
Sebastian Avarvarei
Information Security Manager for EMEA at Canon
The Hague, The Netherlands
Actions
Sebastian Avarvarei is a seasoned security leader with over 20 years of experience, currently serving as Information Security Manager for EMEA at Canon. Known for his strategic insights into leadership, Sebastian has a proven track record of building and empowering high-performing security teams that deliver impactful results. His career spans a multitude of sectors and security domains, providing him with a comprehensive perspective on organizational security. Passionate about enhancing security team visibility and alignment, Sebastian is a frequent speaker at industry events, where he shares actionable insights on strengthening security culture and operational resilience.
Area of Expertise
The 7 Habits of Highly Effective Security Leaders
For a long time, Security has been seen as the adversary of the Business, something to overcome rather than rely on. This leads to the paradoxical situation of organizations hiring highly skilled InfoSec practitioners, but not leveraging them at their full potential. While the problem is not new, the ways to address it have remained often empirical.
In this talk I propose an approach based on one of the most influential business management books, Stephen Covey’s “The Seven Habits of Highly Effective People”. Brilliant in their simplicity, these seven principles lend themselves elegantly to InfoSec, offering a powerful framework for developing highly effective Cybersecurity leaders.
I Still See Your AppSec Contractual Sins
Back in 2018, I presented at CodeBlue the first edition of my talk "The Decalogue of Contractual Security Sins", dealing with the most common pitfalls of integrating (or failing to integrate) the right security clauses in our commercial IT contracts.
Since then, things have improved in our industry, but we still have some ways to go. In this new talk, I focus specifically on the Application Security domain, and how to use familiar techniques - such as Threat Modelling - into designing AppSec relevant security clauses.
Furthermore, the plan is to launch a new OWASP project which will provide tooling and content templates for creating AppSec contractual clauses tailored for specific needs and for specific types of applications and contracts. CodeBlue would then be the "public launch" of this new OWASP project.
Your security team is awesome, shall we help Management see it too?
Security teams are doing amazing work, but it’s often invisible – not only to management, but to the rest of the organization as well. Sure, maybe luck will bring you a manger with native flair for this, but do you want to rely on just luck? In this talk we’ll look at methods, techniques and frameworks for structurally showcasing and coordinating the security work. We’ll discuss about building roadmaps, articulating strategies and managing teams in a clear and quantifiable way. And yes, we’ll talk about dashboards, KPIs and other metrics, which you’ll discover that they can be cool too!
Please note that Sessionize is not responsible for the accuracy or validity of the data provided by speakers. If you suspect this profile to be fake or spam, please let us know.
Jump to top