About Devici

Chris Romeo is a leading voice and thinker in application security, threat modeling, and security champions and the CEO of Devici and General Partner at Kerr Ventures. Chris hosts the award-winning “Application Security Podcast,” “The Security Table,” and “The Threat Modeling Podcast” and is a highly rated industry speaker and trainer, featured at the RSA Conference, the AppSec Village @ DefCon, OWASP Global AppSec, ISC2 Security Congress, InfoSec World and All Day DevOps. Chris founded Security Journey, a security education company, leading to an exit in 2022. Chris was the Chief Security Advocate at Cisco, spreading security knowledge through education and champion programs. Chris has twenty-six years of security experience, holding positions across the gamut, including application security, security engineering, incident response, and various Executive roles. Chris holds the CISSP and CSSLP certifications.

Deb Romeo serves as the Chief Financial Officer and Co-Founder of Devici. She brings extensive knowledge and experience in creating financial stability for SaaS organizations. With nearly seven years as the CFO and Co-Founder of Security Journey, her role was instrumental in the company's fiscal success, culminating in a strategic exit in 2022. Currently based in Raleigh, North Carolina, Deb extends her expertise in financial coordination to the local community as the Ministry and Finance Coordinator at Redeemer Community Church. Her expansive experience traverses the intricate landscape of startup finances, operational efficiency, and sustainable growth. Deb also lends her knowledge of financial leadership and strategic foresight as CFO and Co-Founder at Kerr Ventures.

Dr. Kim Wuyts, Manager Cyber & Privacy
A security and privacy engineering expert with more than 15 years of experience, Kim led the development and extension of LINDDUN, a popular privacy threat modeling framework, during her tenure as a senior researcher at KU Leuven. Her mission is to raise privacy awareness and get organizations to embrace privacy and security best practices. Kim is a guest lecturer and a public speaker at international privacy and security conferences. She is also a co-author of the Threat Modeling Manifesto, program co-chair of the International Workshop on Privacy Engineering (IWPE), and a member of ENISA's working group on Data Protection Engineering.

Izar Tarandach, Threat Modeling Author & Senior Principal Security Architect
With more than 25 years of security experience, Izar Tarandach is the co-author of Threat Modeling: A Practical Guide for Development Teams and a member of the Threat Modeling Manifesto group of authors. He has extensive experience exploring both the hard and soft skills of application security. He is currently a Sr. Principal Security Architect.

Sarah-Jane Madden, CISO
Sarah-Jane has over 25 years of experience in the technology industry, with a strong background in technical operations and software engineering. Over the years, she has honed her skills in cybersecurity and has become a passionate advocate for a practical approach to security. In her opinion, it is crucial to adopt a pragmatic mindset when building a security program that aligns with business objectives.

Sarah-Jane holds an MSc in Secure Computing and Forensics from Dublin City University. She is a Certified Information Systems Security Professional (CISSP), reflecting her commitment to cybersecurity. Currently, she serves as the Chief Information Security Officer (CISO) for a Fortune 500 subsidiary group of technology companies. In this role, she plays a critical role in enhancing and maintaining the security of these organizations.