Dallas

THANKS TO OUR SPONSORS: The Dallas Chapter of OWASP would like to thank Richland College for hosting our meetings.

Get Connected and Stay Connected
In addition to our Mailing List we also have a Dallas OWASP Twitter Feed a Dallas OWASP Facebook Page and a Dallas OWASP Linkedin Group. We invite you to join or follow whichever groups suit you, get involved with your fellow Dallas OWASP Chapter members, and we'll keep them all up to date with the latest official news and announcements from the chapter leadership.

Click any of the links below to visit the corresponding Dallas OWASP social networking groups:

October Meeting
When: Wednesday October 1, 2014 from 11:30 AM – 1:00 PM

Topic: Succeeding with Enterprise Software Security Key Performance Indicators

Enterprise software security has been a hot topic for over a decade, yet enterprises of all sizes continue to fail at explaining measurable gains, but why? The answer lies in what and how it is measured. Success begins with realistic, business-aligned KPIs which can be effectively measured to demonstrate improvement, or lack thereof. Come learn what, and how to effectively measure software security.

Who: Rafal Los, Director, Office of the CISO

Rafal Los brings a pragmatic approach to enterprise information security using his 15 years of technical, consulting and management skills. As director of advisory solutions research and analysis and member of the Office of the CISO for Accuvant, Los helps organizations build intelligent, defensible and operationally efficient security programs. He also is responsible for driving Accuvant’s solutions research for the information security community. Prior to joining Accuvant, Los served as principal, strategic security services at HP Enterprises. While there he developed new services-based offerings from concept through prototype and launch stages, and spearheaded a cross-business task team to develop new use cases for products and service offerings within the existing portfolio. Previously at HP, Los served several diverse roles including security strategist of enterprise security products where he advised customers on implementing practical solutions, and wrote and maintained the top blog in HP Software, “Following the White Rabbit.” Prior to HP, Los held various positions at GE Energy, EnterEdge Technology and EnvestnetPMC. Los is an advocate for focus on sound security fundamentals and for the principles of “right defenses, right place, right reason.” He is a contributor to open standards and various organizations such as OWASP and the Cloud Security Alliance. He has served as a speaker at conferences such as Black Hat, ISSA International and InfoSec World. Los received his bachelor’s degree in computer information systems from Concordia University.

- See more at: http://www.accuvant.com/office-of-the-CISO#sthash.PZVyUuwe.dpufRafal

Where: Richland College, 12800 Abrams Road, Dallas, TX 75243, Room: Sabine Hall: SH117

Map

March Meeting
When: Wednesday March 5, 2014 from 11:30 AM – 1:00 PM

Topic:  OWASP Dallas basic Python tutorial

Who: Matt Parsons, CISSP MSM

Where: Richland College, 12800 Abrams Road, Dallas, TX 75243, Room: Sabine Hall: SH117

September Meeting
When: Wednesday September 11, 2013 from 11:30 AM – 1:00 PM

Topic:  PCI Mobile Payment Acceptance Security Guidelines for Developers

Who: Ralph Spencer Poore, Director, Emerging Standards at PCI Security Standards Council

Where: Richland College, 12800 Abrams Road, Dallas, TX 75243, Room: Sabine Hall: SH117

Slides: [[Media:Dallas OWASP 9-11-2013.pdf]]

May Meeting
When: Wednesday May 8, 2013 from 11:30 AM – 1:00 PM

Topic:  Implementation Patterns for Software Security Programs

Who: Dan Cornell, Principal, Denim Group

Where: Richland College, 12800 Abrams Road, Dallas, TX 75243, Room: Sabine Hall: SH117

Map

February Meeting
When: Wednesday February 6, 2013 from 11:30 AM – 1:00 PM

Topic:  Using Webappsec Vulns to Break Censorship

Who: Robert Hansen, a.k.a. rsnake

Where: Richland College, 12800 Abrams Road, Dallas, TX 75243, Room: Sabine Hall: SH117

Map

November Meeting
When: Wednesday November 7, 2012 from 11:30 AM – 1:00 PM

Topic:  Flame, Stuxnet, One to be Named and the Elderwood Project - Today’s Threat Landscape

Who: John R. Hill, CISSP, Principal Security Strategist Security Business Practice Symantec

Where: Richland College, 12800 Abrams Road, Dallas, TX 75243, Room: Sabine Hall: SH118

Map

October Meeting
When: Wednesday October 3, 2012 from 11:30 AM – 1:00 PM

Topic:  Exploitation Techniques and Mitigation

Who: James McFadyen, Information Security Engineer and Director of Customer Support at HAWK Network Defense, Inc

Where: Richland College, 12800 Abrams Road, Dallas, TX 75243, Room: Sabine Hall: SH118

Map

September Meeting
When: Wednesday September 12, 2012 from 11:30 AM – 1:00 PM

Topic:  The Importance of Application Security.

Who: Peter Perfetti; Director, Security Services & Operations IMPACT Security, LLC

Where: Richland College, 12800 Abrams Road, Dallas, TX 75243, Room: Sabine Hall: SH118

Map

August Meeting
When: Wednesday August 1, 2012 from 11:30 AM – 1:00 PM

Topic:  Malicious Math: Recent Real-World Cryptographical and Computational Threats on the Web.

Who: Derek Soeder, founder, Ridgeway Internet Security

Where: Richland College, 12800 Abrams Road, Dallas, TX 75243, Room: Sabine Hall: SH118

Map

Slides: [[Media:Malicious Math - Final.pptx‎]]

July Meeting
When: Wednesday July 11, 2012 from 11:30 AM – 1:00 PM

Topic:  Reinventing Dynamic Testing: Real-Time Hybrid

Who: Adam Hils; Senior Product Manager HP Enterprise Security Products

Where: Richland College, 12800 Abrams Road, Dallas, TX 75243, Room: Sabine Hall: SH118

Map

June Meeting
When: Wednesday June 6, 2012 from 11:30 AM – 1:00 PM

Topic:  Is There An End to Testing Ourselves Secure?

Who: Rohit Sethi; Vice President, Product Development, SD Elements

Where: Richland College, 12800 Abrams Road, Dallas, TX 75243, Room: Sabine Hall: SH118

Map

May Meeting
When: Wednesday, May 2, 2012 from 11:30 AM to 1:00 PM

Topic:  OWASP and PCI DSS Requirement 6.5

OWASP and PCI DSS Requirement 6.5. Keeping current with the OWASP top 10 and how it impacts companies PCI compliance and training. Tony will discuss how McAfee complies to the requirement and how McAfee must make changes to match the current top 10 as well has making sure that developers keep up to date on training. Who: Tony Gunn; Director of Security Operations for McAfee Where: North Lake College (Central Campus) 5001 N. MacArthur Blvd. Irving, TX 75038 Phone: 972-273-3000 Building: A Room: 206

Map

March Meeting
When: March 7, 2012, 11:30am - 1:00pm

Topic:  AAA for Hybrid Cloud Environment

During this session, presented by Symplified, we will explore four areas of interest.

Web, SaaS, Mobile Application Adoption Protecting sensitive data WAM for the Public Cloud Identity Sprawl

Who: Cullen Landrum, CISSP is a Senior Systems Engineer at Symplified.

Where: North Lake College (Central Campus), 5001 N. MacArthur Blvd. Irving, TX 75038 Phone: 972-273-3000 Building: A Room: 206

Map

February Meeting
When: February 1, 2012, 11:30am - 1:00pm

Topic:  Web Application Vulnerability Testing with Nessus

Who: Rik A. Jones is a Senior Information Security Analyst for the Dallas County Community College District (DCCCD)

Where: SMU Caruth Hall Palmer Conference Center / 406 Caruth Hall 3145 Dyer Street Dallas, Texas 75205

Map (Caruth Hall is building 44 on the campus map link.)

January Meeting
When: January 11, 2012, 11:30am - 1:00pm

Topic:  OWASP TOP 10

Power point demonstration of OWASP Top Ten Web Application Security Vulnerabilities with actual hacking examples. This presentation will cover such vulnerabilities as SQL injection, XSS and CSRF. Discussion, hands on exercise and question and answer session.

Who: Matt Parsons, VP Parsons Software Security Consulting

Where: North Lake College (Central Campus) 5001 N. MacArthur Blvd. Irving, TX 75038 Phone: 972-273-3000 Building: G Room: 405

Map

November 7, 2012
Title:  Internet Security Threat Report

Speaker: John R. Hill, CISSP, Principal Security Strategist Security Business Practice Symantec

Slides: [[Media:Symantec_ISTR_17.pdf‎]]

February 1, 2012
Title: Web Application Vulnerability Testing with Nessus

Speaker: Rik A. Jones, Senior Information Security Analyst for the Dallas County Community College District (DCCCD)

Slides: [[Media:Web Application Vul Testing with Nessus 2012.02.01.pdf‎]] [[Media:OWASP Broken Web Applications 2012.02.01.pdf‎]]

January 11, 2012
Title: OWASP TOP 10

Speaker: Matt Parsons, VP Parsons Software Security Consulting

Slides: [[Media:OWASPtopTen.pdf‎]]