Papers | Articles | Talks

I am a frequent speaker at industry events, invited talks, and at leading conferences & workshops.

If you’re interested in booking me for speaking engagements, I’d love to connect — feel free to reach out!

Advisory / 14 Nov, 2024

OECD

Working Party on Digital Security (WPDS)

This roundtable will bring together two leading experts to present their views on markets for vulnerabilities and discuss it with delegates. I will present the case for establishing a nation-wide bug bounty program.

Event | Slides
Talk / 23 Oct, 2024

Swisscard AECS

Security Day - Training & Live Hack Demo

Event
Keynote / 01 Oct, 2024

BSides Conference Bern

Complexity did not kill the cat

Today, we build and use complex systems that we no longer fully understand. Past assumptions are no longer valid, and complete prevention is unattainable. It is s time to challenge our assumptions about complexity and how to handle uncertainty.

Event | Slides
Course / 24 Jun, 2024

D-MTEC ETHZ

Resilience: Beyond Risk Management

Event
Course / 23 Jun, 2023

HSG & ETHZ

eMBA Risk & Resillience

Event
Course / 19 Jun, 2023

D-MTEC ETHZ

Resilience: Beyond Risk Management

Event
Talk / 30 Sep, 2022

CISO Breakfast Club | isolutions AG

Re-thingking penetration testing.

Event | Slides
Course / 21 Jun, 2022

D-MTEC ETHZ

Resilience: Beyond Risk Management

Event
Talk / 27 May, 2022

CAS Business Intelligence & Analytics | Hochschule Luzern

Securing SDX & Cyber Threat Modelling

Event
Course / 16 May, 2022

Risk Modelling and Management | ETH Risk Center

Cyber Threat Modelling

Event
Talk / 04 May, 2022

Lunch & Learn | bmpi AG

Key Drivers of Cyber Security

Event | Slides (private)
Seminar / 06 Apr, 2022

CAS Cyber Threats & Developments | ETHZ NADEL

Cyber security, threats, and developments

Event | Slides (private)
Talk / 24 Mar, 2022

Lunch & Learn | EBP AG

Key Drivers of Cyber Security

Event | Slides (private)
Talk / 23 Mar, 2022

Cyber Risks | Albaniclub Winterthur

Cyber Risk

Event
Talk / 14 Mar, 2022

Prism Corporation - Salon Talk

Key Drivers of Cyber Security

Event
Panel / 12 Oct, 2021

Workshop on Digital Security & Safety | OECD

Key issues at the interface of product safety and digital security in IoT

Event | Reports
Talk / 17 Sep, 2021

ISF Grey Chapter Meeting

Re-thinking penetration testing - lessons learned

Event | Slides
Talk / 22 Mar, 2021

Technische Gesellschaft (TGZ) | Zürich

Key Drivers of Cyber Security

Event
Keynote / 27 Aug, 2020

CAS Datenschutz & Datensicherheit | HWZ

Key Drivers of Cyber Security

Event
Keynote / 19 Dec, 2019

Sicherheitsaspekte bei IT-Beschafungen | ISSS Berner Tagung

Supply Chain Risks

Event | Slides
Talk / 19 Sep, 2019

ETH Zurich Event

Saftey & Security in critical complex systems

Event
Keynote / 19 Aug, 2019

Cyberbedrohungen | VBS IOS Academy

Key Drivers of Cyber Security & Any lessons from history?

Event
Talk / 01 Jun, 2019

Basler Investors Club (BIC)

Key Drivers of Cyber Security & Any lessons from history?

Event
Talk / 01 Apr, 2019

DFS Deutsche Flugsicherung Sicherheitstag | Frankfurt

Cyber Threats in Aviation - Any lessons from history?

Event | Slides
Talk / 01 Feb, 2019

12th Swiss Cyber Think Tank

Security and Integrity of the Supply Chain

Event
Talk / 01 Nov, 2018

Swedish Chamber of Commerce with Danske Bank

Cyber Security - Keeping pace with cyber security in the digital age

Event
Talk / 01 May, 2018

Risk Board Meeting | Ricola AG

Key Drivers of Cyber Security & Any lessons from history?

Event
Talk / 01 May, 2018

IOT Security Workshop | Mettler Toledo

Design for Security

Event
Talk / 13 Apr, 2018

Kadertagung | Kdo Mech Br 11

Key Drivers of Cyber Security & Any lessons from history?

Event
Talk / 01 Apr, 2018

Polymesse | ETH Zurich

The Challenges of IOT and ICS Security

Event
Talk / 07 Mar, 2018

Eidgenössisches Institut für Metrologie METAS

Key Drivers of Cyber Security

Event
Talk / 01 Nov, 2017

Danish Swiss Chamber of Commerce

Cyber Security - Key drivers and no crash-test dummies

Event
Keynote / 21 Nov, 2017

Parlamentariertreffen 2017 | Offiziersgesellschaft des Kt. St. Gallen

Cyber Security

Event | Slides
Keynote / 01 Mar, 2017

Start Hack | HSG St. Gallen

IOT Security

Event
Panel / 01 Apr, 2016

Swiss Cyber Think Tank

Cyber- Risk and Insurability - Are we prepared

Event
Talk / 20 Apr, 2016

8. Verkehrspilotentag der Vereinigung Cockpit | Frankfurt

Cyber Threat in Avitation - Any Lessons from other Industries Experience with Cyber?

Event | Slides
Talk / 01 Sep, 2015

ISF Grey Chapter Meeting

Supply Chain Security & Integrity

Event | Slides
Talk / 16 Sep, 2015

ISD Internet Security Days | Köln

Supply Chain Security & Integrity

Event
Keynote / 01 Sep, 2015

18. FHP-Symposium | Rüdesheim

Cyber Threats & Aviation - Any Lessons from other Industries Experience with Cyber?

Event | Slides
Keynote / 01 Dec, 2014

BSides Conference Hamburg

The Known Unknowns & Outbidding Cyber Criminals

Event | Slides
Talk / 01 Sep, 2014

ISSS Security Lunch

The Known Unknowns & Outbidding Cyber Criminals

Event
Talk / 24 Sep, 2014

ISD Internet Security Days | Köln

The Known Unknowns & Outbidding Cyber Criminals

Event
Talk / 01 May, 2014

Area 41 Security Conference | Zurich

International Vulnerability Purchase Program

Event | Slides | Paper
Panel / 01 May, 2014

IT-Security INSIDE 14 | Avantec AG

Defense Evasion Modeling

Event | Paper
Talk / 01 Nov, 2013

ISF World Congress | Paris

Defense Evasion Modeling - Fault correlation and bypassing the cyber kill chain

Event | Papers Cyber Kill Chain
Talk / 01 Oct, 2013

ISSS Information Security Switzerland Conference | Lausanne

Defense Evasion Modeling

Event | Papers Cyber Kill Chain
Talk / 01 May, 2013

Deutscher IT-Sicherheitskongress | BSI Bonn

Cybercrime Kill Chain vs. Defense Effectiveness

Event | Papers Cyber Kill Chain
Talk / 01 Mar, 2013

ISSS Security Lunch

Verteidigung unter Angriff

Event
Talk / 01 Mar, 2013

Vendor Briefings | RSA Conference

Cybercrime Kill Chain & Vulnerability Threat Trends

Event | Papers Cyber Kill Chain
Talk / 01 Dec, 2012

BlackHat Middle East Briefings | Abu Dhabi

Cybercrime Kill Chain vs. Defense Effectiveness

Event | Slides | Papers Cyber Kill Chain
Talk / 01 Nov, 2012

ISF World Congress | Chicago

Cybercrime Kill Chain vs. Defense Effectiveness

Event | Slides
Talk / 11 Aug, 2011

Experimental Security Panoramas Workshop (ESP)

The Dynamics and Threats of End-Point Software Portfolios

Event
Talk / 01 Jun, 2011

Annual FIRST Conference | Vienna

The Dynamics and Threats of End-Point Software Portfolios

Event
Talk / 11 May, 2011

3rd Swiss Cyber Storm Conference

Fixing the Fundamental Failures of End-Point Security

Event | Slides
Talk / 01 Mar, 2011

e-Crime & Cybersecurity Congress | London

Fixing the fundamental failures of endpoint security

Event
Talk / 01 Feb, 2011

Vendor Briefings | RSA Conference

Fundamental Failures of End-Point Security

Event
Talk / 01 Jan, 2011

Annual CISO Middle East Summit | Dubai

Fundamental Failures of End-Point Security

Event | Slides
Talk / 01 Nov, 2010

World Congress | SC Magazine

The Fundamental Failures of End-Point Security

Event | Slides
Talk / 10 Mar, 2010

e-Crime & Cybersecurity Congress | London

Criminals do not need to target Microsoft

Event | Slides
Keynote / 01 Nov, 2009

Kaderforum des Polizeidepartements der Stadt Zürich

Cybercrime Operations & Web 2.0 Threats

Event | Slides
Talk / 01 Sep, 2008

«Sicherheit in der digitalen Welt» | SwissSign

Trickbetrüger im Internet - von Phishing, Spam und organisiertem Verbrechen

Event
Talk / 01 Jun, 2008

Annual FIRST Conference | Vancouver

Putting private and government CERT's to the test

Event | Slides
Talk / 01 Mar, 2008

BlackHat Europe Briefings | Amsterdam

0-Day-Patch Exposure - Exposing vendors patch performance

Event | Slides
Talk / 01 Aug, 2006

BlackHat USA Briefings | Las Vegas

The speed of (in)security

Event | Slides