Jarkko Laemsae, CISSP
Principal Solutions Architect at Virsec- Claim this Profile
Click to upgrade to our gold package
for the full feature experience.
-
Finnish -
-
English -
-
Germany (basics) -
-
Spanish (basics) -
Topline Score
Bio
Kaz Tanaka
Jarkko is the best security engineer I have seen so far. He knows DevSecOps and cloud security very well. He understands both pre-sales and post-sale. I hope I will work with him again in the future.
Greg West
I worked with Jarkko for over a year at Contrast Security where he regularly assisted me with technical demonstrations (over the web and in person) and hands-on proof of concepts during our prospective evaluations. I was consistently impressed with his technical acumen and ability to calmly and creatively overcome problems and obstacles during evaluation cycles. Aside from his technical abilities, Jarkko conveys the business value of solutions in ways that customers/prospects can easily understand and he aligns the solution with their high-level goals and objectives. He was an absolute pleasure to work with and any organization is lucky to have him.
Kaz Tanaka
Jarkko is the best security engineer I have seen so far. He knows DevSecOps and cloud security very well. He understands both pre-sales and post-sale. I hope I will work with him again in the future.
Greg West
I worked with Jarkko for over a year at Contrast Security where he regularly assisted me with technical demonstrations (over the web and in person) and hands-on proof of concepts during our prospective evaluations. I was consistently impressed with his technical acumen and ability to calmly and creatively overcome problems and obstacles during evaluation cycles. Aside from his technical abilities, Jarkko conveys the business value of solutions in ways that customers/prospects can easily understand and he aligns the solution with their high-level goals and objectives. He was an absolute pleasure to work with and any organization is lucky to have him.
Kaz Tanaka
Jarkko is the best security engineer I have seen so far. He knows DevSecOps and cloud security very well. He understands both pre-sales and post-sale. I hope I will work with him again in the future.
Greg West
I worked with Jarkko for over a year at Contrast Security where he regularly assisted me with technical demonstrations (over the web and in person) and hands-on proof of concepts during our prospective evaluations. I was consistently impressed with his technical acumen and ability to calmly and creatively overcome problems and obstacles during evaluation cycles. Aside from his technical abilities, Jarkko conveys the business value of solutions in ways that customers/prospects can easily understand and he aligns the solution with their high-level goals and objectives. He was an absolute pleasure to work with and any organization is lucky to have him.
Kaz Tanaka
Jarkko is the best security engineer I have seen so far. He knows DevSecOps and cloud security very well. He understands both pre-sales and post-sale. I hope I will work with him again in the future.
Greg West
I worked with Jarkko for over a year at Contrast Security where he regularly assisted me with technical demonstrations (over the web and in person) and hands-on proof of concepts during our prospective evaluations. I was consistently impressed with his technical acumen and ability to calmly and creatively overcome problems and obstacles during evaluation cycles. Aside from his technical abilities, Jarkko conveys the business value of solutions in ways that customers/prospects can easily understand and he aligns the solution with their high-level goals and objectives. He was an absolute pleasure to work with and any organization is lucky to have him.
Credentials
-
CISSP
ICS²Jun, 2016- Nov, 2024 -
CEH
EC-CouncilDec, 2015- Nov, 2024
Experience
-
Virsec
-
United States
-
Computer and Network Security
-
100 - 200 Employee
-
Principal Solutions Architect
-
Apr 2022 - Present
Virsec platform provides server workloads with digital immunity against advanced cyber attacks and 0-days. My role: - subject matter expert on breach and attack simulation tools - security research on APT & host based Mitre TTPs (deep technical topics on Windows, Linux) - customer demos, evaluations, bake offs, solution architectures - Virsec product subject matter expert (system integrity, memory protection, living-off-the-land protection, web app protection) Virsec platform provides server workloads with digital immunity against advanced cyber attacks and 0-days. My role: - subject matter expert on breach and attack simulation tools - security research on APT & host based Mitre TTPs (deep technical topics on Windows, Linux) - customer demos, evaluations, bake offs, solution architectures - Virsec product subject matter expert (system integrity, memory protection, living-off-the-land protection, web app protection)
-
-
-
ForAllSecure
-
United States
-
Computer and Network Security
-
1 - 100 Employee
-
Principal Solutions Architect
-
Oct 2021 - Apr 2022
Technical pre-sales lead for commercial sector. ForAllSecure Mayhem is a fully autonomous dynamic security verification platform suitable for both DevSecOps and safety critical systems: - zero false positives - next generation fuzzing algorithms - easy defect verification & fix validation - autogenerated ci/cd friendly regression tests - sdlc integration Technical pre-sales lead for commercial sector. ForAllSecure Mayhem is a fully autonomous dynamic security verification platform suitable for both DevSecOps and safety critical systems: - zero false positives - next generation fuzzing algorithms - easy defect verification & fix validation - autogenerated ci/cd friendly regression tests - sdlc integration
-
-
-
Contrast Security
-
United States
-
Software Development
-
200 - 300 Employee
-
Principal Technical Specialist
-
Jan 2020 - Oct 2021
- Technical pre and post sales- DevSecOps & Contrast Security subject matter expert- Engage Asia-Pacific strategic opportunities- Enable and support Asia-Pacific partners and new hires- Product management liaison of the region
-
-
Technical Specialist
-
Oct 2018 - Jan 2020
Contrast Security - world's fastest application security to enable DevSecOps. Scan free vulnerability assessment and runtime application self-protection.Responsibilities in brief (this is a jack-of-many-trades position)- Technical sales- DevSecOps & Contrast Security subject matter expert- Engage Asia-Pacific strategic opportunities- Enable and support Asia-Pacific partners
-
-
Senior Solutions Architect
-
Jun 2017 - Oct 2018
Contrast Security: Welcome to the Era of Self-Protecting SoftwareBusinesses run on software, with nearly 40% of enterprise IT budgets spent on applications. Yet applications continue to be the #1 source of successful data breaches, according to the 2016 Verizon Data Breach Investigations Report.Contrast Security makes software self-protecting so it can defend itself from vulnerabilities and attacks. Contrast eliminates risk to software applications and their data, so businesses can innovate faster, and sleep at night.Contrast’s revolutionary approach to application security has won numerous industry accolades, including:• Gartner “Visionary” Magic Quadrant Placement• 2017 Red Herring winner• 2016 SINET 16 Innovator• 2016 InformationWeek DarkReading's Best of Black Hat Awards Finalist• 2016 OWASP Benchmark Project Best-in-class 92% true accuracy rating• 2016 Cyber Defense Magazine "Best-of-Breed" in Application Security SolutionWebsite: https://www.contrastsecurity.comTwitter: @contrastsec Show less
-
-
-
Synopsys Inc
-
United States
-
Software Development
-
700 & Above Employee
-
Solutions Consultant, Sr Staff
-
Jul 2015 - Jun 2017
Sales and solutions engineering at Synopsys (Software Integrity Group). SDLC and cyber supply chain sign-off solutions with following technologies * Static code analysis (SAST) * Fuzzing * Software composition analysis * Web application security testing (DAST) * Test optimization Responsible for * Strategic accounts * Fuzz testing and networking protocols subject matter expert * Solution selling technical qualification, presentation, proof-of-concept design and implementation * Advanced customer training * Advanced technical support * Developing professional services package offerings * Solution architectures * Professional services engagements I joined Synopsys through Codenomicon acquisition in Jul 2015. Show less
-
-
-
Codenomicon (acquired by Synopsys)
-
United States
-
Computer and Network Security
-
1 - 100 Employee
-
Principal Systems Engineer
-
May 2011 - Jun 2015
Pre- and post-sales engineering with Codenomicon product portfolio * Defensics: 250+ protocol fuzzing / communication robustness testing tools * Appcheck: Software binary composition analysis * AbuseSA: Government grade threat intelligence platformResponsible for * pre-sales solution selling, technical qualification, value presentation, proof-of-concept design and implementation * deployment, customer training and on-boarding * scripting to support customer workflows * advanced technical support * vulnerability assessments * partner training in Latin America * supporting sales, marketing and RnD.I got an opportunity to move to California to work as sales and system engineer with Codenomicon. Our diverse set of supported networking technologies really taught me how to continuously adapt my skills in computer science, networking and security per current customer needs. I worked with Codenomicon until acquired by Synopsys in Jul 2015. Heartbleed vulnerability in 2014 was one of the many highlights, most of which remain unpublished. Show less
-
-
Software Engineer
-
Oct 2005 - May 2011
Responsibilities in brief: * Analysis, design, implementation, testing, maintenance of Codenomicon protocol security, fuzzing, DAST, and conformance testing tool products. * Customer tailored security and conformance testing projects. * Professional services. * Conducted on-site security audits and vulnerability assessments / pentests. * Specialized post-sales support. * Tutored new recruits.I was intimately involved with the whole cycle of development of several Codenomicon testing tool products, from the initial design to the post-implementation support and maintenance. I independently designed and developed commercial products for a wide variety of technologies, such as digital media, core TCP/IP protocols, VoIP and 4G/LTE/SAE telecommunication protocols, by applying and extending Codenomicon SDK (Java and domain specific languages). This development work allowed me to study the internals of dozens of network communication protocols, and to implement attribute grammar based protocol models. I further developed my in-depth knowledge on security vulnerabilities and weaknesses and the methods to find and combat them. Show less
-
-
-
University of Oulu
-
Finland
-
Research Services
-
700 & Above Employee
-
Researcher and teaching assistant
-
Dec 1999 - Aug 2005
I worked for Oulu University Secure Programming Group (OUSPG) from Dec 1999 to Aug 2005. During that time my areas of responsibilities developed from assisting research and teaching to independent research and teaching responsibilities. Research was funded by Tekes, Finnish Defense Forces, Microsoft, National Infrastructure Co-ordination Centre of UK (NISCC, part of CESG). My main area of research contribution was in the security testing of protocol implementations. I was a developer of several protocol specific fuzzing tools. I applied them in practice, acted as the expert advisor in the subject matter, and responsibly disclosed vulnerabilities in co-operation with CERT/CC, CERT-FI, NISCC (CESG). Specifically, I was part of the team who published PROTOS SNMP test tool that had major impact on improving the security of critical infrastructure worldwide (100+ vendors were affected). I mastered a solid engineering approach, teamwork and wide variety of tools from traditional programming languages to domain specific languages. Show less
-
-
Education
-
1998 - 2008
University of Oulu
Master's degree, Computer and Information Sciences, General -
1998 - 2008
Oulun yliopisto
Master's degree, Information Processing Science
Community
