Talesh Seeparsan
Speaker Bio
With a decade focused on Application Security of eCommerce platforms, Talesh has cemented his position as a recognized authority in eCommerce Application Security. Identifying a need for more mature application security among Adobe Commerce engineers, Talesh proactively stepped into the breach. He owned the responsibility for leading and inspiring an entire ecosystem towards more defensible systems. As the Age of Intelligence dawns, Talesh is helping to secure the new generation of AI and Large Language Models (LLMs) based applications in his work with the OWASP Top Ten for LLMs.
As one of the architects of the Adobe Commerce Security Training course, Talesh was instrumental in paving the way for more secure eCommerce teams. Talesh has been globally recognized, with invitations from event organizers worldwide to present to diverse audiences.
He is still searching for the author of his favourite paraphrased Appsec quote: "Good application security is like washing your hands. You should do it often. However, be aware that if all you're doing is washing your hands, you can't use them as hands." A simple reminder that the best strategy is to work backwards from customer and business needs when defining application security strategy.
Past Presentations
2015 - Meet Magento NYC: A Trailmap for Magento Security
2015 - Meet Magento Spain: What is an Incidence Response plan and how to prepare one for your store
2016 - Magento Imagine: Security Arms race OWASP Top Ten
2016 - Magento Imagine: Business Leaders Security panel
2016 - Magento Developers Paradise: Leveraging Magento features to defend against the OWASP Top Ten
2016 - MageStackDay: Strategies for Zero Day vulnerabilities in your Magento store
2016 - Meet Magento Poland: Building custom security logging for your eCommerce store
2016 - Magento Unconference Netherlands: OWASP Top Ten + Defense strategies
2016 - Meet Magento Spain: Proactive Security Strategies for staying on top of threats
2016 - Meet Magento Japan: Static Analysis Security Testing for eCommerce stores
2017 - Meet Magento Croatia: Dynamic Analysis Security Testing workshop using OWASP ZAP
2017 - Magento Live India: The first steps to building secure Magento sites
2018 - Meet Magento Italy: The Hound of the Malwarevilles
2018 - Meet Magento Singapore: Security conversations you should be having with your engineers
2018 - Meet Magento Dubai: Security conversations you should be having with your engineers
2018 - Meet Magento Poland: Patterns of Credit Card Malware
2018 - Defcon 416: Patterns of Credit Card Malware
2019 - Magento Imagine: Lessons in Fortbuilding
2020 - BSides Vancouver: The story of Magecart: How we bred powerful gangs (cancelled due to pandemic)
2020 - Adobe Summit: A Flat-Earther's Guide to PWA Security (cancelled due to pandemic)
2020 - Adobe Summit: Magento Security for Developers training workshop
2020 - Connect Conference: Shared responsibility and PCI Compliance
2020 - Connect Conference: Magento security panel
2021 - Adobe Summit: The New Rules for Securing PWA
2022 - Meet Magento UK: Static Analysis for Security
2022 - Meet Magento NYC: Your code is secure, but what about everything else?
2023 - Meet Magento NYC: Is AI coming for my Magento Job?
Podcast Appearances
2018 - Ecommerce Aholic: The State of the Magento Community and the Bug Bounty Program
2019 - Core of Commerce: Building Better Security for Your eCommerce Site
2021 - We Hack Purple: Ecommerce Security
2022 - Swift Otter: Preventing Security Breaches
Publications
PWA Security Considerations in The New Architecture