Tag Archives: sas

10 years of sensational SAS.

Many different cyber-professional events take place around the world every year. Out of all of them I have one special favorite – our own special one for cybersecurity analysts: SAS (Security Analyst Summit). And every year they just get better and better and bigger and bigger. This time we had 320 guests from 30+ countries – mostly from the Americas and Europe, but also seven experts from Australia, and participants from Singapore, Japan, Taiwan, Malaysia and Saudi Arabia. Representatives of large companies were in strong attendance as usual (from Microsoft, Google, Apple, Cisco, Sony, Honeywell, Cloudflare, Pfizer, SWIFT, Chevron, Citibank and others), but there were also folks from the cyber-police of different countries, plus government agencies and departments from the UK, Netherlands, Canada, France, China, South Korea, Switzerland, Austria, Romania and Kazakhstan. There were non-commercial and educational organizations (like, among others, the Electronic Frontier Foundation and the University of Texas, respectively). And a big thanks to our conference partners and sponsors, namely: Qintel, Avast, Telstra, Microsoft, ThreatBook, Talos, Security Week and Threatpost. In short, folks from all over and from diverse fields, demonstrating the degree of trust in and respect for our company.

Like me, SAS likes to travel the world, avoiding the large Congress centers of big boring cities, preferring instead stunning exotic locations with a warm climate and in the immediate vicinity of warm ocean.

SAS has been held in Croatia, Cyprus and Malaga on the Mediterranean; in Mexico’s Cancun in 2012 and 2015; on the Spanish island of Tenerife; and the Dominican Republic, Puerto Rico and St. Maarten in the Caribbean. And here we are once again back in Cancun for this, our 10th SAS! Hooray!

It all began in the year 2009. 60 guests – 55 of which were KL staff! – each sharing their notes on research and experience in cybersecurity. Those humble beginnings quickly grew into large-scale industry events with more than 300 high-level delegates (only ~30% of which were from KL). This year’s event was extra special because of the jubilee, and the participants didn’t seem disappointed…

Read on…

A Caribbean Cyber-Summit: Gotta Love it.

A long time ago, in the prehistoric digital era, in a world of big trees while we were a mere bonsai, we started throwing a yearly conference for a select few of the most forward-thinking experts in information security. We christened it the Security Analyst Summit (SAS for short), and right from the get-go we wanted to make it the best event of its kind in the world. And when I say best, I mean both in terms of content:

…And in terms of a relaxed and fun atmosphere:

And to make the best even more memorable for all who take part in it, we traditionally throw SAS at a location with among the most unbearable conditions in the world. That is, always next to beach in a tropical clime :-).

Read on: Example…

It’s a tough job, but someone’s got to do it.

Every February several hundred of the world’s top IT security experts gather in a sunny beach resort, be it in the Americas, Europe, Asia, or just off the coast of Western Africa. But they don’t go for the sun, per se. Or the beach. Or the beach-bar cocktails. They go… to fight cyber-swine! At least, that’s what they attempt to tell their loved ones when they disappear for a week in Feb to this year’s chosen idyllic paradise.

And this year’s idyllic paradise was the Canary Islands – chosen for, you guessed it, the Security Analyst Summit (SAS), our annual special pow-wow for IT security gurus. SAS brings together InfoSec big guns from different companies, with different specializations, from all over the globe, to basically just chew the fat, sometimes formally – mostly informally – in air-conditioned basement conference halls – and on sun loungers on the beach (oops, the secret’s out for those loved ones:) – in order to help more folks understand the where and how and why of IT threats by exchanging expert know-how and experience.

security-analyst-summit-2016-1

security-analyst-summit-2016-2

Read on: The world is NOT doomed…

Cancunference 2015.

Some ten-plus years ago, our then still quite small company decided to push the boundaries – literally: we went transnational. Before long we found we had expert-analyst KLers working in all corners of the globe, all of them communicating with one another by email, messengers, telephone and other indirect means. Nothing wrong with that really, but still, it’ll never beat face-to-face interaction. So we decided to have a yearly jamboree where we’d all get together and top up on the much needed proper face time. That was when our annual conference for IT security experts was born: the Security Analyst Summit (SAS).

cancun-mexico-sas2015-1

cancun-mexico-sas2015-2

Read on: Work hard, play hard, like always…

SAS-2015: cyber-savvy and cyber-sassy.

February 15-18, 2015 is fast approaching…

Over those four days we’ll be having our annual (seventh) conference on information security, whose main topic will be modern-day cyberattacks and protecting against them besides a whole load of other assorted cyberthreat themes. The winter summit in warmer climes, this year in Cancun, Mexico: the Security Analyst Summit 2015 (SAS).

So, just remember, the main security industry hashtag of mid-Feb this year is this one: #TheSAS2015


(No security experts were harmed during the shooting of this video)

SAS is an exclusive, invite-only gig, with only the cream of the world’s crop of top IT security movers and shakers taking part. It’s not massive – it’s more intimate, which means it’s more meaningful and more gets done – and twice as engaging and interesting for all participants. But don’t feel left-out by this guest-list-only cliquishness. Opaque – us? :). Just about all what’s discussed we’ll be swiftly publishing as tweets and blogposts (see the hashtag above and the blog links below).

Meantime, if you want more detail about what goes on at SAS and some SAS history, have a read of this.

This year’s bash promises lots of very interesting content, including a world premiere or two plus other important announcements, as per tradition. The main themes are targeted attacks and cyber-militarization, and how to combat both. Also on the agenda are: mobile malware, vulnerabilities management, cyberattack analysis methods, intra-security-expert-industry cooperation, and more besides.

There’ll be both presentations of the ‘for all’ format, and also highly specific, specialized ones for the pros (like for example reverse engineers). And there’ll be a special bit this year on protecting critical infrastructure – which promises to be very useful due to both the timeliness and the number of top-notch experts who are going to be taking part.

Have a look for yourself: the program’s ready and online already.

Caribbean conference triathlon.

Hi folks!

Some time in early February every year we put on three of our most important events – all in one place, one after the other, back to back:

This year the triathlon lasted a week and a half. Non-stop presentations, discussions, negotiations and other meetings. The all-in-one-place idea is to avoid excessive globetrotting by the hundreds who attend. So it’s like three vultures (see below) with one stone. That’s all very well, but such an Ironman multi-conference… well, it’s pretty intense keeping it up that long. Mercifully, three perennial lifesavers here make up for that: beautiful turquoise sea, clear blue sky, and perfect beaches. Phew.

Security Analyst Summit 2014

Read on: Paradisiacal funky stuff…