Difference between revisions of "Cleveland"

From OWASP
Jump to: navigation, search
(Headline text)
(Upcoming Meetings)
(22 intermediate revisions by one user not shown)
Line 1: Line 1:
 
{{Chapter Template|chaptername=Cleveland|extra=The chapter leader is [mailto:kstasiak@securestate.com Ken Stasiak]|mailinglistsite=http://lists.owasp.org/mailman/listinfo/owasp-cleveland|emailarchives=http://lists.owasp.org/pipermail/owasp-cleveland}}
 
{{Chapter Template|chaptername=Cleveland|extra=The chapter leader is [mailto:kstasiak@securestate.com Ken Stasiak]|mailinglistsite=http://lists.owasp.org/mailman/listinfo/owasp-cleveland|emailarchives=http://lists.owasp.org/pipermail/owasp-cleveland}}
  
==== Local News ====
 
'''Upcoming Cleveland OWASP Meeting'''
 
Upcoming Cleveland OWASP Meeting
 
Thursday, August 18
 
Noon to 2 p.m.
 
SecureState Headquarters (23340 Miles Road, Bedford Heights, OH 44128)
 
Featuring Rafal Los, "You're Going to Need a Bigger Shovel - A Critical Look at Software Security Assurance"
 
  
The Cleveland OWASP meeting will be held Thursday, August 18th from noon to 2 p.m. and will feature a presentation by Rafal Los.
+
''''''Would you like to speak at an OWASP Cleveland Meeting?''''''
 +
If we haven't approached you, but you believe you have new research that the security community would enjoy hearing about, we invite you to submit your presentation topic for consideration.  
  
As always, OWASP is free and open to the public but you must RSVP. Lunch will be provided.  Please RSVP to Sabrina Powers via email by August 16th: spowers@securestate.com
+
This chapter is dedicated to bringing together local businesses, students, and web and security enthusiasts in order to discuss current events, trends, tools, and offensive/defensive techniques related to web application security.
  
'''Title: "You're Going to Need a Bigger Shovel - A Critical Look at Software Security Assurance"'''
+
To speak at upcoming OWASP Cleveland meeting or suggest a speaker, please submit your ideas via email to Sabrina Powers - spowers@securestate.com
'''Abstract:'''OWASP has certainly pushed forward a lot of great advancements in Software Security Assurance, yet you're still fighting your organization to allow you to scan applications before they go live.  Somewhere between the avalanche of site breaches, new technologies, and new apps you're going to need a better strategy.  Let's face it, if you want to keep playing the game with today's rules, you're going to need a bigger shovel ...or you can simply choose to evolve your game.
+
  
This talk will cover why Software Security Assurance programs are still lagging in a majority of organizations, and provide a critical look at how a shift in strategy can help you fall behind a little slower.
 
  
'''Speaker Bio:''' Rafal Los is a Global Security and Cloud Strategist for the Software business at Hewlett-Packard. 
+
== Upcoming Meetings ==
Rafal brings together a decade and a half of security expertise coupled with a deep understanding of consumer and enterprise technology trends.  Rafal combines knowledge of industry, customer, and technology solutions- bridging the gaps between security technologies and business needs such as elastic, cloud-based computing. 
+
  
Rafal focuses on how organizations can demonstrate the business value of security, and cloud solutions by implementing practical ideas and measuring risk reduction.  He has spent over 12 years in various facets of information security and data protection, from technical research to building programs at companies ranging from startups to Fortune 50 enterprises.  Rafal is a regular speaker at public and private information security and quality conferences (including OWASP, SecTor, Defcon, Black Hat, SANS and others).  Additionally, Rafal contributes regularly to organizations such as the Open Web Application Security Project (OWASP) and others promoting education, openness and standards.
 
  
Prior to joining HP, Los led the web application security program and served as a security lead at a Global Fortune 100.  Los also worked with various sub-businesses, leading security engineering, architecture and building the web application security program.  Los has a long history of strategic success with organizations large and small, providing critical strategic leadership on products, services, and strategy.
+
Please Join Us for the Feb. Cleveland Chapter OWASP Meeting'
  
Rafal received his B.S. in Computer Information Systems from Concordia University, River Forest, Ill.
+
"Application Security: What you don't know can hurt you"
 +
Tuesday, February 5 Noon – 2 p.m.  
 +
As always, OWASP is free and open to the public.
 +
Lunch will be provided.
 +
RSVP to Sabrina Powers spowers@securestate.com
  
 +
Location: SecureState Headquarters: 23340 Miles Road, Cleveland, OH 44128.
  
'''Would you like to speak at an OWASP Cleveland Meeting?'''  
+
== '''Past Events:''' ==
If we haven't approached you, but you believe you have new research that the security community would enjoy hearing about, we invite you to submit your presentation topic for consideration. Preference will be given to speakers who can present new and innovative technical content to a broad audience.
+
  
To speak at upcoming OWASP Cleveland meeting please submit your bio and talk abstract via email to Sabrina Powers - spowers@securestate.com
+
Joe Kuemerle - Tuesday, December 18th from Noon – 2 p.m.
 +
 
 +
'''Presentation: Reverse Engineering .NET and Java'''
 +
 
 +
'''''Abstract:'''''
 +
Learn the various techniques bad guys can use to extract information from your .NET or Java applications or at least how you can recover the source code that your predecessor deleted before he quit. Enjoy a demo filled session on how easy it is to extract information from virtually any .NET or Java application.
 +
 
 +
'''''Speaker Bio:'''''
 +
Kuemerle is a developer and speaker in the Cleveland, OH area specializing in .NET development, security, data base and application lifecycle topics. He is currently a Lead Developer at BookingBuilder Technologies and is active in the technical community as well as a speaker at local, regional and national events.
 +
 
 +
 
 +
Kevin Johnson - Tuesday, March 22nd Noon – 2pm
 +
'''
 +
'''Presentation:'''“Ninja Developers: Application Security Testing and Your SDLC.”'''
 +
 
 +
'''''Talk Abstract:'''''
 +
The security of enterprise software is one of the key risks organizations can start to control today.  As new applications are developed and legacy software is updated, incorporating a measure of security testing can be one of the most critical ways to positively impact an organizations security posture.  To properly validate the security of enterprise applications a 3rd party penetration test or assessment may be enlisted - but the cost of testing each application quickly makes this impractical. This situation presents a challenging problem.
 +
 
 +
Kevin Johnson will explain how your development staff can incorporate techniques distilled from years of experience into your organization's development and release methodology.  Whether you're using Agile, RUP or Google programming, these tips and tricks will enable your developers to produce higher quality, more secure code right from the start.  Kevin will reveal some of the secrets of the masters learned from experience and industry leadership over the past decade - and show you how you can insert security into your software development lifecycle with minimal disruption and maximum effectiveness.
 +
 
 +
'''''Speaker Bio:'''''
 +
Kevin Johnson is a security consultant and founder of Secure Ideas. Kevin came to security from a development and system administration background. He has many years of experience performing security services for fortune 100 companies, and in his spare time he contributes to a large number of open source security projects. Kevin's involvement in open-source projects is spread across a number of projects and efforts. Kevin is a certified instructor for SANS and the author of Security 542: Web Application Penetration Testing and Ethical Hacking.  
  
 
==== Chapter Meetings ====
 
==== Chapter Meetings ====

Revision as of 16:05, 29 January 2013

OWASP Cleveland

Welcome to the Cleveland chapter homepage. The chapter leader is Ken Stasiak
Click here to join the local chapter mailing list.

Participation

OWASP Foundation (Overview Slides) is a professional association of global members and is and open to anyone interested in learning more about software security. Local chapters are run independently and guided by the Chapter_Leader_Handbook. As a 501(c)(3) non-profit professional association your support and sponsorship of any meeting venue and/or refreshments is tax-deductible. Financial contributions should only be made online using the authorized online chapter donation button. To be a SPEAKER at ANY OWASP Chapter in the world simply review the speaker agreement and then contact the local chapter leader with details of what OWASP PROJECT, independent research or related software security topic you would like to present on.

Sponsorship/Membership

Btn donate SM.gif to this chapter or become a local chapter supporter.

Or consider the value of Individual, Corporate, or Academic Supporter membership. Ready to become a member? Join Now BlueIcon.JPG


'Would you like to speak at an OWASP Cleveland Meeting?' If we haven't approached you, but you believe you have new research that the security community would enjoy hearing about, we invite you to submit your presentation topic for consideration.

This chapter is dedicated to bringing together local businesses, students, and web and security enthusiasts in order to discuss current events, trends, tools, and offensive/defensive techniques related to web application security.

To speak at upcoming OWASP Cleveland meeting or suggest a speaker, please submit your ideas via email to Sabrina Powers - spowers@securestate.com


Upcoming Meetings

Please Join Us for the Feb. Cleveland Chapter OWASP Meeting'

"Application Security: What you don't know can hurt you" Tuesday, February 5 Noon – 2 p.m. As always, OWASP is free and open to the public. Lunch will be provided. RSVP to Sabrina Powers spowers@securestate.com

Location: SecureState Headquarters: 23340 Miles Road, Cleveland, OH 44128.

Past Events:

Joe Kuemerle - Tuesday, December 18th from Noon – 2 p.m.

Presentation: Reverse Engineering .NET and Java

Abstract: Learn the various techniques bad guys can use to extract information from your .NET or Java applications or at least how you can recover the source code that your predecessor deleted before he quit. Enjoy a demo filled session on how easy it is to extract information from virtually any .NET or Java application.

Speaker Bio: Kuemerle is a developer and speaker in the Cleveland, OH area specializing in .NET development, security, data base and application lifecycle topics. He is currently a Lead Developer at BookingBuilder Technologies and is active in the technical community as well as a speaker at local, regional and national events.


Kevin Johnson - Tuesday, March 22nd Noon – 2pm Presentation:“Ninja Developers: Application Security Testing and Your SDLC.”

Talk Abstract: The security of enterprise software is one of the key risks organizations can start to control today. As new applications are developed and legacy software is updated, incorporating a measure of security testing can be one of the most critical ways to positively impact an organizations security posture. To properly validate the security of enterprise applications a 3rd party penetration test or assessment may be enlisted - but the cost of testing each application quickly makes this impractical. This situation presents a challenging problem.

Kevin Johnson will explain how your development staff can incorporate techniques distilled from years of experience into your organization's development and release methodology. Whether you're using Agile, RUP or Google programming, these tips and tricks will enable your developers to produce higher quality, more secure code right from the start. Kevin will reveal some of the secrets of the masters learned from experience and industry leadership over the past decade - and show you how you can insert security into your software development lifecycle with minimal disruption and maximum effectiveness.

Speaker Bio: Kevin Johnson is a security consultant and founder of Secure Ideas. Kevin came to security from a development and system administration background. He has many years of experience performing security services for fortune 100 companies, and in his spare time he contributes to a large number of open source security projects. Kevin's involvement in open-source projects is spread across a number of projects and efforts. Kevin is a certified instructor for SANS and the author of Security 542: Web Application Penetration Testing and Ethical Hacking.

Chapter Meetings

To join the chapter mailing list, please visit our mailing list homepage. The list is used to discuss the meetings and to arrange meeting locations. Please check the mailing list before coming to a meeting to confirm the location and time and to catch any last minute notes.

Our chapter is sponsored by SecureState.


Cleveland OWASP Chapter Leaders

The chapter leader is Ken Stasiak