NorthSec 2022

AppSec Block
2022-05-20, 11:50–12:20, Ville-Marie

Hosted panel discussion and Q&A.

Hosted panel discussion and Q&A.

What is the language of your talk/workshop?


Vickie Li is an experienced web developer with an avid interest in security research. She is also the author of Bug Bounty Bootcamp. She can be found on, where she blogs about security news, techniques, and her latest bug bounty findings. She also hosts “Security Simplified”, a developer education series focusing on web security:

This speaker also appears in:

Joëlle-Alexandra Desmarais-Lauzon is a graduate of HEC Montreal in business administration and holds a master's degree in software engineering from the Université de Sherbrooke.

Formerly with Deloitte, she has made her mark by holding numerous positions as an IT security consultant for several large Canadian institutions. She worked for Ubisoft as a security manager and led many topics such as IAM, business continuity, disaster recovery and security awareness. Joëlle now works as a Security Director, implementing security practices from the ground up, for a Montreal-based fin-tech disrupting the mortgage market.

Alongside her professional career, she is involved in various initiatives to promote women's leadership in IT.

She is also the co-founder of a small balcony optimization company, Demain Dimanche, whose products are proudly made in Montreal.

bhay Bhargav is the Founder of we45 and Chief Research Officer at AppSecEngineer, a focused Application Security Company. Abhay is a builder and breaker of applications.

He is the Chief Architect of "Orchestron", a leading Application Vulnerability Correlation and Orchestration Framework.

He has created some pioneering works in the area of DevSecOps and AppSec Automation, including the world’s first hands-on training program on DevSecOps, focused on Application Security Automation. In addition to this, Abhay is active in his research of new technologies and their impact on Application Security, namely Containers, Orchestration and Serverless Architectures. Abhay is a speaker and trainer at major industry events including DEF CON, BlackHat, OWASP AppSecUSA, EU and AppSecCali. His trainings have been sold-out events at conferences like AppSecUSA, EU, AppSecDay Melbourne, CodeBlue (Japan), BlackHat USA, SHACK and so on.

This speaker also appears in:

Yossi Weizman is a Senior Security Researcher in the Cloud Security Research team at Microsoft. He has 10 years of experience in the security research field, starting in the Israeli military. In his current role, Yossi’s main focus is container security. Yossi holds a B.Sc. in Computer Science from Bar-Ilan University.

This speaker also appears in:

Nate has been a hacker since he first laid hands on a 2400 baud modem. After his first hack of a dial-up BBS at 12, he was hooked and over the following 25 years he sharpened his skills through jobs in network engineering, vulnerability response, endpoint research and side projects - hacking phones & researching network attack surface. After a record-setting 4.5 years shipping Windows patches for the Microsoft Security Response Center and a brief stint in Windows Defender ATP, he is currently the Chief Technology Officer of Prevailion. He was featured in WIRED magazines’ “25 people doing good in 2020” for his role in starting CTI League, a volunteer group of InfoSec professions who provided threat intelligence to hospitals during COVID-19.

This speaker also appears in: