What would a conference be without speakers, BSides Boulder seeks to bring you the best in content from the Boulder area and beyond. With that said we would like to introduce you to this years speakers.


Greg Foss

Principal Cloud Security Researcher at Lacework Labs

Greg Foss is a Principal Cloud Security Researcher with Lacework Labs, where he focuses on large-scale data science and threat research intending to help secure customers' cloud environments. Foss has led a threat research team, built and ran a global security operations program, consulted in red teaming, and worked as a security analyst for the Federal Government in previous roles. In his free time, Foss spends time with his wife and two children and is an avid runner and swimmer.

Twitter @35Foss


Nathaniel Quist

Demystifying Cloud Security

Nathaniel Quist is a Principal Researcher working with Palo Alto Networks Unit 42 and Prisma Cloud teams on researching the threats facing public cloud platforms, tools, and services. He is actively focused on identifying the threats, malware and threat actor groups that target cloud environments.

Nathaniel has worked within Government, Public, and Private sectors and holds a Master of Science in Information Security Engineering (MSISE) from The SANS Institute, where he focused on Network and System Forensics, Malware Reversal, and Incident Response. He is the author of multiple blogs, reports, and whitepapers published by Palo Alto Networks’ Unit 42 and Prisma Cloud as well as the SANS InfoSec Reading Room.

Alexander Wise

Technical Account Manager - Verica

Alex is a software engineer, cloud security researcher, and free software advocate best known for his work with the Software Freedom School, teaching beginner-accessible classes on DevOps practices and open source technologies.

Jack Mott


jack is a senior security analyst who does detection engineering, fights platform abuse, and likes security research.

Jason Williams

Principal Security Researcher, TwinWave

Jason currently spends his time generating phishing detections for the malware analysis platform TwinWave. Previously he worked at Emerging Threats generating many thousands of rules for malware and phish for the community. He isn’t entirely sure how phishing ended up being his specialty but, here we are. A below average zwifter and avid onewheeler, when he’s not repairing broken pinball machines, he is probably ripping apart phishkits and writing giant regular expressions.

Karan Dwivedi

Security Manager at Google

Karan Dwivedi is a manager and technical lead in the security team at Google. He has over 6 years of experience specializing in digital forensics and incident response. Prior to Google, he was part of the incident response team at Yahoo where he gained experience in responding to the world’s largest breach. He serves as a program committee member of the DFRWS conference and DFIR Reviews publication. He graduated from Carnegie Mellon University with a Masters in Information Security in 2016. He owns the blog allthingspwned.com where he provides interviewing advice for security engineers. His articles are provided as a reference by Google’s hiring team.

We would like to thank the following people: Best Boy => Still Wills Cat (234-55-2987) Lead Pew-Pew-er => Will Shand (345-26-7645)