As CISO and VP of Operations, Joan is responsible for the holistic security and compliance of Auth0's platform, products, and corporate environment, as well as end-to-end engineering, management, and operation of their Private SaaS product line. She brings 20 years of experience to the role, with a career that has spanned a wide variety of industries, including healthcare, manufacturing, defense, ISPs, and MSSPs. Previously, Joan served as Business Information Security Officer (BISO) at Nike, Inc, CISO, and VP of Security at Sumo Logic, and held different positions at Guardent/Verisign/Secureworks organization. Joan holds a patent for developing methodology to assess whether a communication contains an attack. She is also is a well-recognized thought leader and has spoken at major events, such as RSA, WhiteHat Security Summit, and Forrester Security Summit, and is frequently called upon for her expertise and commentary in Cloud Security and Compliance in large-scale and DevOps/CI environments.
Phishing Attacks with Auth0? Facts First
A security researcher claimed that an attacker could perpetrate a phishing scam that could target a company using the Auth0 platform based on domain. Learn about this attack, the prevalence of phishing in the industry, and how to mitigate these scams.
Information Warfare Offensive
Access to information is valuable but it is also dangerous. Auth0 CISO Joan Pepin explains why information warfare is a big deal
Five Things That Every Leader Could Use to be a Better Leader
Leadership is a skill that can be learned. My talk, given at Women Who Code Connect 2018, gives tips on growing your knowledge.
Managing and Mitigating Security Vulnerabilities at Auth0
Learn how responsible disclosure of a cybersecurity vulnerability made the risk mitigation process safe for Auth0 customers and vendors.
Security vs. Convenience
Auth0 CISO Joan Pepin explains how making security easier makes things safer for users, but requires more planning from engineers to render security seamless.
Meltdown & Spectre: What Auth0 Customers Need to Know
Learn what you need to know about the Meltdown and Spectre vulnerabilities as an Auth0 customer, and as an individual as well.