Minneapolis St Paul

Sponsorship/Membership
Minneapolis St Paul

Or consider the value of Individual, Organization, or Accredited University Supporter membership to contribute to better application security in the Minneapolis-Saint Paul area, surrounding Twin Cities metropolitan region, greater Minnesota, and the global software community.

Platinum Sponsors


The OWASP MSP chapter is very thankful for


 * generous financial support from Organization Supporter and Local Chapter Supporter Best Buy.
 * reliable monthly meeting locations from Local Chapter Supporter Center for Strategic Information Technology and Security (MnSCU).
 * sustained booth sponsorship, monthly meeting sponsorship, and more from Local Chapter Supporter Integral.

Monday, February 22, 2010 - Michael Craigue Enterprise Application Security Practices: Real-world Tips and Techniques
REGISTER NOW for the Monday, February 22, 2010 local chapter meeting - Michael Craigue - Enterprise Application Security Practices: Real-world Tips and Techniques (room opens at 5:30 PM Central Time, speaker at 6:30 PM Central Time).

Date: Monday, December 22nd, 2009

Location / Venue Sponsor: US Bank, 2751 Shepard Rd, Saint Paul MN 55116

Map and Directions: Google Maps

Agenda:

5:30 PM  Room opens for networking

6:00 PM Welcome: OWASP chapter updates

6:30 PM Michael Craigue - Enterprise Application Security Practices: Real-world Tips and Techniques

8:00 PM Upcoming events reminder and meeting wrap-up

Thank You: US Bank for sponsoring our meeting location. Please contact Lorna at lorna.alamri@owasp.org or 651-338-0243 if you would like to sponsor a meeting or meeting location for an upcoming OWASP meeting.

Speaker Topic:

Section One: Program Overview


 * Dell’s Information Security Organization
 * Policies / Standards for Secure Application Development
 * Awareness/Education/Training
 * Addressing Global Standardization Issues
 * Deploying an SDL as an Overlay to the SDLC
 * Partnerships with Privacy, Legal, Compliance

Section Two: Consultant Team


 * Security Consulting Staff Development
 * Division of Labor for Security Consultants
 * Risk Assessments
 * Security Reviews
 * Threat Modeling
 * Source Code Scans
 * Pre-deployment Scans
 * Penetration Testing
 * Q&A

Speaker Bio:


 * At Dell since 1999
 * Lead for application security
 * Emphasis on the e-commerce site
 * Prior to joining Dell’s information security team, spent over a decade building Web and database applications
 * CISSP- and CSSLP-certified
 * Taught Database Management and Business Intelligence/Knowledge Management at St. Edward’s University in their MBA and MS CIS programs
 * PhD from the University of Texas at Austin in Higher Education Administration and Finance

Stay Updated
Click here to join the local chapter mailing list

Follow OWASP MSP on your favorite social media sites:



Share OWASP MSP on your favorite social media sites:



Secure360
Secure360 is an annual conference providing high quality educational sessions and networking opportunities while working to identify developing trends in risk management, physical security, governance, audit, information security, contingency planning and human capital.

DC612 Meetings
DC612 meets the 2nd Thursday of the month

http://www.dc612.org/

Video/Audio/Slides/Handouts
Videos of several past meetings are available at OWASPMSP_Videos and OWASP MSP Vimeo Channel

Most Recent Content
Chris Nickerson - Red Team Testing - 5 October, 2009 (78 Minutes) Vimeo Video Direct Link

Ryan Barnett - The Web Hacking Incidents Database (WHID), Bi-Annual Report 2009 (January - June) - OWASP (MSP) - 21 September 2009 (81 minutes) Vimeo Video | [[Media:The Web Hacking Incidents Database - 2009 Bi-Annual Report.pdf|PDF]]

OWASP Minneapolis-St. Paul 2009 Half-day Conference - 24 August 2009 - Watch the video at Vimeo

Robert Sullivan - Open This First: A job-oriented guide to software security resources - OWASP (MSP) - 27 July 2009 (68 minutes) MP3 | [[Media:20090727-Robert_Sullivan-Open_This_First_-_A_job-oriented_guide_to_software_security_resources.pdf|PDF]] | MP4...please right click and save | More Material

Cassio Goldschmidt - Tracking the Progress of an SDL Program: Lessons from the Gym - OWASP (MSP) - 29 June 2009 (55 minutes) Slidecast | MP3 | [[Media:20090629-Cassio_Goldschmidt-Tracking_the_Progress_of_an_SDL_Program_-_Lessons_from_the_Gym.pptx‎| PPTX]] | MP4...please right click and save

Gunnar Peterson - OWASP Top Ten Web Services - OWASP (MSP) - 27 April 2009 (1 hour, 27 minutes) MP4...please right click and save | Slides Forthcoming

Dan Cornell - Vulnerability Management in an Application Security World - OWASP (MSP) - 16 March 2009 (1 hour, 52 minutes) Google Video | [[Media:VulnerabilityManagementInAnApplicaitonSecurityWorld_OWASPMSP_20090316.pdf‎|PDF]]

OWASP Minneapolis-St. Paul 2009 Half Day Conference - August 24, 2009
Thanks again for another year to all who joined us for an afternoon of information security presentations on August 24, 2009 at the St. Paul Student Center Auditorium/Theater on the University of Minnesota - Twin Cities campus. Visit the conference page for a recap or watch the video at Vimeo.

OWASP & FLOSS Application Security Mini-Conference 2008 - October 21, 2008
Thanks to all who joined us on October 21, 2008 for a mini conference in October 2008 at University of Minnesota's Saint Paul campus. Our first conference was a great success, with around 150 people attending! We were fortunate to have even higher attendance in 2009.

Chapter Leaders/Contacts
President: [mailto:adam.baso@owasp.org Adam Baso]

Vice President: [mailto:lorna.alamri@owasp.org Lorna Alamri]

Board Member and Former OWASP MSP President: [mailto:kuai.hinojosa@owasp.org Kuai Hinojosa]

Board Member and Former OWASP MSP President: Robert Sullivan

Board Member: David Bryan

Board Member: Joe T