John Heasman is the Deputy CISO at DocuSign, focused on proactive approaches to securing software. Prior to DocuSign, he spent 10 years working as a consultant for the NCC Group. John has released numerous security advisories in widely used software and has presented original research at Black Hat, DEF CON, OWASP AppSec EU and ToorCon on a diverse range of topics from firmware rootkits through to web application security. He co-authored The Shellcoders Handbook (2nd Ed.) and The Database Hacker’s Handbook.