About

As President and CEO, Sumedh leads the company's vision, strategic direction and implementation. He joined Qualys in 2003 in engineering and grew within the company, taking various leadership roles focused on helping Qualys deliver on its platform vision. From 2014 to 2021, he served as Qualys' Chief Product Officer, where he oversaw all things product, including engineering, development, product management, cloud operations, DevOps, and customer support. A product fanatic and engineer at heart, he is a driving force behind expanding the platform from Vulnerability Management into broader areas of security and compliance, helping customers consolidate their security stack. This includes the rollout of the game-changing VMDR (Vulnerability Management, Detection and Response) that continually detects and prevents risk to their systems, Multi-Vector EDR, which focuses on protecting endpoints as well as Container Security, Compliance and Web Application Security solutions. Sumedh was also instrumental in the build-up of multiple Qualys sites resulting in a global 24x7 follow-the-sun product team.

About

Sarah Armstrong-Smith is a leading authority on cyber resilience and crisis management. As Microsoft's Chief Security Advisor for Europe, the Middle East and Africa, she advises governments and global enterprises on how to prepare for, respond to, and recover from serious cyber incidents. Her work focuses on embedding resilience into digital transformation and helping organisations navigate the complex intersection of risk, regulation and innovation.
With over 25 years of experience, Sarah has held senior positions in both the private and public sectors. At Fujitsu, she led Continuity and Resilience, while at the London Stock Exchange Group she was Head of Business Resilience and Crisis Management. She began her career addressing large-scale events such as the Millennium Bug, laying the foundation for her expertise in managing disruption at scale.
Sarah is the bestselling author of Understand the Cyber Attacker Mindset (2024) and Effective Crisis Management (2022), and a Fellow of the British Computer Society. Recognised as one of the Top 30 Female Cybersecurity Leaders by SC Media in 2024, she is a vocal advocate for diversity in tech and a trusted voice in board-level cyber strategy.
Known for her clarity and accessibility, Sarah translates technical risk into practical, actionable guidance. On stage, she combines real-world case studies with forward-looking insights into evolving threats such as AI, deepfakes and the future of cybercrime. She equips audiences with the tools to lead confidently through uncertainty and build cultures of resilience.

About

About

Now serving as Kering Head of CERT. Created and continuously improved the group's global incident response capability over the last 4 years—covering SOC, CSIRT, VOC, and CTI for 15 Houses and 47,000 employees across 75 countries—achieving TF-CSIRT certification and SIM3 maturity level. Over 15 years' experience from energy sector (CEA, EDF) to luxury retail, spanning full security stack: SOC tooling, management, and luxury-specific threats.
French cybersecurity community contributions include authoring *Cybersecurity & PowerShell* (ENI), 8 MISC magazine articles, EPITA engineering school instruction, and podcast appearances. Passionate mountaineer; graduated from the regional alpinism team in 2019.

About

I am Kelly Butler, the Head of Cyber for Marsh UK, where I lead the strategic development and delivery of innovative cyber insurance solutions.
With over 24 years of experience in the insurance industry, I drive growth and retention strategies through dedicated regional practices, ensuring our clients receive cutting-edge advisory and placement services. As a passionate leader and respected voice in the industry, I champion clients' needs, educating stakeholders on business risks and customizing coverage to address specific challenges.
My commitment to excellence empowers organizations to navigate the complexities of cyber, technology, and media risks effectively.

About

With nearly 50 years' experience in the security and crime prevention industries, Martin Smith is a well-known and highly respected personality in the cyber security world. In 2004 he founded The Security Awareness Special Interest Group (SASIG) as a subscription-free networking forum for cybersecurity practitioners. Its 11,000+ membership represents some 4,500+ organisations from both the public and private sectors and is drawn from CIOs, CTOs, CSOs, CISOs and their staff with responsibility for security, privacy and data protection within their organisations. Professionals from other disciplines (risk, HR, legal, supply etc.) and representatives from government, law enforcement and academia are also being increasingly welcomed at its events.
Martin is a Fellow of The Security Institute and a Freeman Emeritus of the Worshipful Company of Information Technologists. In 2017, he received a lifetime achievement award for his services to the security industry. In 2024, he received a Commendation from the City of London Police Commissioner and the National Police Chiefs' Council for his lifetime's work in combatting cybercrime.

About

Michael Vaughan assured his place in cricket history with England's historic Ashes victory in 2005 and has gone on to become one of the sport's most respected commentators.
Michael underlined his status as a household name by appearing on BBC's 'Strictly Come Dancing' in 2012 and the Christmas Special in 2018.
A keen golfer, Michael has participated in the Alfred Dunhill Links Championship on a number of occasions.

About

About

About

About

Jonathan Trull is a longtime security practitioner and CISO, EVP & GM Risk Management Business with over 18 years of experience in the cybersecurity industry and is currently the Senior Vice President of Customer Solutions Architecture and Engineering at Qualys. His career has spanned operational CISO and infosec roles with the State of Colorado, Qualys, Optiv, and Microsoft. While at Microsoft, Jonathan led the Microsoft Detection and Response Team (DART) whose mission was to respond to cyber security incidents around the globe ranging from cyber espionage initiated by nation-state actors to ransomware attacks and included the investigation of and response to the NOBELIUM threat actor campaign which leveraged the SolarWinds supply chain. Jonathan also serves as an advisor to several security startups and venture capital firms and supports the broader security community through his work with the Cloud Security Alliance, Center for Internet Security, and IANS. He is also an adjunct faculty member at Carnegie Mellon University where he mentors and coaches those attending the CISO Executive Education Program. Jonathan is a frequent speaker at industry conferences such as BlackHat, RSA, and SANS and holds several industry certifications including the CISSP, OSCP, CCSP, and GCFA. Jonathan is a veteran of the U.S. Navy finishing his career as a Lieutenant Commander supporting the Information Warfare Domain.

About

Kunal is currently VP of Product Management for the CyberSecurity Asset Attack Surface Management (CAASM), Web App and API Security product line at Qualys HQ in Foster City, CA. He is Qualys boomerang. He worked at Qualys for 3 years and incubated the XDR product line from inception. Kunal has spent 15+ years working at startups, and big and mid-size companies in cybersecurity, networking, and application security in both product and engineering roles at Juniper Networks, Extreme Networks, Sun Microsystems and Infinera. Prior to re-joining Qualys, Kunal was heading products at Israeli startup in API security and bot management AppSec space.

About

Matt Middleton-Leal is Managing Director for EMEA North & South at Qualys. With 20 years spent working in the security industry, Matt brings significant experience to his role at Qualys. He has worked for many organisations, specialising in areas such as risk management, identity and access management, application, network and database security. Matt most recently held the position of General Manager EMEA and Board member at Netwrix Corporation. Previous to this role Matt was V.P. Northern Europe at CyberArk Software, where he oversaw five consecutive years of 45%+ per annum revenue growth. Prior to CyberArk he held the position of Business unit executive at IBM Security Systems. Matt joined IBM from CA where he had spent six years, working on their largest information security projects. Matt is a CISSP® - Certified Information Systems Security Professional.

About

As the Chief Risk Technology Officer at Qualys, Richard helps customers and the broader security community measure, communicate, and eliminate risk. With over 10 years of experience as a CISO, he's led and supported security strategy, operations, and governance across critical infrastructure and cloud-native organizations. Richard has published two books, "How To Measure Anything In Cybersecurity Risk" and "The Metrics Manifesto: Confronting Security With Data." Each provides practical and innovative approaches to quantifying and reducing security risk. His first book is the main curriculum at the US Dept of Defense (DoD) CISO program at Carnegie Mellon University and numerous other institutions of higher education.

About

As SVP, Product and Solutions Architecture, Shailesh leads the product management team and drives the Qualys product vision helping customers assess and improve their IT, security and compliance posture. Since joining Qualys in 2012, he has worked in various security and compliance roles driving innovative solutions, including remote endpoint protection, endpoint detection and response, and SaaS security. In addition, Shailesh headed engineering, research and product management for Qualys Policy Compliance and File Integrity Monitoring, where he helped customers go beyond compliance to drive their IT GRC objectives. Before Qualys, he focused on security research for Symantec ESM and Compliance solutions. Shailesh holds a master's in computer applications (MCA) from the Vishwakarma Institute of Technology and has various security certifications including CISA, CRISC, CISM. He is also a regular speaker at industry conferences.