RVAsec is pleased to present Pentera as an RVAsec 15 Gold sponsor!
The Pentera Platform executes AI-driven adversarial testing in production to validate exploitability, prioritize remediation, and reduce exposure.
https://pentera.io
X (Twitter): @penterasec
From OSINT to Detection: Building an Agentic CTI Pipeline (<– add to your schedule)
Modern threat intelligence moves fast, but detection engineering lags. This talk presents an agentic workflow that transforms OSINT into actionable detections using structured extraction, LLM reasoning, and automated validation. Transparent, auditable pipelines accelerate the CTI lifecycle, from ingestion to Sigma rules, while preserving analyst control, reducing time-to-detection from days to hours.
Andrew Skatoff:
Andrew is a cybersecurity senior leader with over 20 years of experience protecting critical financial infrastructure within the national financial infrastructure. He leads large-scale programs spanning incident response, threat hunting, and detection engineering, and has served as Incident Commander for nationally significant cyber events.
He is the creator of Huntable CTI Studio, an open-source agentic workbench that transforms threat intelligence reports into actionable detections using transparent, auditable AI workflows. His work focuses on applying AI as a force multiplier for security teams—without sacrificing rigor, trust, or control.
RVAsec is pleased to present Sublime Security as an RVAsec 15 Gold sponsor!
Sublime stops more email attacks with less work. Our autonomous platform protects inbound, internal, and outbound email while continuously expanding organization-specific detection coverage without vendor bottlenecks. AI agents triage messages and generate new detections, with full transparency and control when needed.
A Peek Behind the Curtain: How A.I. Works (<– add to your schedule)
“A Peek Behind the Curtain: How A.I. Works” offers a clear, non-technical tour of how modern AI systems learn from data and generate predictions or content. The talk demystifies key concepts like training, inference, and model limitations so attendees can better understand what AI can—and can’t—do.
David Reign:
David Reign is a Security Analyst at Oracle with seven years of experience in information security, including three years supporting enterprise environments at scale. His work focuses on cloud security, virtualization, and strengthening security posture through practical risk management and control implementation. David holds a B.S. in Mathematics from Hampton University and an M.Eng. in Cybersecurity from the University of Maryland. He also maintains industry certifications including CompTIA Security+, CompTIA PenTest+, and GIAC Cloud Security Essentials (GCLD).
RVAsec is pleased to present Forcepoint as an RVAsec 15 Gold sponsor!
Protect sensitive data everywhere work happens. Forcepoint unifies DSPM, DLP and DDR to prevent breaches, reduce AI risk and stop data loss.
https://forcepoint.com
X (Twitter): @websense
RVAsec is pleased to present Cyera as an RVAsec 15 Gold sponsor!
Cyera is an AI-native data security platform that helps enterprises discover, classify, govern, and protect sensitive data across cloud, SaaS, on-prem, and AI environments.
https://cyera.io
X (Twitter): @cyera_io
RVAsec is pleased to present Halcyon as an RVAsec 15 Gold sponsor!
Halcyon is the cyber resilience platform that Global 2000 companies rely upon to defeat ransomware-as-a-service-borne attacks. With the fastest endpoint recovery methods ever built and multiple layers of resiliency, including bypass and evasion protection, key capture and automated decryption, and data extortion prevention, the Halcyon platform enables attacks to be undone in minutes.
https://halcyon.ai
X (Twitter): @HalcyonAi
Beyond the Tip of the Iceberg: Undercover HUMINT Operations Inside the Ransomware Ecosystem (<– add to your schedule)
Ransomware attacks often begin with Initial Access Brokers selling network access through private channels invisible to traditional intelligence. This session explores how Darkweb IQ uses undercover personas to engage threat actors directly, uncovering attacker tools, techniques, and vulnerabilities before incidents occur. It also highlights how this intelligence supports law enforcement and contributed to a DOJ case involving an ALPHV affiliate.
Thomas Nance:
Thomas Nance is the Director of Intelligence Services at Darkweb IQ and a former CIA Operations Officer, where he conducted espionage and counterterrorism missions built on human source development and clandestine collection. He specializes in applying HUMINT tradecraft to cybercrime ecosystems, with a focus on infostealer-driven threats and initial access broker networks.
Prior to Darkweb IQ, Thomas led intelligence operations and solutions architecture at Flashpoint, delivering undercover, persona-led intelligence for Fortune 500 clients. He later helped scale a YC-backed AI threat intelligence company, closing enterprise contracts while shaping product direction through direct customer feedback.
At Darkweb IQ, he built and scaled the Intelligence Services function, delivering actionable intelligence to the FBI, cyber insurers, and enterprise security teams that is collected directly from 1:1 engagements with cyber criminals. His work centers on engaging directly with criminal networks to identify and disrupt access sales before the access is sold to ransomware gangs.
RVAsec is pleased to present Access IT Group as an RVAsec 15 Gold sponsor!
AccessIT Group is a specialized cybersecurity solutions provider offering a full range of advanced security services that assist organizations.
https://accessitgroup.com
X (Twitter): @AccessITGroup
Alert Fatigue Is a Misdiagnosis (<– add to your schedule)
“Alert fatigue” is a misdiagnosis of a deeper problem: the cognitive decay of the human defender. This talk brings the receipts on how a high-consumption information diet hijacks the prefrontal cortex — and why the answer isn’t more automation, but rebuilding the creative muscle that makes humans worth keeping in the loop.
Kim Mahan:
Kim Mahan is the Founding Apprentice at MAXX Potential, a technology consulting firm whose “earn-while-you-learn” model has produced hundreds of engineers—including cybersecurity professionals—now at Capital One, AWS, Google and beyond. A CISSP and Six Sigma Black Belt with 20+ years in enterprise technology leadership at GE and Genworth Financial, Kim specializes in hacking the human element.
She is a contributing author of Lead With Empathy (with Chris Voss), where she coined “Operational Empathy”—the tactical art of building systems around what people actually need to succeed, rather than what credentialing systems say they should know. Her current work, Human Amplified, applies neuroscience to the “Information Diet,” framing passive consumption as a primary driver of cognitive atrophy and a critical vulnerability in the modern workforce. Previously named an “Innovator Changing the South” by Fast Company and Entrepreneur of the Year by NAWBO.
