Atlanta Georgia

SPECIAL ANNOUNCEMENT
Jeremiah Grossman is coming to the ATL. Don't miss this event on OCT 13, 2009 for a 2 hr presentation on one of the industry's most dynamic speakers on an intriguing topic. Please see the Chapter Meetings tab for RSVP and abstract details.

Local News
As many of you know, we are steering OWASP-Atlanta to crank out some meaningful case studies with metrics. As part of the planning that goes into this, we have spoken to a few organizations that have expressed interest in gaining our expertise on an array of security topics that revolve around web application security. On our part, we need to formalize our A-Team in order to see who would be available for which types of case-study genres. If you are interested in partaking on this team, please let me know. You can reach me at tonyuv [at] versprite [dot] com. --VerSprite 19:24, 6 April 2009 (UTC)

Until our next meeting, spread the word on OWASP and get involved. From financial contributions or soliciting sponsorship to your current or former employers, please get involved. Your participation fuels the ongoing success of future events and workshops. Ultimately, all of our efforts benefit the greater Atlanta security community.

Last, put your money where your time is. Support your local chapter with a formal membership to a great non-profit organization aimed to elevate web application security. Please note that other chapters have the luxury to charge their members for attending some of their meetings. We hope that you find historical and future meetings to be of value and show support via a member based contribution. To contribute to OWASP-Atlanta, go here: Atlanta Georgia

Latest News
--VerSprite 18:42, 20 August 2009 (UTC) Thanks to all those who attended our last meeting on September 15th, 2009. Don't miss out on our feature 2009 presentation by Jeremiah Grossman on Security Religions &amp; Risk Windows, Oct 13th, 2008, 6-8pm. Details on this event is provided on our Chapter Meetings tab. If you attend one meeting this year, this is it. Please RSVP as soon as possible.

Staying in Touch
New IRC channel on EFnet called #owasp-atlanta Join us, everyday, all-day in our IRC channel for questions, answers, and discussions.

New OWASP Atlanta Linkedin Group. For those addicted to LinkedIn, we have a group you can further feed your addiction. The OWASP Atlanta Chapter. http://www.linkedin.com/groups?home=&amp;gid=1811960&amp;trk=anet_ug_hm

Register for the OWASP Atlanta Mailing List by signing up here: http://lists.owasp.org/mailman/listinfo/owasp-atlanta

OWASP Atlanta Supporters
Thanks to the following list of official sponsors and supportive organizations for their financial contributions and resource support.


 * Georgia Tech Information Security Center: [[Image:GTISC logo2.jpg]]
 * Fortify: [[Image:Fortify.jpg]]

2009 OWASP Atlanta Member Survey
The Atlanta OWASP Member Survey has come and gone. Thanks to all those that responded. A subset of the results is shown below in the form of top ranking security topics that members wish to see in 2009. More detailed results will be provided and discussed briefly during our first meeting, April 2nd, 2009.

Future Meetings
WHAT:: Security Religions &amp; Risk Windows

WHERE:: TSRB auditorium : Web : Directions : Google-Maps

WHEN:: October 13, 2009 6-8pm

WHO:: Jeremiah Grossman, CTO WhiteHat Security

ABSTRACT::  Information security threats are way up, fraud losses continue to rise, regulatory fines are increasingly common, and budget dollars to solve these myriad problems are in short supply. Hampered by a sluggish economy, organizations simply cannot afford to hire all the talent they need, implement every best-practice, or buy every blinking-light widget on the market. Sacrifices are unavoidable, and still risk must be managed. Each organization must decide for itself the level of risk it is willing to accept.

There is a difference between what is possible and what is probable, something we often lose sight of in the world of information security. For example, a vulnerability represents a possible way for an attacker to exploit an asset, but remember not all vulnerabilities are created equal. Obviously, we must also keep in mind that a vulnerability's mere existence does not necessarily mean it will be exploited, or indicate by whom or to what extent. Some vulnerabilities are more difficult to exploit than others and therefore attract different attackers. Autonomous worms &amp; viruses may attack one type of issue, while a sentient targeted attacker may prefer another path. Better understanding of these factors enables us to make informed business decisions about website risk management and what is probable.

In this presentation, Jeremiah Grossman will discuss the two prevailing but opposing security religions - Depth Religion and Breadth Religion. Jeremiah will then review the common misconceptions associated with each religion as it pertains to website security.

RSVP:: http://tr.im/owasp_meeting

COST: No costs, but all donations will be accepted as it helps pay for meeting related materials and provisions. Best way to support the chapter is to become a member.

Past Meetings
Atlanta Member Meeting 10.13.09

Atlanta Member Meeting 09.15.09

Atlanta Member Meeting 08.17.09

Atlanta Member Meeting 06.03.09

Atlanta Member Meeting 04.25.09

Atlanta Member Meeting 04.02.09

Atlanta ISACA OWASP Meeting 03.27.09

Atlanta Leadership Meeting 03.05.09

Atlanta Leadership Meeting 02.26.09

Atlanta OWASP May 2007 Meeting

Atlanta OWASP December 06 Social

Atlanta OWASP April Meeting

Chapter Meeting March 29th 2006

October 26th Meeting

April 27th, Chapter meeting a SUCCESS!

March 30th, 2005

February Meeting

June 2005

Atlanta Georgia OWASP Chapter Leaders

 * Tony UcedaVelez - Chapter Lead
 * Charles Burke - Chapter Lead
 * Dean Saxe - Chapter Lead