Sean Barnum has responsibility for federal services clients. He has 20 years of experience in the software industry in the areas of development, software quality assurance, quality management, process architecture and improvement, knowledge management and security. He was previously Director of Knowledge Management with Cigital and a Senior Director of Knowledge Management, Process & Quality for Covansys, a mid-sized global technology consulting firm.
Sean is a frequent speaker at regional and national software security and quality conferences, seminars and events. He is active in the software assurance community and is involved in numerous knowledge standards-defining efforts. Among these are the Common Weakness Enumeration (CWE), the Common Attack Pattern Enumeration and Classification (CAPEC) and other elements of the Software Assurance Programs of the Department of Homeland Security and the Department of Defense. His technical expertise covers software security, software quality and process improvement, risk management, knowledge architecture and collaborative technologies. He has a BS in Computer Science and is an ME in Technology Management candidate from Portland State University.
Paco's areas of expertise include software security, security testing, code analysis, embedded systems, and smart cards. Paco has published articles on abuse cases in software design, PKI, and UNIX host security features. He is a prominent instructor and frequent lecturer at conferences like the Software Security Summit, STAR East, and the Better Software Conference. Paco was co-chair of VERIFY 2007, the International Conference on Software Testing. He is also co-author of Mastering FreeBSD and OpenBSD Security, published by O'Reilly and Associates. At Cigital, Paco has co-authored standards with MasterCard International governing the use of wireless LAN technology in merchant environments. He has also analyzed architecture and software for lottery systems, mobile phone systems, embedded gaming devices, and smart card applications. Prior to joining Cigital, he served as director of product development for Charlottesville, VA-based Tovaris, Inc. and head systems administrator in the Department of Computer Science at the University of Virginia. Paco majored in Computer Science and English at The College of William and Mary and received an M.S. in Computer Science from the University of Virginia.
Scott brings over 20 years of commercial software product development experience to the company. His experience encompasses development of component-based middleware, performance management systems, graphical UIs, language compilers, database management systems and operating system kernels.
Most recently Scott was the CTO of Spring Street Networks. Prior to that he was co-founder and CTO of Xtremesoft, which provided component-based application monitoring for Microsoft technology-based applications. Scott has held positions at other major software companies such as systems architect for Lotus Development. Prior to Lotus, Scott was a principal at Working Set, Inc., the software company that designed and implemented Digital Equipment Corp.'s SQL compiler. He was also one of the original designers of Digital's Relational Database system.
Scott is also a member of Hotel Technology Next Generation's Architecture Workgroup.
Sammy is an information security visionary with a proven record of entrepreneurial innovation, intellectual capital development, practical business solutions, and performance optimization. He has extensive day-to-day experience in chief technologies, applied R&D, and evangelist roles, working directly with customers, product management and product development.
At Cigital, Sammy works daily with customers and Cigital's best and brightest to keep corporate knowledge and people on the cutting edge of software security and quality, while also working on product innovation, software security course creation, and risk modeling and management. In previous positions, Sammy was VP, Knowledge Management at Cybertrust (formerly TruSecure) and Chief Scientist at iDEFENSE. Sammy is frequently sought out for press relations, TV, conference speaking, classroom instruction, executive briefings, and related knowledge transfer. He holds a BS in Computer Science and a Master's degree in Information Security.
John is a founding member of the company's Office of the CTO. He also holds the title of Principal for Cigital's Software Security practice. In these roles, John is responsible for helping to create Cigital's methodologies and build its intellectual property. His experience spans consulting, distributed systems architecture, operating systems, and software quality and security research. John works closely with Cigital's largest clients to define and roll out enterprise security frameworks as well as security improvement and delivery programs, using his experience with Cigital's Software Security, Quality Assurance, and Process Improvement practices to deliver clients innovative solutions.
John has served on conference panels regarding software security, wireless security, and J2EE system development. He is currently under contract with Addison Wesley to publish a book on developing large-scale J2EE software securely. In addition to his extensive Java software development and testing experience, he has served as a technical advisor on large financial securities trading systems, including a J2EE municipal bond trading system. He holds a B.S. in Computer Engineering and an M.S. in Computer Science from Case Western Reserve University.
