Dinis Cruz

CTO and CISO, Glasswall

Dinis Cruz is the CTO and CISO of Glasswall and brings a unique blend of Security and Engineering expertise with 20+ years experience in Cyber Security and Software Development. Dinis is focused on creating teams and environments where engineering and security are enablers and accelerators for the business, with a big focus on the productisation and commercialisation of advanced technologies.

Dinis was nominated for CISO of the Year 2019 at #CyberSecurityAwards, and was highlighed as one of the 10 Best CSOs of 2020 by Industry Era

Dinis is also writing a book called Generation Z Developers (but useful for all Generations) available at Amazon

For more details see Dinis’ CV (done as a presentation)

All Dinis Cruz's sessions

Title	Track	Year	Month
Advanced Persistent Threat (APT) Mapping and Mitigation	Wardley Maps	2024	Sep
AMA with Jeremiah Grossman	DevSecOps	2021	Jan
AMA with Jim Manico	DevSecOps	2021	Jan
AMA with Mark Curphey	Governance	2022	Sep
AMA with OWASP Board		2021	Jan
AMA with Simon Wardley	Wardley Maps	2020	Dec
Attack Surface Mapping	Governance	2024	Jun
Automating SOC2 using Jira	Governance	2021	Jan
Awards and Networking / drinks time	Social	2022	Jul
AWS Security Hub (Panel)	DevSecOps	2023	Feb
Behaviour Change and Awareness	Risk and Governance	2023	Apr
Blockchain and its Security	Misc	2022	Sep
Bridging the skill gap and hiring challenges in cyber	Governance	2022	Jul
CDC - Collective Defence Clusters	Governance	2022	May
CDR API Standard	CDR	2021	May
ChatGPT and GenAI Privacy - Massive Uncertainty and Massive Opportunity	DevSecOps	2023	Oct
ChatGPT for Security Teams - What & How	ChatGPT	2023	Jun
ChatGPT impact on Cyber and Application Security (Panel)		2023	Apr
ChatGPT: Cyber Risks & How to Harden Against Them	ChatGPT	2023	Apr
CISO Role in 2023 (Panel)	Governance	2023	Feb
CISO Roundtable - Mar 2022	Governance	2022	Mar
Cloud Security Best Practices: Navigating the Evolving Landscape (Panel)	Cloud Security	2024	Feb
Cloud-Native Security Tools: Enhancing Cloud Protection Capabilities(Panel)	DevSecOps	2023	Oct
Conducting effective Table Top Exercises for Cyber Incident Response Practise (Panel)	Governance	2023	Apr
Covid Safe Paths - Threat Modeling Part 1	Covid
Covid Safe Paths - Threat Modeling Part 2	Covid
Creating a Scalable API Test Framework using AWS and Elastic	DevSecOps	2021	Nov
Creating the GenAI Athena Bot from the theCyberboardroom.com	DevSecOps	2023	Oct
Crowdsourcing Security Talent	Governance	2022	Dec
Cyber Insurance - a deeper approach	Governance	2022	Dec
Data Culture	Wardley Maps	2022	Sep
Deterministic GenAI Outputs with Provenance	GenAI	2024	Sep
Developing Secure Multi-Cloud Kubernetes Applications	Kubernetes	2021	Nov
DevSecOps for Modern Identity and Access Management	DevSecOps	2022	Sep
Emerging Roles in Cybersecurity: Adapting Recruitment Strategies(Panel)	Governance	2023	Dec
Ethical Hacking Challenges: Evaluating Practical Skills in Selection Processes (Panel	Governance	2024	Feb
Finding and Hiring Security Talent (Panel)		2023	Feb
For bugs start with a passing test (and 99% code coverage)	Owasp	2021	May
GitHub Security Tools (Panel)		2023	Feb
GitLab Security Tools (Panel)		2023	Dec
Hacking Glasswall SDk & Cloud - Part 2	Hacking and Defending
How can we make Grafana a great open source security tool?	DevSecOps	2022	May
How GenAI Agents will Dramatically Change our Industry	DevSecOps	2023	Oct
How Owasp can help Security Teams - DevSecOps	Owasp	2020	Dec
How Owasp can help Security Teams - DevSecOps		2021	Jan
How Owasp can help Security Teams - Guides and Testing Tools	Owasp	2020	Dec
How Owasp can help Security Teams - Guides and Testing Tools		2021	Jan
How to become a cyber security professional? (i.e. where to start?)	Education and Training	2022	Sep
Ideas for Graph DBs like Neo4j	Governance	2022	Mar
Incident Response Playbooks (Panel)		2023	Feb
Incident Scenario Exercise	CISO and Risk Management
IoT and Cyber Threat Intelligence: Staying Ahead of the Curve (Panel)	DevSecOps	2024	Feb
Jim and Dinis Talk Appsec	DevSecOps	2022	May
Jira Schemas and Workflows for AppSec and Risk Management	Governance	2022	Jan
Kubernetes Clusters Network Security		2023	Oct
Learn Threat Modeling using the amazing OSS resources	Threat Modeling	2021	Nov
Leveraging Artificial Intelligence and Machine Learning in Recruitment(Panel)	Governance	2024	Feb
Living off the Land & Fileless Attacks - Move Beyond the "Known Bad"	DevSecOps	2022	Dec
Machine Learning in SemGrep: Leveraging AI for Enhanced Static Analysis(Panel)	SemGrep	2023	Dec
Mapping Threat Intelligence: Enhancing Situational Awareness (Panel)	Governance	2023	Oct
Mentoring and it's challenges in Cyber Security	Governance	2022	Jul
Modern Office Spaces	Governance	2021	Apr
Moldable development with Glamorous Toolkit Part 1		2021	Mar
Moldable development with Glamorous Toolkit Part 2		2021	Mar
Moldable development with Glamorous Toolkit Part 3		2021	Mar
New OSS Projects	Misc	2021	Sep
OISRU - Open Information Security Risk Universe (Panel)	Governance	2023	Feb
Open Security Summit Awards and plans for 2023		2023	Dec
Open Security Summit Membership Awards		2022	Jan
OSS - Celebrating the Community and plans for 2022		2021	Nov
OSS DevSecOps projet	DevSecOps	2021	Sep
OSS OWASP Project	OWASP	2021	Sep
OSS Semgrep project	Semgrep	2021	Sep
OSS Threat Modeling and Moldable Development Projects	Threat Modeling	2021	Sep
Owasp O2 Platform tools you can use today		2021	Apr
OWASP Security Bot - Hypercharge your Cloud Automation	OWASP	2022	Jan
Panel - Prioritizing Risks and Vulnerabilities based on Context	Risk and Governance	2021	Nov
Panel - Wardley Maps in Cyber Security		2023	Feb
Positive Security models and Rebuilding into a "Known Good" state	CDR	2021	May
Privacy-The Challenges in Post Tornado Cash World	DevSecOps	2022	Dec
Quantifying Usability In Security Designs and Risk Assessments	Governance	2022	Dec
Ransomware Resilience: Strategies for Prevention and Recovery (Panel)	DevSecOps	2024	Feb
Ransomware Resilience: Strategies for Prevention and Recovery(panel)	Governance	2024	Dec
Refresher on Security Labels	Security Labels	2020	Nov
Rise of Automotive Attacks (Panel Discussion)	Governance	2023	Jun
Risk Acceptance and OISRU (Panel)	Risk and Governance	2023	Dec
Risk treatment planning in modern tech space (Panel)	Governance	2023	Apr
Scaling CyberSecurity teams using GenAIs and FMs	Governance	2024	Jun
Scaling Kubernetes - One Pod per file	DevSecOps	2021	Jun
Scaling Threat Models visualisations using PlantUML and VisJS	DevSecOps	2020	Dec
Schrems II - Finding workable solutions	Schrems II	2020	Dec
Schrems II - Finding workable solutions	Schrems II	2021	Jan
Security business enabler: How to align your security program to business goals	Governance	2022	Dec
Security Champions - Sharing Experiences	Governance	2022	May
Security Labels & Schrems II	Security Labels	2020	Nov
Security Vendors - Operating Model		2023	Apr
SemGrep in the CI/CD Pipeline: Automating Code Quality and Security Checks (Panel)	Semgrep	2023	Dec
Shift-Right Security: Emphasizing Post-Deployment Monitoring and Response (Panel)	DevSecOps	2023	Oct
SOAR - Security Orchestration, Automation, and Response (Panel)	DevSecOps	2023	Feb
Social Engineering Attacks: Strengthening Human Firewall(Panel)	Secure by Scenario	2023	Dec
Successes and Failures at Security Training	Governance	2022	Sep
Supply Chain Security: Strengthening Resilience Against Third-Party Risks(panel)	Governance	2024	Jun
Testing Ephemeral Kubernetes Applications	DevSecOps	2021	Jun
The Business case for Security Champions	Governance	2022	Mar
The Challenges With DNS Security	Governance	2022	Feb
The Cybersecurity Talent Gap: Addressing the Growing Skills Shortage(Panel)	Governance	2023	Oct
The value of CTO/CISOs and how to make it work	Governance	2022	Jul
Threat Hunting and Detection Strategies: Proactive Defense in Action (panel)	Threat Modeling	2024	Jun
Threat Modeling - Cloud Functions as Detonation Chambers - Part 1	Hacking and Defending
Threat Modeling - ICAP	Threat Modeling
Threat Modeling for Schrems II	Threat Modeling	2020	Nov
Threat Modeling for Serverless Architectures: Identifying Risks in a Serverless World (Panel)	Threat Modeling	2023	Oct
Threat Modeling Glasswall Cloud SDK	Threat Modeling	2021	May
Threat Modeling Glasswall Desktop	Threat Modeling	2020	Dec
Threat Modeling Glasswall Folder-to-Folder Plugin	Threat Modeling	2021	May
Threat Modeling Introduction	Threat Modeling
Threat Modeling using GenAI and Bots (panel)	Threat Modeling	2024	Dec
Threat Modeling Using Glamorous Toolkit	Threat Modeling	2021	May
Threat Modelling Adoption in Disciplines Other Than Development	Threat Modeling	2022	Sep
Threat Models and Wardley Maps	Threat Modeling	2022	Mar
Use GenAI to Understand and Transform Content, Not to Create It	GenAI	2024	Sep
Using DataDog for Incident Response (Panel)		2023	Feb
Using Elastic and Kibana for Scale and Security Visualisation	DevSecOps	2021	Nov
Using Elastic for Incident Response (Panel)		2023	Feb
Using GenAI to scale CISO's reporting workflows	Governance	2024	Sep
Using Kubernetes to create a scalable Security Proxy solution	DevSecOps	2020	Oct
Using Presentations instead of CVs and Creating Diverse Security Teams	Governance	2022	Mar
Using Splunk for Incident Response (Panel)	DevSecOps	2023	Dec
Virtual Pub	Miscellenous	2020	Oct
Wardley Maps introduction	Wardley Maps
What are ISGs and how to convert ISGs into checklists?	ISG
Why Wardley Maps changed how I think	Wardley Maps	2022	Jul
Workshop on creating C# Tools using the Owasp O2 Platform		2021	May
Zero Trust Architecture: Strengthening Cloud Security Posture (Panel)	Governance	2023	Oct