BSides Manchester 2019
BSides Manchester would not be possible without the help and support of the fantastic sponsors and supporters, so a big thank you to all our sponsors and supporters.
NCC Group is a global expert in cyber security and risk mitigation, working with businesses to protect their brand, value and reputation against the ever-evolving threat landscape.
With our knowledge, experience and global footprint, we are best placed to help businesses identify, assess, mitigate & respond to the risks they face.
We are passionate about making the Internet safer and revolutionising the way in which organisations think about cyber security.
Headquartered in Manchester, UK, with over 35 offices across the world, NCC Group employs more than 2,000 people and is a trusted advisor to 15,000 clients worldwide.
Arcturus is a leading people-driven cyber security consultancy built by cyber security experts.
We enable organisations to operate more securely, pushing the boundaries of innovation to deliver actionable results that are easy to understand and lead to positive change within organisations. Whether you are a boutique technology company or a multi-national listed corporation, we have the experience and skill to improve your security position.
Our comprehensive assessment methodology positions us at the cutting-edge of technology innovation and this, in combination with comprehensive reporting and support from our consultants, enables us to guide you through the ever-changing cyber security landscape.
Find out more here: arcturussecurity.com
Elastic is the world’s leading software provider for making structured and unstructured data usable in real time for use cases like search, logging, security, and analytics. Founded in 2012 by the people behind the Elasticsearch, Kibana, Beats, and Logstash open source projects, the Elastic Stack, X-Pack, and Elastic Cloud have had more than 100 million cumulative downloads to date. Elastic is backed by Benchmark Capital, Index Ventures, and NEA with headquarters in Amsterdam and Mountain View, California, and offices and employees around the world. To learn more, visit www.elastic.co.
PortSwigger Web Security is the creator of Burp Suite, the leading toolkit for web security testing. For over a decade, Burp has pushed the boundaries of web security testing tools, and is the product against which any imitator must be judged. Based in Knutsford, Cheshire, we are right on the doorstep of BSides Manchester, and we are very happy to be supporting the local infosec community.
The Web Security Academy - https://portswigger.net/web-security
The Daily Swig - https://portswigger.net/daily-swig
Novacoast helps organizations find, perfect & create solutions for a powerful security posture through advisory, engineering, development & managed services. Above all, we are a resource engine. We find and foster fearlessness and ingenuity, supporting resources with comprehensive project and delivery management services and a culture of creative problem solving.
Established in 2003, MWR InfoSecurity is a cyber-security consultancy with research at the heart of what we do. CIR-accredited and a Crown Commercial Service Supplier, we provide specialist advice and solutions in all areas of security, from professional and managed services, through to developing commercial and open-source security tools. We focus on working with clients to develop and deliver security programs, tailored to meet the needs of each individual organization.
In June, MWR signed an acquisition agreement with F-Secure. The combined company is one of the few truly global technical security advisors positioned to help organizations fight today’s most sophisticated threats.
We’re one of the world’s largest consumer co-operatives, owned by millions of members. We’re the UK’s fifth biggest food retailer with more than 2,500 local, convenience and medium-sized stores.
· the UK’s number 1 funeral services provider
· a major general insurer
· a growing legal services business
As well as having clear financial and operational objectives and employing nearly 70,000 people, we’re a recognised leader for our social goals and community-led programmes. We exist to meet members’ needs and stand up for the things they believe in.
So, the more successful we are, the more we can give back to you and your local community.
That’s why we’re different. https://www.coop.co.uk/
PwC is home to one of the world’s leading cyber security practices. The purpose of the practice is to build a secure digital society. This is achieved by providing a comprehensive range of services to help clients assess, build and manage their cyber security capabilities.
The Ethical Hacking team sits within Cyber Security. We help our clients to better understand the vulnerabilities of their IT environments by simulating the actions of real-world threat actors. This can involve anything from hacking web applications to sneaking into offices to gain a foothold on an internal network!
HackerOne is the #1 hacker-powered security platform, helping organizations find and fix critical vulnerabilities before they can be exploited. More Fortune 500 and Forbes Global 1000 companies trust HackerOne than any other hacker-powered security alternative. The U.S. Department of Defense, General Motors, Google, Twitter, GitHub, Nintendo, Lufthansa, Microsoft, MINDEF Singapore, Panasonic Avionics, Qualcomm, Starbucks, Dropbox, Intel, the CERT Coordination Center and over 1,400 other organizations have partnered with HackerOne to find over 120,000 vulnerabilities and award over $58M in bug bounties. HackerOne is headquartered in San Francisco with offices in London, New York, the Netherlands, France and Singapore.
Founded in 2003, Nettitude is an award-winning global provider of cyber security services including penetration testing, red teaming exercises, vulnerability assessments, managed security services, incident response services, PCI compliance assessments, cyber security and risk consulting, and more. Nettitude provides cyber security services to leading global organizations, including central banks, stock exchanges, major retailers and government organizations.
Nettitude’s team of testers hold the highest technical qualifications available. We are proud to be one of a handful of companies worldwide that are certified by CREST for a number of services, and the first in the world for our SOC services. Nettitude is also a PCI ASV, PCI QSA, P2PE QSA, PA QSA and ISO 27001 lead auditor, and an approved provider of STAR testing services. Our highly regarded accreditations are underpinned by our rigorous quality practices and procedures, which are demonstrated throughout Nettitude.
Nettitude is a member of the Lloyd’s Register (LR) Group, a leading global provider of professional engineering and technology services in over 185 locations worldwide. https://www.nettitude.com/
I'm a paragraph. Click here to add your own text and edit me. It's easy.
Check Point Software Technologies Ltd. is a leading provider of cyber security solutions to corporate enterprises and governments globally. Its solutions protect customers from 5th-generation cyber-attacks with an industry leading catch rate of malware, ransomware and other targeted attacks. Check Point offers a multilevel security architecture with its new Gen V advanced threat prevention that protects all networks, cloud and mobile operations of a business against all known attacks combined with the industry’s most comprehensive and intuitive single point of control management system. Check Point protects over 100,000 organizations of all sizes
ARM is an award-winning, global technology and engineering recruitment agency. For over 20 years, we've filled specialist positions across competitive industries, where talent is scarce and in demand. We take time to build relationships, enabling us to truly understand requirements; using knowledge, experience and cutting-edge machine-learning solutions to successfully fulfil them.
The ARM Cyber Security Team operates within various niche cyber marketplaces, helping clients connect with hard-to-find cyber security talent and helping talented professionals secure new opportunities within this ever-changing industry. We strive to evolve with the marketplace, and employ cyber security experts in other areas of the business to help with non-standard cyber recruitment projects and programmes.
After Party Sponsors
Pentest Limited provide research-led penetration testing, elite red teaming and offensive security consultancy services. Our services are designed to not only uncover IT security vulnerabilities but to support ongoing information security efforts, to pass on our wealth of expertise and to increase the digital resilience of your business.
More details of the after party here
OWASP is a not-for-profit, open community dedicated to enabling organisations to conceive, develop, acquire, operate, and maintain applications that can be trusted. All of the OWASP tools, documents, forums, and chapters are free and open to anyone interested in improving application security.
The Manchester chapter was formed in 2011 and hosts quarterly meetings featuring presentations from industry speakers.
Find out more about the Manchester chapter here:
CREST is an international not-for-profit accreditation and certification body that represents and supports the technical information security market
CREST provides internationally recognised accreditations for organisations and professional level certifications for individuals providing penetration testing, cyber incident response, threat intelligence and Security Operations Centre (SOC) services.
The North West Regional Organised Crime Unit and is a collaboration between the six police forces in Cumbria, Cheshire, Lancashire, Greater Manchester, Merseyside and North Wales to tackle serious organised crime that crosses county borders in the region. The Cyber Crime Unit tackles Cyber Crime and Cyber-attacks, specialising in tracking down those engaged in large-scale computer fraud, identity theft as well as tackling the most serious computer hacking investigations. They also raise awareness to business, education and the general public of the potential risk and impact of Cybercrime along with simple steps which can be taken to prevent becoming a victim..