TeamSHATTER

Alex Rothacker

Alex Rothacker is the Director of Security Research for Application Security, Inc.’s (AppSec) TeamSHATTER. In his role, Alex manages a team comprised of some of the world’s most renowned databases security researchers. TeamSHATTER is regularly credited for identifying critical database vulnerabilities and misconfigurations in leading database management systems.

Before joining AppSec, Alex was a Director of Solutions at Visionics, a facial recognition software start-up. In addition, Alex has held various senior-level software development positions.

Alex holds an M.S. in Computer Science from New Jersey Institute of Technology and Diplom Informatiker from Fachhochschule Darmstadt (Germany).

Andrew C. Herlands, CISSP

Andrew Herlands is the Director of Security Strategy for Application Security, Inc.  Andrew brings more than two decades of experience delivering security and compliance solutions that address complex customer requirements.

Andrew leads AppSec’s global security services and consulting teams, and has overall responsibility for strategic planning and deployment of data security, risk, and compliance solutions to meet the needs of organizations around the world.

He continues to provide guidance to global organizations facing a wide range of regulatory, compliance, and security requirements, and shares his insight and knowledge by advising Fortune 1000 companies, participating on panels, and speaking at conferences such as InfoSec and the RSA Security Conference.

Just prior to Application Security, Andrew served as a Director of Network Security Solutions at SafeNet (Nasdaq: SFNT), as well as a number of other positions that helped build the organization to being a true “global leader in information security”.

Andrew is a Certified Information Systems Security Professional, and has received extensive security technologies and compliance training. He earned his Bachelor of Science degree in Corporate Communications from Ithaca College, and currently lives in New York City.

Vladimir Zakharevich

Vladimir Zakharevich is a Security Researcher at AppSec. Before joining AppSec, Vladimir was a developer at IndustryBrains Inc. in NYC,where he analyzed behavior of Search Engine Robots and constructed filter algorithms. While a Software Engineer at Focke & Co. in Verden, Germany; Vladimir participated and took 2nd place in 2005 NYC area digital forensics competition (CSAW) and currently holds NSTISSI 4011 and 4013 security certificates.

Vladimir holds a B.S. degree in Computer Science, with specialization in Computer Security, from NYU Poly.

Martin Rakhmanov

Martin Rakhmanov is a Senior Security Researcher at AppSec. Martin is credited with discovery of multiple vulnerabilities in database software, network servers and web browsers.

Prior to AppSec, Martin was a team lead at Reksoft.

Martin holds a BS degree in Economics from Saint-Petersburg State Technical University, Russia

Cesar Cerrudo

Regarded as a leading application security researcher, Cesar is credited with discovering and helping to eliminate dozens of vulnerabilities in leading applications including Microsoft SQL Server, Oracle database server, IBM DB2, Microsoft BizTalk Server, Microsoft Commerce Server, Microsoft Windows, Yahoo! Messenger, etc. Cesar has authored several white papers on database, application security, attacks and exploitation techniques and he has been invited to present at a variety of companies and conferences including Microsoft, Black Hat, Bellua, CanSecWest, EuSecWest, WebSec, HITB, Microsoft BlueHat, EkoParty, FRHACK, H2HC, etc.
Cesar collaborates with and is regulary quoted in print and online publications including eWeek, ComputerWorld, and other leading journals.

Esteban Martinez Fayo

Esteban Martínez Fayó is a security researcher; he has discovered and helped to fix hundreds of security vulnerabilities in major vendor software products including software from Oracle, IBM and Microsoft. He specializes in application security and is recognized as the discoverer of most of the vulnerabilities in Oracle server software. Esteban has developed and presented novel database attack and defense techniques at international conferences such as Black Hat and is a regular Oracle Database security trainer.