Cluj

=Welcome=

Welcome to the OWASP Cluj-Napoca Chapter Homepage
Click here to join our mailing list. Follow us on Twitter.

OWASP Cluj-Napoca Chapter meetings / events are free and open. Cluj-Napoca benefits from a strong software development community and application security is one vital aspect to be taken into consideration. Everyone is welcome to join our chapter meetings, members and non-members.

The Chapter leader is [mailto:lucian.corlan@owasp.org Lucian Corlan]. The Chapter Board Members are: Vasile Dorca, Radu A. Munteanu, Cristian Serban, Lucian Suta and Tudor Blaga. Anyone who wants to get involved and help the Chapter evolve is very welcome. You want to present at one of our meetings / events (please read the speaker agreement).  In case you have any questions about the OWASP Cluj-Napoca Chapter, send an email to [mailto:lucian.corlan@owasp.org Lucian Corlan]

Next event: OWASP Cluj-Napoca InfoSec Event 2015 - 29th of January! For details please check Upcoming Events!

=Upcoming events=

1st OWASP Cluj-Napoca event #11: 29th of January, 2015
Location and host: Hotel Opera Plaza, Cluj-Napoca, Romania, Conference Room Cristal Schedule 09:00-10:00 Registration (& Coffee) 10:00-10:05 Intro OWASP Cluj-Napoca Lucian Corlan 10:05-10:20 Jim Manico - OWASP Cluj-Napoca Welcome - video recording -  10:20-10:50 Petko Petkov - Keynote: Everything is awesome! 10:55-11:35 Renato Rodrigues - Topic: I Didn't See That Coming (Weird Stuff on the Web) 11:40-12:00 Tudor Blaga - Topic: So you want to move to the Cloud … '''12:00-12:10 Short presentation of COM'ON Cluj-Napoca YourCluj.ro 12:10-12:30 All participants that actually work in the field of Security - 1-2 mins short presentation (optional!) 12:30-14:00 Lunch, Drinks & Social 14:00-14:40 Oana Cornea - Topic: Mobile applications security risks and defenses 14:45-15:10 Cristian Serban Topic: Java Securer Code 15:15-15:45 Subodh Sawant Topic: Application Security Risk Calculator '''15:50-16:00 Break 16:00-16:25 Cosmin Huruiala Topic: HTTP Access Control (CORS) 16:30-16:55 Lucian Corlan Topic: Endnote 17:00 ++ Drinks & Social Register here. Time: 10:00 to 17:00

Sponsors
Betfair Romania Development - Platinum Sponsor http://www.betfairromania.ro/ Checkmarx - Gold Sponsor https://www.checkmarx.com/

What is this event about:
OWASP Cluj-Napoca Chapter InfoSec Event 2015 is free and open. Cluj-Napoca benefits from a strong software development community and application security is one vital aspect to be taken into consideration. The presentations to be shown at the InfoSec Event 2015 will cover several Information Security Topics such as: Application Security - Attacks, Penetration Testing; Access Management; Cloud Security and others. Everyone with genuine interest into Information Security is welcome to join the event.

Who Should Attend?
• Application Developers • Application Testers and Quality Assurance • Application Project Management and Staff • Chief Information Officers, Chief Information Security Officers, Chief Technology Officers, Associates and Staff • Chief Financial Officers, Auditors, and Staff Responsible for IT Security Oversight and Compliance • Security Managers and Staff • Executives, Managers, and Staff Responsible for IT Security Governance • IT Professionals Interesting in Improving IT Security • Anyone interested in learning about or promoting Web Application Security

Speakers:
''Petko D. Petkov (pdp): Founder of Websecurify and frontman of the GNUCITIZEN Information Security Think Tank. pdp is a recognized information security researcher, security tools developer, penetration tester, frequent speaker at industry events, and published author who has contributed to several best-selling books in the field of information security.'' ''Renato Rodrigues: Holder of a MSc in Informatics Engineering with great interest in innovation and security issues - an area that I am interested in ever since I can remember. I am driven by opportunities of finding breakthrough ideas and developing them. I split my free time exploring the Android Platform and surfing some waves, whenever I get the chance. Twitter: @simps0n'' ''Oana Cornea: Currently I am working as an Application Security Analyst at Electronic Arts and I am the chapter leader of the OWASP chapter from Bucharest, Romania. I have been working in the field of IT security for almost 5 years and I am a Computer Science graduate with a Master in Information Technology Security. Oana's presentation will highlight the main mobile applications attack vectors, techniques and tools to perform a security review. These will be presented in connection with OWASP projects and will provide practical guidance on how to improve the security of mobile applications.'' ''Cristian Serban: He was responsible for software security in 3 development offices. He coordinated security testing of a wide range of products, mobile, web internal and externally developed. He also implemented SDLC in Agile projects by training Security Champions in each development team and included automated security testing in continuous delivery environment. Cristian worked 5 years in Betfair as Senior Apllication Security Analyst, then joined another online betting business and returned half a year ago at Betfair in Cluj'' ''Subodh Sawant: I have been in Application Security field for over 5 years managing application security programme and performing pentesting of web application, services and android apps. I have completed MSc Information Security from Royal Holloway, University of London. Subodh will present: Risk Calculator - a tool identifies the risk associated with an application change (at a high level) by using a balanced scorecard to identify common risk indicators or attributes'' ''Tudor Blaga: He has been working in Networking, Network Security and Infrastructure Security for more than 6 years and in research & education for more than 12 years. In his current role at Betfair he provides security consultancy for infrastructure projects, and trainings, demos to Security Champions. Holder of a PhD. in Telecommunications Engineering, he teaches course on Networking and Security at the Technical University of Cluj-Napoca. Tudor will present challenges, security concerns when moving to the Cloud''

=Upcoming events=

1st OWASP Cluj-Napoca event #11: 29th of January, 2015
Location and host: Hotel Opera Plaza, Cluj-Napoca, Romania, Conference Room Cristal Schedule 09:00-10:00 Registration (& Coffee) 10:00-10:05 Intro OWASP Cluj-Napoca Lucian Corlan 10:05-10:20 Jim Manico - OWASP Cluj-Napoca Welcome - video recording -  10:20-10:50 Petko Petkov - Keynote: Everything is awesome! 10:55-11:35 Renato Rodrigues - Topic: I Didn't See That Coming (Weird Stuff on the Web) 11:40-12:00 Tudor Blaga - Topic: So you want to move to the Cloud … '''12:00-12:10 Short presentation of COM'ON Cluj-Napoca YourCluj.ro 12:10-12:30 All participants that actually work in the field of Security - 1-2 mins short presentation (optional!) 12:30-14:00 Lunch, Drinks & Social 14:00-14:40 Oana Cornea - Topic: Mobile applications security risks and defenses 14:45-15:10 Cristian Serban Topic: Java Securer Code 15:15-15:45 Subodh Sawant Topic: Application Security Risk Calculator '''15:50-16:00 Break 16:00-16:25 Cosmin Huruiala Topic: HTTP Access Control (CORS) 16:30-16:55 Lucian Corlan Topic: Endnote 17:00 ++ Drinks & Social Register here. Time: 10:00 to 17:00

Sponsors
Betfair Romania Development - Platinum Sponsor http://www.betfairromania.ro/ Checkmarx - Gold Sponsor https://www.checkmarx.com/

What is this event about:
OWASP Cluj-Napoca Chapter InfoSec Event 2015 is free and open. Cluj-Napoca benefits from a strong software development community and application security is one vital aspect to be taken into consideration. The presentations to be shown at the InfoSec Event 2015 will cover several Information Security Topics such as: Application Security - Attacks, Penetration Testing; Access Management; Cloud Security and others. Everyone with genuine interest into Information Security is welcome to join the event.

Who Should Attend?
• Application Developers • Application Testers and Quality Assurance • Application Project Management and Staff • Chief Information Officers, Chief Information Security Officers, Chief Technology Officers, Associates and Staff • Chief Financial Officers, Auditors, and Staff Responsible for IT Security Oversight and Compliance • Security Managers and Staff • Executives, Managers, and Staff Responsible for IT Security Governance • IT Professionals Interesting in Improving IT Security • Anyone interested in learning about or promoting Web Application Security

Speakers:
''Petko D. Petkov (pdp): Founder of Websecurify and frontman of the GNUCITIZEN Information Security Think Tank. pdp is a recognized information security researcher, security tools developer, penetration tester, frequent speaker at industry events, and published author who has contributed to several best-selling books in the field of information security.'' ''Renato Rodrigues: Holder of a MSc in Informatics Engineering with great interest in innovation and security issues - an area that I am interested in ever since I can remember. I am driven by opportunities of finding breakthrough ideas and developing them. I split my free time exploring the Android Platform and surfing some waves, whenever I get the chance. Twitter: @simps0n'' ''Oana Cornea: Currently I am working as an Application Security Analyst at Electronic Arts and I am the chapter leader of the OWASP chapter from Bucharest, Romania. I have been working in the field of IT security for almost 5 years and I am a Computer Science graduate with a Master in Information Technology Security. Oana's presentation will highlight the main mobile applications attack vectors, techniques and tools to perform a security review. These will be presented in connection with OWASP projects and will provide practical guidance on how to improve the security of mobile applications.'' ''Cristian Serban: He was responsible for software security in 3 development offices. He coordinated security testing of a wide range of products, mobile, web internal and externally developed. He also implemented SDLC in Agile projects by training Security Champions in each development team and included automated security testing in continuous delivery environment. Cristian worked 5 years in Betfair as Senior Apllication Security Analyst, then joined another online betting business and returned half a year ago at Betfair in Cluj'' ''Subodh Sawant: I have been in Application Security field for over 5 years managing application security programme and performing pentesting of web application, services and android apps. I have completed MSc Information Security from Royal Holloway, University of London. Subodh will present: Risk Calculator - a tool identifies the risk associated with an application change (at a high level) by using a balanced scorecard to identify common risk indicators or attributes'' ''Tudor Blaga: He has been working in Networking, Network Security and Infrastructure Security for more than 6 years and in research & education for more than 12 years. In his current role at Betfair he provides security consultancy for infrastructure projects, and trainings, demos to Security Champions. Holder of a PhD. in Telecommunications Engineering, he teaches course on Networking and Security at the Technical University of Cluj-Napoca. Tudor will present challenges, security concerns when moving to the Cloud'' ''

=Sponshorship= Become a supporter of OWASP or of OWASP's Cluj-Napoca Chapter and help us to make application security more visible. All information about becoming a member/sponsor can be found here. https://www.owasp.org/index.php/Local_Chapter_Supporter

Chapter Supporters
Chapter Supporters