Pittsburgh

Fall Meeting & Membership Drive--Wednesday, October 2, 2013 from 1 PM-2 PM (plus OWASP swag!)
Fall is approaching! And so...

The topic for our next meeting will be: Cybersecurity – "Current Trends and Threats'''

Please join us for our October meeting of the Pittsburgh OWASP chapter. Reserve your seat today for October 2nd from 1:00 to 2:00.

We are excited to announce Bobby Dominguez as our guest speaker for our October meeting. Bobby is an accomplished pioneer in e-commerce and a security expert. In 1989, Dominguez was a founder and designer of the Internet’s first online social network, Matchmaker.com. Lycos acquired Matchmaker.com in 2000, where he created and led the security department. He repeated his success at integrating security & risk management into top-level business initiatives at Home Shopping Network and PSCU Financial Services. Under his leadership, the Sykes Enterprises' security team was selected as one of the 5 “Best Security Teams in the US” by SC Magazine in 2008. Bobby was also selected as one of the top 5 “CSOs of Year” in both 2009 & 2010 by SC Magazine. And in 2012 he was a finalist for (ISC)² Americas Information Security Leadership Awards.

Location: 525 William Penn Place, Pittsburgh, Pa

Note: When entering the building please register with security and then make your way to the 11th floor we will be in room 1120 and 1122. Time 1:00PM to 2:00PM.

Register Now: We have limited seating of 50 people. Please reserve your seat early by e-mail to Lee Cambria at lee.cambria@gmail.com or lee.cambria@owasp.org This is going to be a fun filled networking and learning experience with giveaways of OWASP pens, stickers and bags

We hope to see you there!

Thank you,

Lee Cambria, Barb Mahoney, and Steve Lis

Pittsburgh OWASP Chapter Leaders

Spring Meeting & Membership Drive--Wednesday, May 15th, 2013 from 11 AM-2 PM (plus PIZZA!)
Spring has sprung! And so...

Hello Everyone! Here’s a quick update…

The topic for our next meeting will be: Threat Modeling - The First Step in Secure Application Development

Application security issues continue to be a growing concern for businesses large and small. In fact, many people would be surprised to find that some of the most popular mobile apps downloaded are vulnerable to issues found in the OWASP Mobile Top 10 list of common vulnerabilities. To address these issues security needs to be integrated into the software development lifecycle (SDLC) used by the developers. When developing an application in a secure manner threat modeling is an important but often forgotten first step.

This 1-hour talk will start out as an overview of where to integrate security into the SDLC process. The remainder of the talk will focus on the threat modeling portion of the SecSDLC. During this stage the OWASP Mobile Threat Model will be introduced. To provide real world examples vulnerabilities found in many of the top 25 downloaded apps found in the Apple App Store and Google Play will be covered.

About the Presenter: Matt Neely is the Director of Research, Innovation and Strategic Initiatives at SecureState, a security management consulting firm. At SecureState Matt leads the Research and Innovation team which focuses on imagining, researching and developing methodologies and tools that will solve industry related issues. In addition to Matt’s technical background, his strong understanding of business processes and organizational structure allow him to meet the security needs of the business world. Matt is a regular speaker at various business and security user groups and conferences including Black Hat, Defcon, THOTCON and ShmooCon. Matt recently published the book Radio Reconnaissance in Penetration Testing.

As a reminder, the meeting will be held Wednesday, May 15th from 11 AM to 2 PM courtesy of Summa at 925 Liberty Avenue in Pittsburgh, PA 15222. A Pizza lunch will be served, so please RSVP as soon as possible!

Thank you,

Lee Cambria

Spring Meeting & Membership Drive
Hope you’re all surviving winter! We’re currently working toward scheduling our next meeting for the last week of March, to usher in Spring! We’ll send out another email and update the website when we have a more solid date, time, and location lined up.

Also, we are keen to expand the Pittsburgh chapter’s membership. If you’ve been attending the meetings and would like to see more meetings, more content (more food?), we’d urge you to consider joining at either the personal level or consider the value of having your business becoming a Corporate member.

A one year Individual Membership is just $50, and helps fund the chapter.

A one year Corporate Supporter Membership is $5000.00, and organizations that wish to support OWASP can make a 100% tax deductible donation. These funds are used to enable the OWASP Foundation mission supporting Projects enabling & Grants and receiving discounts at OWASP Conferences for employees to attend and if exhibiting.

To join, please click the link above on this page!

We hope you’ll join us, and help keep the chapter growing so that we can provide content. Also, if there are specific topics you’d like for March’s chapter meeting (or speakers, for that matter!) please let us know.

Best regards,

December Chapter Meeting
This December's Chapter Meeting will be a lunchtime roundtable scheduled for NOON-1:30 PM Thursday, December 13th, 2012. After all, how can we not enjoy the awesomeness of a date following 12/12/12!? If we have enough advance interest and registration, we will have the session catered with a Taco Bar – (somewhat) in keeping with a Mayan Calendar theme. If we've survived the end of the world, we might as well have a good time while we discuss security…

The subject of the roundtable will be a fairly general one: The Application Security Lifecycle- From Planning to Testing to Fixing, and Back Again. We’d like to hear from a wide variety of viewpoints, including project managers, developers, ethical hackers/pen testers, network/infrastructure specialists and general security folks.

This will also provide us all a great opportunity to get to know other members of the community, and to get the Pittsburgh chapter rolling along into the New Year (presuming the Mayans were wrong!).

If you are planning to join us please e-mail the Pittsburgh Chapter's mailing list to reserve your seat!

'''Location Info: 525 William Penn Place, downtown Pittsburgh. When entering the building please register with security and then make your way to the 11th floor we will be in room 1120.'''

Lee Cambria

October Chapter Meeting
The October meeting of the Pittsburgh chapter of OWASP will be held on the 22nd at 525 William Penn Place. Beginning at 11:00a.m. Richard Blake will discuss the goals and purpose of OWASP and introduce the group to possible outreach programs available for our members. Please plan to attend to share your experience and knowledge with the group.

When entering the building please register with security and then make your way to the 11th floor we will be in room 1120.

If you are planning to join us please e-mail Lee Cambria to reserve your seat.

[mailto:lee.cambria@owasp.org Lee Cambria]