Difference between revisions of "Dubai"

From OWASP
Jump to: navigation, search
 
(13 intermediate revisions by 5 users not shown)
Line 1: Line 1:
{{Chapter Template|chaptername=Dubai|extra=The chapter leaders are [mailto:amro@owasp.org Amro AlOlaqi] and [mailto:tarek@owasp.org Tarek N]|mailinglistsite=http://lists.owasp.org/mailman/listinfo/owasp-dubai|emailarchives=http://lists.owasp.org/pipermail/owasp-dubai}}  
+
{{Chapter Template|chaptername=Dubai|extra=The chapter leaders are [mailto:amro@owasp.org Amro AlOlaqi] and [mailto:tarek@owasp.org Tarek Naja]|mailinglistsite=http://lists.owasp.org/mailman/listinfo/owasp-dubai|emailarchives=http://lists.owasp.org/pipermail/owasp-dubai}}  
  
 
<br>  
 
<br>  
Line 7: Line 7:
 
  '''OWASP Moves to MediaWiki Portal - 11:15, 20 May 2006 (EDT)'''
 
  '''OWASP Moves to MediaWiki Portal - 11:15, 20 May 2006 (EDT)'''
  
OWASP is pleased to announce the arrival of OWASP 2.0!
 
  
OWASP 2.0 utilizes the MediaWiki portal to manage and provide the latest OWASP related information. Enjoy!
+
== Past Events  ==
 +
'''27th of August 2014 at 6:30pm'''
 +
  Nakheel Sales Office [https://maps.google.com/maps?q=Nakheel+Sales+Center+-+Al+Sufouh+-+Dubai+-+United+Arab+Emirates&hl=en&ll=25.104759,55.156517&spn=0.038589,0.066047&sll=31.128199,-72.773437&sspn=71.247495,135.263672&oq=Nakheel&dirflg=r&ttype=now&noexp=0&noal=0&sort=def&hq=Nakheel+Sales+Center+-&hnear=Al+Sufouh+-+Dubai+-+United+Arab+Emirates&t=m&z=15 MAP]
 +
  Al Sufouh Road,
 +
  Jumeirah - Dubai
 +
  United Arab Emirates
  
<br>
+
Topics:
 +
; OWASP Top 10 A2 - Broken Authentication and session management
 +
: Speaker: [http://ae.linkedin.com/in/tareknaja Tarek Naja]
 +
: Bio: Tarek is the OWASP UAE chapter leader.  He is a seasoned security consultant who focuses on penetration testing.
  
<br>
+
; OWASP Top 10 A3 - Cross site scripting (XSS)
 +
: Speaker: [http://ae.linkedin.com/in/mhendrickx Michael Hendrickx]
 +
: Bio: Michael is an experienced IT security professional with strong, deep technical knowledge on wide variety of applications.
  
(I am updating the layout of our chapter page (April 5th 2013) Amro
+
----
 +
'''28th of May, 2014. 6:30pm'''
 +
  Nakheel Sales Office [https://maps.google.com/maps?q=Nakheel+Sales+Center+-+Al+Sufouh+-+Dubai+-+United+Arab+Emirates&hl=en&ll=25.104759,55.156517&spn=0.038589,0.066047&sll=31.128199,-72.773437&sspn=71.247495,135.263672&oq=Nakheel&dirflg=r&ttype=now&noexp=0&noal=0&sort=def&hq=Nakheel+Sales+Center+-&hnear=Al+Sufouh+-+Dubai+-+United+Arab+Emirates&t=m&z=15 MAP]
 +
  Al Sufouh Road,
 +
  Jumeirah - Dubai
 +
  United Arab Emirates
  
 +
We're honored to have our guest speak [http://ae.linkedin.com/pub/ammar-almarzooqi/30/b11/b86 Ammar Almarzooqi] - Chief Information Security Officer at Abu Dhabi Department of Economic Development.
  
'''IDC's IT Security Roadshow 2013 - Abu Dhabi'''
+
Ammar will be talking about seamless implementation of security controls. If you're dealing with some elements that are inherently secure, such as an application that cannot be modified, how would you be able to secure your environment? Ammar will be addressing this question and discussing a real case scenario from his organization.
 +
 
 +
<br/>
 +
Our other presenter is [http://ae.linkedin.com/in/tareknaja Tarek Naja] - Senior Security Consultant.
 +
Tarek will be answering questions about the vulnerability you all heard about recently: Heart Bleed. Tarek specializes in penetration testing, mainly web application and mobile application penetration testing.
 +
 
 +
----
 +
'''19th of Feb 2014 at 8pm'''
 +
  Cafe Rider [http://cafe-rider.com/styled-4/index.html MAP]
 +
  Close to Mall of the Emirates
 +
  Al Quoz Industrial - Dubai
 +
  United Arab Emirates
 +
 
 +
Topics:
 +
; Managing Web & Application Security with OWASP – bringing it all together
 +
: Setting up, managing and improving your global information security organisation using mature OWASP projects and tools. Achieving cost-effective application security and bringing it all together on the management level. A journey through different organisational stages and how OWASP tools help organisations moving forward improving their web and application security. This talk will discuss a number of quick wins and how to effectively manage global security initiatives and use OWASP tools inside your organisation
 +
 
 +
; Application Security for managers: OWASP CISO Guide and CISO Survey
 +
: The OWASP CISO guide and CISO report 2013. This talk will present two new OWASP projects, the CISO guide and the newly released results of the OWASP CISO Survey report 2013. Their main goal is to provide guidance on application and web security for senior managers and to introduce Chief Information Security Officers (CISO) to the OWASP Application Security Guide and the results of the CISO Survey. Over the last years, we noticed that application security risks and threats have been on the rise and OWASP has started the CISO survey project to gather intelligence and provide it to CISOs and senior managers in order to improve their security strategies, assess their priorities and learn from their peers about what works best protecting web and application security in organizations across various industries.
 +
 
 +
Speaker: [http://hk.linkedin.com/in/gondrom Tobias Gondrom]
 +
 
 +
Tobias Gondrom is a global board member of OWASP (Open Web Application Security Project) and CEO at Thames Stanley, a boutique Global CISO and Information Security & Risk Management Advisory based in Hong Kong, United Kingdom and Germany.
 +
 
 +
----
 +
'''14th of Dec 2013 at 6-8pm.'''
 +
 
 +
  MAKE Business Hub [https://maps.google.com/maps?ie=UTF8&q=MAKE+Business+Hub+Cafe&fb=1&hq=make+business+hub&cid=1882949530944650280&hnear=&ll=25.079127,55.136797&spn=0.011816,0.021136&t=m&z=16&vpsrc=0&iwloc=A MAP ]
 +
  Al Fattan Tower - Dubai
 +
  United Arab Emirates
 +
  +971 4 392 9216
 +
  Speaker: Peter Dowley
 +
  Topic: Security Architecture for Applications, titled "What's the difference between a security bug and a security flaw?"
 +
 
 +
Speaker bio : Peter has been working in computer security for over 10 years, after
 +
another decade in other areas of IT - System & infrastructure architecture,
 +
Windows desktop & server design & management, database modelling & design,
 +
programming. He has strong expertise in security architecture (especially
 +
for banking systems) and how this relates to risk and fraud management. He
 +
is a senior security consultant with Hewlett-Packard (HP) in Dubai and has
 +
been based in the Gulf region for 5 years.
 +
 
 +
'''Download the presentation:''' [https://www.owasp.org/index.php/File:Security_Bugs_vs_Flaws.pptx "What's the difference between a security bug and a security flaw"]
 +
 
 +
----
 +
'''Casual OWASP meetup'''
 +
This will be our first meeting in a while. It will be an opportunity to get introduced to the other members of the OWASP UAE Chapter and discuss the type of events you'd like to see in the future.
 +
 
 +
This will be a casual meeting at a Caribou Coffee at DIFC
 +
 
 +
http://www.mealadvisors.com/uae/dubai/restaurant/map/branch_id/1294
 +
 
 +
Gathering agenda will be:
 +
 
 +
    Meeting on Saturday the 9th of November 2013 at 6pm.
 +
    Introductions
 +
    Intro to OWASP
 +
    Open discussion about Dubai chapter
 +
    Networking
 +
    Conclude at 8pm
  
http://idc-cema.com/eng/events/52873-idc-s-it-security-roadshow-2013/11-speakers
 
 
----
 
----
  
 
'''IDC's IT Security Roadshow  2013 - Dubai '''
 
'''IDC's IT Security Roadshow  2013 - Dubai '''
  
http://idc-cema.com/eng/events/50679-idc-s-it-security-roadshow-2013/11-speakers  
+
    Date and Time : Wednesday, April 3, 2013
 +
    Venue: Mina A' Salam Hotel (Madinat Jumeirah)
 +
    Web Application Security "Think like a hacker"
 +
    Speaker: Amro Alolaqi
 +
 
 +
Reference: http://idc-cema.com/eng/events/50679-idc-s-it-security-roadshow-2013/11-speakers  
  
 
----
 
----
  
 
'''Cyber Security Summit 2012- DUBAI'''
 
'''Cyber Security Summit 2012- DUBAI'''
 +
 +
  Date and Time : 2nd & 3rd of October 2012  - 9:00 AM to 4:00 PM
 +
  Venue: Grand Hayat - Dubai
 +
  Web Application Critical Vulnerabilities (OWASP top ten)
 +
  Speaker: Amro AlOlaqi
 +
 +
http://we-initiative.com/wp-content/uploads/2012/07/Cyber-Security-UAE-2012-EM12.pdf
 
----
 
----
  
 
'''ISACA UAE - ISAFE conference  2011 - Dubai'''
 
'''ISACA UAE - ISAFE conference  2011 - Dubai'''
 +
 +
  Date and Time : 18th - 9:00 AM to 4:00 PM
 +
  Venue: The Address Hotel - Dubai Mall
 +
  Web Application Critical Vulnerabilities and Threat Modeling
 +
  Speaker: Amro AlOlaqi
 +
 +
http://www.isacauae.org/isafe2011/doc/isafe2011brochure.pdf
 +
 +
https://plus.google.com/photos/117947441088827793360/albums/5712379217298867441?banner=pwa
 +
  
 
----
 
----
Line 46: Line 141:
 
''NAUGURAL KEYNOTE PRESENTATION BY His Excellency Salem Khamis Al Shair Al Suwaidi Emirates e-Government Director General''
 
''NAUGURAL KEYNOTE PRESENTATION BY His Excellency Salem Khamis Al Shair Al Suwaidi Emirates e-Government Director General''
  
OWASP's session: 11:20 PM  Amro AlOlaqi ( The Ten Web Application Critical Risks )
+
    OWASP's session: 11:20 PM   
 +
    Speaker: Amro AlOlaqi  
 +
    Subject: The Ten Web Application Critical Risks  
  
 
For more information about the event, please visit http://www.fleminggulf.com/cms/uploads/conference/downloads/Postshow_report_DBTC15.pdf  
 
For more information about the event, please visit http://www.fleminggulf.com/cms/uploads/conference/downloads/Postshow_report_DBTC15.pdf  
  
[[Category:Middle_East]]
+
[[Category:United Arab Emirates]]

Latest revision as of 01:15, 28 August 2014

OWASP Dubai

Welcome to the Dubai chapter homepage. The chapter leaders are Amro AlOlaqi and Tarek Naja
Click here to join the local chapter mailing list.

Participation

OWASP Foundation (Overview Slides) is a professional association of global members and is and open to anyone interested in learning more about software security. Local chapters are run independently and guided by the Chapter_Leader_Handbook. As a 501(c)(3) non-profit professional association your support and sponsorship of any meeting venue and/or refreshments is tax-deductible. Financial contributions should only be made online using the authorized online chapter donation button. To be a SPEAKER at ANY OWASP Chapter in the world simply review the speaker agreement and then contact the local chapter leader with details of what OWASP PROJECT, independent research or related software security topic you would like to present on.

Sponsorship/Membership

Btn donate SM.gif to this chapter or become a local chapter supporter.

Or consider the value of Individual, Corporate, or Academic Supporter membership. Ready to become a member? Join Now BlueIcon.JPG


Local News

OWASP Moves to MediaWiki Portal - 11:15, 20 May 2006 (EDT)


Past Events

27th of August 2014 at 6:30pm

  Nakheel Sales Office MAP
  Al Sufouh Road,
  Jumeirah - Dubai
  United Arab Emirates

Topics:

OWASP Top 10 A2 - Broken Authentication and session management
Speaker: Tarek Naja
Bio: Tarek is the OWASP UAE chapter leader. He is a seasoned security consultant who focuses on penetration testing.
OWASP Top 10 A3 - Cross site scripting (XSS)
Speaker: Michael Hendrickx
Bio: Michael is an experienced IT security professional with strong, deep technical knowledge on wide variety of applications.

28th of May, 2014. 6:30pm

  Nakheel Sales Office MAP
  Al Sufouh Road,
  Jumeirah - Dubai
  United Arab Emirates

We're honored to have our guest speak Ammar Almarzooqi - Chief Information Security Officer at Abu Dhabi Department of Economic Development.

Ammar will be talking about seamless implementation of security controls. If you're dealing with some elements that are inherently secure, such as an application that cannot be modified, how would you be able to secure your environment? Ammar will be addressing this question and discussing a real case scenario from his organization.


Our other presenter is Tarek Naja - Senior Security Consultant. Tarek will be answering questions about the vulnerability you all heard about recently: Heart Bleed. Tarek specializes in penetration testing, mainly web application and mobile application penetration testing.


19th of Feb 2014 at 8pm

  Cafe Rider MAP
  Close to Mall of the Emirates
  Al Quoz Industrial - Dubai
  United Arab Emirates

Topics:

Managing Web & Application Security with OWASP – bringing it all together
Setting up, managing and improving your global information security organisation using mature OWASP projects and tools. Achieving cost-effective application security and bringing it all together on the management level. A journey through different organisational stages and how OWASP tools help organisations moving forward improving their web and application security. This talk will discuss a number of quick wins and how to effectively manage global security initiatives and use OWASP tools inside your organisation
Application Security for managers
OWASP CISO Guide and CISO Survey
The OWASP CISO guide and CISO report 2013. This talk will present two new OWASP projects, the CISO guide and the newly released results of the OWASP CISO Survey report 2013. Their main goal is to provide guidance on application and web security for senior managers and to introduce Chief Information Security Officers (CISO) to the OWASP Application Security Guide and the results of the CISO Survey. Over the last years, we noticed that application security risks and threats have been on the rise and OWASP has started the CISO survey project to gather intelligence and provide it to CISOs and senior managers in order to improve their security strategies, assess their priorities and learn from their peers about what works best protecting web and application security in organizations across various industries.

Speaker: Tobias Gondrom

Tobias Gondrom is a global board member of OWASP (Open Web Application Security Project) and CEO at Thames Stanley, a boutique Global CISO and Information Security & Risk Management Advisory based in Hong Kong, United Kingdom and Germany.


14th of Dec 2013 at 6-8pm.

  MAKE Business Hub MAP 
  Al Fattan Tower - Dubai
  United Arab Emirates
  +971 4 392 9216
  Speaker: Peter Dowley 
  Topic: Security Architecture for Applications, titled "What's the difference between a security bug and a security flaw?"

Speaker bio : Peter has been working in computer security for over 10 years, after another decade in other areas of IT - System & infrastructure architecture, Windows desktop & server design & management, database modelling & design, programming. He has strong expertise in security architecture (especially for banking systems) and how this relates to risk and fraud management. He is a senior security consultant with Hewlett-Packard (HP) in Dubai and has been based in the Gulf region for 5 years.

Download the presentation: "What's the difference between a security bug and a security flaw"


Casual OWASP meetup This will be our first meeting in a while. It will be an opportunity to get introduced to the other members of the OWASP UAE Chapter and discuss the type of events you'd like to see in the future.

This will be a casual meeting at a Caribou Coffee at DIFC

http://www.mealadvisors.com/uae/dubai/restaurant/map/branch_id/1294

Gathering agenda will be:

   Meeting on Saturday the 9th of November 2013 at 6pm.
   Introductions
   Intro to OWASP
   Open discussion about Dubai chapter
   Networking
   Conclude at 8pm

IDC's IT Security Roadshow 2013 - Dubai

   Date and Time : Wednesday, April 3, 2013
   Venue: Mina A' Salam Hotel (Madinat Jumeirah)
   Web Application Security "Think like a hacker"
   Speaker: Amro Alolaqi

Reference: http://idc-cema.com/eng/events/50679-idc-s-it-security-roadshow-2013/11-speakers


Cyber Security Summit 2012- DUBAI

  Date and Time : 2nd & 3rd of October 2012  - 9:00 AM to 4:00 PM
  Venue: Grand Hayat - Dubai 
  Web Application Critical Vulnerabilities (OWASP top ten)
  Speaker: Amro AlOlaqi

http://we-initiative.com/wp-content/uploads/2012/07/Cyber-Security-UAE-2012-EM12.pdf


ISACA UAE - ISAFE conference 2011 - Dubai

  Date and Time : 18th - 9:00 AM to 4:00 PM
  Venue: The Address Hotel - Dubai Mall
  Web Application Critical Vulnerabilities and Threat Modeling 
  Speaker: Amro AlOlaqi

http://www.isacauae.org/isafe2011/doc/isafe2011brochure.pdf

https://plus.google.com/photos/117947441088827793360/albums/5712379217298867441?banner=pwa



IT For Government 2011- DUBAI

Location: Dusit Thani Hotel - 133, Sheikh Zayed Road

Date: 4/Oct/2011

Registration 8:00 AM

NAUGURAL KEYNOTE PRESENTATION BY His Excellency Salem Khamis Al Shair Al Suwaidi Emirates e-Government Director General

   OWASP's session: 11:20 PM  
   Speaker: Amro AlOlaqi 
   Subject: The Ten Web Application Critical Risks 

For more information about the event, please visit http://www.fleminggulf.com/cms/uploads/conference/downloads/Postshow_report_DBTC15.pdf