Difference between revisions of "Bay Area"

From OWASP
Jump to: navigation, search
 
(45 intermediate revisions by 2 users not shown)
Line 1: Line 1:
 
{{Chapter Template|chaptername=Bay Area|extra=|mailinglistsite=http://lists.owasp.org/mailman/listinfo/owasp-bayarea|emailarchives=http://lists.owasp.org/pipermail/owasp-bayarea}}  
 
{{Chapter Template|chaptername=Bay Area|extra=|mailinglistsite=http://lists.owasp.org/mailman/listinfo/owasp-bayarea|emailarchives=http://lists.owasp.org/pipermail/owasp-bayarea}}  
 +
 +
= Next Event=
 +
[[Bay_Area#Next_Event_--_May_2014_-_Redwood_City_.40_Evernote | Chapter Meeting - Thurs 5/8]]
 +
 +
 +
== Geographic Area of Bay Area Chapter ==
 +
 +
The 'Bay Area' is actually the San Francisco Bay Area in California, which is near other large towns that are across the bay from San Francisco such as Berkeley and Oakland, and south of San Francisco are San Mateo, Palo Alto, and the whole San Jose area.  Currently, the Bay Area OWASP Chapter covers this whole geographic region.
 +
 +
== Become a Presenter ==
 +
Submit your talk now for an upcoming OWASP Bay Area Chapter Meeting
 +
 +
[https://docs.google.com/a/owasp.org/forms/d/1ImmfY5KtSILjIym1uToOzSmT2Xv58bVzfxUPDAAn9-c/viewform Link to submit]
 +
 +
=== Notes about OWASP presentations ===
 +
OWASP presentations are geared for a technical audience. We are particularly interested in new approaches to tackling application security problems, defensive techniques for new technology in the application security space and lessons learned from developers and security professionals tackling application security. Please consider a wide breadth of topic areas and we can discuss if they should be tailored in a particular direction for the OWASP audience.
 +
 +
OWASP chapter presentations must not be sales pitches and must adhere to a vendor neutral approach to the topic.
  
  
 
== Chapter Meetings ==
 
== Chapter Meetings ==
  
 +
RSS of all public bay area events (it only contains the next event so don't worry if it's empty when you subscribe)
 +
 +
http://www.eventbrite.com/rss/user_list_events/22961305858
 +
 +
=== About Presentation Events ===
 +
Presentation events will feature 1 or more speakers discussing application security. These events will include a networking session, with drinks and food, before and after the event.
 +
 +
=== About OWASP Social Hours===
 +
The purpose of the OWASP social gathering is:
 +
 +
* Informal security chat - the benefits of "hallway con" and security talk with others in the industry
 +
* Networking - meet other people in the field and industry
 +
* After work drinks - a nice break after a long work day
 +
 +
Note: These events won't have any formal presentations. They're meant to be social gatherings to meet others in the industry and chat about security. Check our quarterly OWASP Bay Area schedule for the security presentation events.
 +
https://www.owasp.org/index.php/Bay_Area
 +
 +
Is your organization interested in hosting an OWASP social hour in the bay area (San Francisco, South Bay, East Bay)? Contact michael.coates@owasp.org
 +
 +
 +
 +
 +
=== Next Event -- May 2014 - Redwood City @ Evernote ===
 +
OWASP Social Hour in San Francisco hosted by [https://Evernote.com/ Evernote]<br>
 +
 +
[http://www.eventbrite.com/e/owasp-chapter-meeting-in-redwood-city-hosted-by-eventbright-tickets-11429444777 RSVP Here]<br>
 +
 +
 +
====When====
 +
 +
* Thursday, May 8, 2014
 +
* 5:30-8pm
 +
 +
====Where====
 +
 +
Evernote, 305 Walnut St Redwood City, CA 94063
 +
 +
10 minute walk from caltrain
 +
 +
====Agenda====
 +
 +
5:30-6:15 pm - Networking with Drinks & Food<br>
 +
6:15-6:45 : Speaker <br>
 +
7:00-7:30 : Speaker <br>
 +
7:30-8:00 : More food, drink, and security "hallway con"<br>
 +
 +
====Speakers====
 +
* Arshad Noor - CTO, StrongAuth
 +
* Rich Tener - Director of Security, Evernote
 +
 +
 +
'''Arshad Noor'''
 +
 +
Arshad is the CTO of StrongAuth, Inc., an Enterprise Key Management solutions provider since 2001. He is the creator of the industry's first open-source enterprise key-management software (StrongKey) and a contributor of FOSS-crypto-tools (CSRTool, CryptoEngine) over the years. He is a prolific writer and speaker on the subject of data-security. More details on Arshad are available at [http://www.linkedin.com/in/arshadnoor linkedin.com]
  
=== July 2013 ===
+
Talk
'''When''': Thursday, July 11, 2013 from 5:30 PM to 8:30 PM (PST)
+
  
'''Location''': Room 150, University Hall, UC Berkeley.
+
Can you do cryptographic key-management in the public cloud? (No, you can't). Can you host web-applications in the public cloud without userid/passwords to your application, or without SSL/TLS? (Yes, you can). Is there a better way of designing your web-applications so you can use public clouds safely while complying with data-security regulations anywhere? (Yes, there is).
  
The room is to the immediate left after entering the building from
 
Addison street at ground level (not basement level).
 
  
For driving/public-transit directions, look up:
+
'''Rich Tener'''
2199 Addison St., Berkeley, CA, 94720
+
  
 +
Rich is a security practitioner with experience in a wide range of security disciplines. He's helped companies assess security weaknesses and materialize risk on the offensive side and build and execute programs to protect on the defensive side. He drives practical, effective security guidance that balances business needs with mitigating risk. He's held roles and demonstrated success ranging from deeply technical as an individual contributor to highly strategic in senior management. [https://www.linkedin.com/profile/view?id=8405454 more info on linkedin.com]
  
 +
Talk
  
'''No RSVP Required'''
+
Rich will talk about the evolution of security at a startup and lessons learned when building a security team from the ground up.
  
Details:
 
  
5:30 - 5:45 Social gathering
+
''
 +
'''OWASP does not endorse or recommend commercial products or services, allowing our community to remain vendor neutral with the collective wisdom of the best minds in software security worldwide.'''''
  
5:45 - 6:00 Welcome (Cory Scott) / OWASP Update (Sarah Baso)
+
==Past Events==
  
6:00 - 6:15 An Empirical Study of Vulnerability Rewards Programs, Devdatta Akhawe
+
==== March 2014 - San Francisco @ Stripe ====
 +
OWASP Social Hour in San Francisco - Wednesday, Mar 12, 2014
 +
Hosted by [https://stripe.com/ Stripe]<br>
  
6:15 - 7:15 "Putting Your Robots to Work", Twitter Security Team
+
==== Feb 2014 - San Jose @ Jillians ====
 +
OWASP Developer Training & Social Hour - Monday 2/24/2013
 +
Hosted by OWASP at Jillian's Billiards Club
  
 +
==== Feb 2014 - Special Free Training Event ====
 +
OWASP is hosting a special security boot camp for all RSA attendees and local developers. The training is recommended for developers who want to learn more about securing their code as well as security professionals who want to become acquainted with the latest web vulnerabilities. 
  
 +
Presented by Jim Manico and Eoin Keary, this intensive boot camp focuses on the most common web application security problems, including aspects of both the OWASP Top Ten and the MITRE Top 25. The course will introduce and demonstrate application assessment techniques, illustrating how application vulnerabilities can be exploited so students really understand how to avoid introducing such vulnerabilities in their code and understand fixes. 
  
Getting There:
+
==== Jan 2014 - San Jose @ F5====
 +
OWASP Social Hour in San Jose - Wednesday 1/22/2013
 +
Hosted by [http://www.f5.com/ F5]
  
BART:
+
==== Dec 2013 - San Francisco @ Twilio ====
The "Downtown Berkeley" BART station is two blocks away.
+
OWASP Social Hour in San Francisco - Thursday 12/19/2013
 +
Hosted by [http://www.twilio.com/ Twilio]
  
Parking:
+
==== Nov 2013 - San Francisco @ LendingClub ====
It's Summer, and metered street parking is available nearby.
+
OWASP Social Hour in Mountain View - Wednesday 11/6/13
 +
Hosted by [https://www.lendingclub.com/ LendingClub]
  
Paid off-street parking is also available. One street south on Center street, the Bank of America lot is cheap but small, and there is a large
+
==== Sept 2013 - Mt View @ Shape Security====
lot on Alston street between Shattuck and Milvia.
+
OWASP Social Hour in Mountain View Wednesday 9/25/13
 +
Hosted by [http://www.shapesecurity.com/ Shape Security]
  
== Bay Area Past Events ==
+
==== July 2013 - Berkeley @ University of Berkely====
 +
OWASP Presentation Meeting
  
[https://www.owasp.org/index.php/Bay_Area_Past_Events Bay Area Past Events]
+
* An Empirical Study of Vulnerability Rewards Programs, Devdatta Akhawe
 +
* "Putting Your Robots to Work", Twitter Security Team
  
 +
==== Older Events ====
 +
[[Bay Area Past Events]]
  
 
== Bay Area Chapter Leaders ==
 
== Bay Area Chapter Leaders ==
Line 52: Line 138:
 
*[mailto:teresa.ann.stevens2009@gmail.com Teresa Stevens]  
 
*[mailto:teresa.ann.stevens2009@gmail.com Teresa Stevens]  
 
*[mailto:cory@crazypenguin.com Cory Scott]
 
*[mailto:cory@crazypenguin.com Cory Scott]
 +
*[[User:MichaelCoates | Michael Coates]] - Contact for OWASP Social Hour Events
  
 +
== Stay In Touch ==
 +
* All events will be listed on this webpage
 +
* Keep in touch via twitter [https://twitter.com/OWASPBayArea @OWASPBayArea] or on [https://www.linkedin.com/groups/OWASP-BayArea-6568682 Linkedin]
  
  
 
[[Category:California]]
 
[[Category:California]]
 
[[Category:OWASP Chapter]]
 
[[Category:OWASP Chapter]]

Latest revision as of 10:44, 5 May 2014

Contents

OWASP Bay Area

Welcome to the Bay Area chapter homepage.
Click here to join the local chapter mailing list.

Participation

OWASP Foundation (Overview Slides) is a professional association of global members and is and open to anyone interested in learning more about software security. Local chapters are run independently and guided by the Chapter_Leader_Handbook. As a 501(c)(3) non-profit professional association your support and sponsorship of any meeting venue and/or refreshments is tax-deductible. Financial contributions should only be made online using the authorized online chapter donation button. To be a SPEAKER at ANY OWASP Chapter in the world simply review the speaker agreement and then contact the local chapter leader with details of what OWASP PROJECT, independent research or related software security topic you would like to present on.

Sponsorship/Membership

Btn donate SM.gif to this chapter or become a local chapter supporter.

Or consider the value of Individual, Corporate, or Academic Supporter membership. Ready to become a member? Join Now BlueIcon.JPG

Next Event

Chapter Meeting - Thurs 5/8


Geographic Area of Bay Area Chapter

The 'Bay Area' is actually the San Francisco Bay Area in California, which is near other large towns that are across the bay from San Francisco such as Berkeley and Oakland, and south of San Francisco are San Mateo, Palo Alto, and the whole San Jose area. Currently, the Bay Area OWASP Chapter covers this whole geographic region.

Become a Presenter

Submit your talk now for an upcoming OWASP Bay Area Chapter Meeting

Link to submit

Notes about OWASP presentations

OWASP presentations are geared for a technical audience. We are particularly interested in new approaches to tackling application security problems, defensive techniques for new technology in the application security space and lessons learned from developers and security professionals tackling application security. Please consider a wide breadth of topic areas and we can discuss if they should be tailored in a particular direction for the OWASP audience.

OWASP chapter presentations must not be sales pitches and must adhere to a vendor neutral approach to the topic.


Chapter Meetings

RSS of all public bay area events (it only contains the next event so don't worry if it's empty when you subscribe)

http://www.eventbrite.com/rss/user_list_events/22961305858

About Presentation Events

Presentation events will feature 1 or more speakers discussing application security. These events will include a networking session, with drinks and food, before and after the event.

About OWASP Social Hours

The purpose of the OWASP social gathering is:

  • Informal security chat - the benefits of "hallway con" and security talk with others in the industry
  • Networking - meet other people in the field and industry
  • After work drinks - a nice break after a long work day

Note: These events won't have any formal presentations. They're meant to be social gatherings to meet others in the industry and chat about security. Check our quarterly OWASP Bay Area schedule for the security presentation events. https://www.owasp.org/index.php/Bay_Area

Is your organization interested in hosting an OWASP social hour in the bay area (San Francisco, South Bay, East Bay)? Contact michael.coates@owasp.org



Next Event -- May 2014 - Redwood City @ Evernote

OWASP Social Hour in San Francisco hosted by Evernote

RSVP Here


When

  • Thursday, May 8, 2014
  • 5:30-8pm

Where

Evernote, 305 Walnut St Redwood City, CA 94063

10 minute walk from caltrain

Agenda

5:30-6:15 pm - Networking with Drinks & Food
6:15-6:45 : Speaker
7:00-7:30 : Speaker
7:30-8:00 : More food, drink, and security "hallway con"

Speakers

  • Arshad Noor - CTO, StrongAuth
  • Rich Tener - Director of Security, Evernote


Arshad Noor

Arshad is the CTO of StrongAuth, Inc., an Enterprise Key Management solutions provider since 2001. He is the creator of the industry's first open-source enterprise key-management software (StrongKey) and a contributor of FOSS-crypto-tools (CSRTool, CryptoEngine) over the years. He is a prolific writer and speaker on the subject of data-security. More details on Arshad are available at linkedin.com

Talk

Can you do cryptographic key-management in the public cloud? (No, you can't). Can you host web-applications in the public cloud without userid/passwords to your application, or without SSL/TLS? (Yes, you can). Is there a better way of designing your web-applications so you can use public clouds safely while complying with data-security regulations anywhere? (Yes, there is).


Rich Tener

Rich is a security practitioner with experience in a wide range of security disciplines. He's helped companies assess security weaknesses and materialize risk on the offensive side and build and execute programs to protect on the defensive side. He drives practical, effective security guidance that balances business needs with mitigating risk. He's held roles and demonstrated success ranging from deeply technical as an individual contributor to highly strategic in senior management. more info on linkedin.com

Talk

Rich will talk about the evolution of security at a startup and lessons learned when building a security team from the ground up.


OWASP does not endorse or recommend commercial products or services, allowing our community to remain vendor neutral with the collective wisdom of the best minds in software security worldwide.

Past Events

March 2014 - San Francisco @ Stripe

OWASP Social Hour in San Francisco - Wednesday, Mar 12, 2014 Hosted by Stripe

Feb 2014 - San Jose @ Jillians

OWASP Developer Training & Social Hour - Monday 2/24/2013 Hosted by OWASP at Jillian's Billiards Club

Feb 2014 - Special Free Training Event

OWASP is hosting a special security boot camp for all RSA attendees and local developers. The training is recommended for developers who want to learn more about securing their code as well as security professionals who want to become acquainted with the latest web vulnerabilities.

Presented by Jim Manico and Eoin Keary, this intensive boot camp focuses on the most common web application security problems, including aspects of both the OWASP Top Ten and the MITRE Top 25. The course will introduce and demonstrate application assessment techniques, illustrating how application vulnerabilities can be exploited so students really understand how to avoid introducing such vulnerabilities in their code and understand fixes.

Jan 2014 - San Jose @ F5

OWASP Social Hour in San Jose - Wednesday 1/22/2013 Hosted by F5

Dec 2013 - San Francisco @ Twilio

OWASP Social Hour in San Francisco - Thursday 12/19/2013 Hosted by Twilio

Nov 2013 - San Francisco @ LendingClub

OWASP Social Hour in Mountain View - Wednesday 11/6/13 Hosted by LendingClub

Sept 2013 - Mt View @ Shape Security

OWASP Social Hour in Mountain View - Wednesday 9/25/13 Hosted by Shape Security

July 2013 - Berkeley @ University of Berkely

OWASP Presentation Meeting

  • An Empirical Study of Vulnerability Rewards Programs, Devdatta Akhawe
  • "Putting Your Robots to Work", Twitter Security Team

Older Events

Bay Area Past Events

Bay Area Chapter Leaders

Stay In Touch