Thomas Brandstetter is co-founder and GM of Limes Security, a boutique security consulting company specializing in industrial security and secure software development, based out of the Softwarepark Hagenberg, Austria. Besides his consulting work, he is FH Professor at the University of Applied Sciences St. Poelten, Austria, where he loves to teach his students classes like industrial security, incident response, botnets and honeypots and penetration testing. He also is Honorary Professor of Cyber Security at DeMontfort University, Leicester and community instructor for the renown SANS institute. He gathered a decade of experience in industrial security when he joined Siemens in order to build up the topic of IT security in products in 2005. After spending years in pen-testing significant parts of the Siemens product portfolio, he became Program Manager of the "Hack-Proof-Products Program" that he had co-founded. He held this position until in 2010 the Stuxnet malware hit. He was assigned the official incident manager role for this unique threat, and still loves to look back on what he learnt back then technically, about large organizations, but also in dealing with international defence agencies. Out of the remnants of the Stuxnet-activities, Thomas founded the Siemens ProductCERT, which is still one of the most effective industrial incident and vulnerability response teams worldwide today. He was heading the Siemens ProductCERT for another two years before he left for his own company and academia. Thomas was on stage at security conferences like Black Hat and SANS SCADA, Meridian, but also research and industrial conferences like IFIP WG11.10 CIIP, ICS-CSR and CIRED. He holds the GICSP, GSEC and CISSP certifications, has a diploma degree in IT security from the University of Applied Sciences Hagenberg, Austria and a masters degree in business administration from the Universities of Augsburg and Pittsburgh.
(in)Security in Building Automation: How to Create Dark Buildings with Light Speed