Jump to: navigation, search


01 July 2011 12:00 - 14:00


ANZ, 833 Collins St, Docklands, Melbourne VIC 3008

Room Location: Core C

Please ask about OWASP at reception and they will direct you to the room (room: Core C).

The easiest way to get there is to hop on the tram number 48 or 11, on Collins St and go right to the end of Collins. Alternatively, walk down Collins St this is a walking distance . This will be the last stop.


Andrew van der Stock


Application Security Verification Standard, and Q&A session on Global Chapter HandBook and Global Chapters Committee

This talk will take you through the history of the ASVS, what the ASVS attempts to cover, and what it deliberately doesn't cover. Lastly, we will look at the future of the ASVS and where you can help with the ASVS effort.

Andrew will hold a 'Q&A' session on global chapters handbook and global chapters committee, in which he will take you through the current Global Chapter Handbook, some of the changes we are considering to make things better / clearer, and then take questions from the floor about the global chapters committee and what we can do for local membership drives and helping chapters succeed.

Abouth the speaker

Andrew van der Stock is a member of the OWASP Global Chapter Committee. He has been working in the InfoSec Community in Australia and globally since 1998 and has established himself as highly respected consultant in Australia and in the USA. Andrew devotes much of his limited personal time to industry open source projects such as OWASP, and was the lead and author of some of the most used OWASP materials out there - OWASP Developer Guide 2.0, OWASP Top 10 2007, and is currently interested in helping the Application Security Verification Standard.
Andrew has performed security architecture, code reviews, software assurance, risk management, written policy, and performed penetration testing for clients in Australia and the USA for more than twelve years.
Andrew has returned from the USA in 2009 after consulting for global Fortune 500 organizations in over 25 states. Andrew has taught more than a thousand developers in AsiaPac and in the USA. He is an in demand speaker, with appearances at Ruxcon, Black Hat, OSCON, SAGE-AU, AusCERT, and OWASP AU and OWASP EU, he is seen as an authoritative source in software security, penetration testing and Policy & Governance. He is currently without a job, which is annoying, so if you want to help keep his daughter in Thomas the Tank Engine rides and cats in the luxurious lifestyle they are used to, please say hi at the meeting.

Hope to see you all there.

OWASP Melbourne :)