different Fraunhofer Society institutes, for security companies and as a freelance consultant. He is currently involved in the Security in Telecommunications (SECT) working group, a cooperation between Telekom Innovation Laboratories and the TU-Berlin. Starbug has been dealing with overcoming biometric systems for more than 15 years now, recently demonstrated when hacking the iPhone fingerprint sensor. He also inspects the security of microchips, e.g. the access system based on MIFARE Classic or the LEGIC prime chip installed in the immobilizer.

Changhoon Yoon

Changhoon Yoon is a PhD student at KAIST. He is working with Dr. Seungwon Shin at Network and System Security Laboratory, and his research interests primarily lie in the area of network security including SDN/NFV and IoT security. He has presented his recent work at NDSS, Black Hat USA, ONS and more.