System and Software Security Research Conference

If your research is system and software security, nothing cannot be worst than counting how many different conference you should follow. Due to nature of work, you surely have to follow security, system and software engineering conference. Besides them as security research is very much practical, you also have to follow hacker conference. Sometimes for literature review, you may also have to follow 2nd tier conference (but they are not necessary). Here I list what I follow time to time:

Top-tier Security Conference

* IEEE Symposium on Security and Privacy (S&P/Oakland)
* Computer and Communications Security (CCS) 
* USENIX Security Symposium (USENIX Security)
* Network and Distributed System Security Symposium (NDSS)

Top-tier Software Engineering Conference

* International Conference on Software Engineering (ICSE)
* ACM International Conference on Architectural Support for Programming Languages and Operating Systems (ASPLOS)
* Programming Language Design and Implementation (PLDI)

Top-tier System Conference

* ACM Symposium on Operating Systems Principles (SOSP)
* USENIX Annual Technical Conference (USENIX ATC)
* European Conference on Computer Systems (EuroSys)
* USENIX Symposium on Operating Systems Design and Implementation (OSDI)

Hacker Conference

* BlackHat
* DefCon

2nd-tier Security Conference

* International Symposium on Research in Attacks, Intrusions and Defenses (RAID)
* European Symposium on Research in Computer Security (ESORICS)
* IEEE European Symposium on Security and Privacy (EuroS&P)