User:Mchalmers

https://www.owasp.org/images/thumb/8/8e/Chalmers%2C_Matthew.jpg/150px-Chalmers%2C_Matthew.jpg I've worked in the information assurance field my entire career, starting as a US Navy cryptologic linguist at the National Security Agency. I'm a Certified Information Security Manager and a Certified Ethical Hacker, and I've earned numerous other professional certifications and a Master of Science in Information Assurance. I specialize in information, technology, and process assurance, audit, compliance, control, governance, risk, security, and usability. I have a passion for making things better and helping people succeed.

I've been involved with OWASP since about 2002. I can be reached at matthew . chalmers @ owasp . org.



OWASP Wiki

 * My wiki contributions

OWASP Projects

 * Local Chapter Resources
 * Certification Project (content owner/reviewer)
 * Application Security Requirements Project (interim project manager)
 * OWASP EU Summit 2008
 * OWASP PR Project
 * Global Chapter Committee
 * OWASP Global Summit 2011
 * Audit Working Session Chair
 * PCI Working Session Co-Chair
 * Fundraising Appeal
 * OWASP Governance Task Force
 * OWASP Codes of Conduct
 * Certifying Bodies

OWASP Chapters

 * Founding member of the original DC Local Chapter (which became the DC-Maryland chapter, then the Washington DC chapter)
 * Active member 2004-2005
 * Recorded meeting minutes and maintained chapter web pages (pre-wiki)
 * Founder and former chapter leader of the original Milwaukee chapter
 * "Member-at-Large"
 * Chicago chapter (2005-2012)
 * Milwaukee chapter (2005-2016)
 * Madison chapter (2012-2016)
 * Minneapolis-St. Paul chapter (2016-Present)

Non-OWASP Involvement

 * ACFEA (Armed Forces Communications and Electronics Association)
 * ACM (Association for Computing Machinery)
 * SIGACT (Special Interest Group on Algorithms and Computation Theory)
 * SIGCAS (Special Interest Group on Computers and Society)
 * SIGCHI (Special Interest Group on Computer-Human Interaction)
 * SIGSAC (Special Interest Group on Security, Audit, and Control)
 * CSA (Cloud Security Alliance)
 * EFF (Electronic Frontier Foundation)
 * IACR (International Association for Cryptologic Research)
 * IATFF (Information Assurance Technical Framework Forum)
 * IEEE (Institute of Electrical & Electronics Engineers)
 * Communications Society
 * Communications and Information Security Technical Committee
 * Computer Society
 * Cybersecurity Community
 * Technical Committee on Security & Privacy
 * Information Theory Society
 * Signal Processing Society Information Forensics and Security Technical Committee
 * IIA (Institute of Internal Auditors)
 * IMI (Identity Management Institute)
 * ISACA (Information Systems Audit and Control Association)
 * ISoc (Internet Society)
 * IETF (Internet Engineering Task Force)
 * SAAG (Security Area Advisory Group)
 * IRTF (Internet Research Task Force)
 * CFRG (Crypto Forum Research Group)
 * NIST (National Institute of Standards and Technology) ITL (Information Technology Laboratory) CSD (Computer Security Division) CTG (Cryptographic Technology Group)
 * Cryptographic Key Management Project
 * SANS Institute (System administration, Audit, Networking and Security Institute)
 * Mentor Program
 * WASC (Web Application Security Consortium)
 * Articles Peer Review Team

Certifications

 * CIAM - Certified Identity and Access Manager
 * CIRM - Certified Identity Risk Manager
 * ACE - AccessData Certified Examiner
 * CCISO - Certified Chief Information Security Officer
 * CISM - Certified Information Security Manager
 * CCSK - Certified in Cloud Security Knowledge
 * CRMA - Certified in Risk Management Assurance
 * GCFA - GIAC Certified Forensic Analyst
 * ITIL Foundation Certified (Version 3)
 * CISA - Certified Information Systems Auditor
 * CHS - Certified in Homeland Security
 * CEH - Certified Ethical Hacker
 * GSNA - GIAC-certified Systems and Network Auditor
 * MCP - Microsoft Certified Professional

Education

 * Master of Science, Information Assurance, Capitol Technology University
 * Bachelor of Arts, Psychology & Philosophy, Missouri University of Science & Technology

Training

 * CITI - Human Subjects Research (10/2014)
 * IIA - Risk-Based, Process-Oriented & Performance-Driven Operational Auditing (6/2013)
 * IIA - Antifraud Controls using Data Mining and Continuous Monitoring Techniques (8/2011)
 * ISACA - Auditing & Securing Cloud-Based Services (1/2011)
 * ISACA - Information Security Management & Strategies for Implementing IT Governance (12/2010)
 * PDS/SOScorp - ITIL v3 Foundation Course (9/2008)
 * SANS – Computer Forensics, Investigation, and Response (4/2008)
 * Entellus Technology Group – SAP ERP Basis Auditing & Security Risks (12/2007)
 * SAP America – Virsa Compliance Calibrator Training (10/2006)
 * IIA – SAP ERP Technical Audit (8/2006)
 * SPI Dynamics – Web Application Security Assessment with WebInspect (11/2005)
 * SANS – Hacker Techniques, Exploits and Incident Handling (10/2005)
 * Infosec Institute – Advanced Ethical Hacking: Expert Penetration Testing (1/2005)
 * Mile2 – Certified Ethical Hacker Training (7/2004)
 * Foundstone – Ultimate Web Hacking (9/2003)
 * Siegeworks – Advanced AppAuditor Training (12/2002)
 * SANS – Auditing Networks, Perimeters, and Systems (4/2002)
 * Sanctum – AppScan AppAuditor Training (5/2001)
 * National Cryptologic School - Information Systems Security Engineering (2/2000)
 * National Cryptologic School - Operational Information Systems Security (11/1998)

Social Media Profiles
https://icons.iconarchive.com/icons/danleech/simple/48/linkedin-icon.png https://icons.iconarchive.com/icons/danleech/simple/48/xing-icon.png  https://icons.iconarchive.com/icons/danleech/simple/48/facebook-icon.png  https://icons.iconarchive.com/icons/danleech/simple/48/google-plus-icon.png  https://pbs.twimg.com/profile_images/491231714056732672/4tBLt6aW_normal.png  https://icons.iconarchive.com/icons/danleech/simple/48/amazon-icon.png  http://www.experimental-designs.com/wp-content/uploads/2014/03/Research-Gate-Icon.png  http://www.thegrumpyhacker.com/images/academia-small.png  http://people.ucsc.edu/~mclapham/googlescholar.jpg  https://gouessej.files.wordpress.com/2011/07/sourceforge.png  https://web.archive.org/web/20141225032524im_/http://www.sigsoft.org/images/acm_logo.gif  https://lh3.googleusercontent.com/-mOf05sh0-B0/AAAAAAAAAAI/AAAAAAAAAAA/F5wexTHG_LM/s48-c-k-no/photo.jpg  https://pbs.twimg.com/profile_images/378800000668457482/ba86ae99ee34618394f7418cd801e7a9_normal.jpeg  https://pbs.twimg.com/profile_images/441423558619586560/a8__KWaa_normal.png  https://pbs.twimg.com/profile_images/2724646359/e9815d877cd092a19918df74e04f0415_normal.png  http://www.cabanasdondelawelli.cl/images/logo-airbnb.png  http://www.yellowtoad.com/images/mstc.png