Difference between revisions of "Los Angeles"

From OWASP
Jump to: navigation, search
(OWASP LA Security Summit: April 25, 2012, 3:00PM - 8PM)
(27 intermediate revisions by 4 users not shown)
Line 1: Line 1:
== Welcome to Los Angeles Chapter!  ==
+
== Welcome to the Los Angeles Chapter!  ==
  
<paypal>Los Angeles</paypal><br>
+
'''Sponsors and Supporters Donate Here:'''
 +
=====https://www.cvent.com/events/owasp-sponsorship-and-donation/registration-99bc1441e2684ff5b214b0df6b3a9ae3.aspx=====
  
[http://www.regonline.com/owasp_membership https://www.owasp.org/images/2/2f/Donatenow.jpg] Donate funds to Los Angeles chapter via RegOnline.
+
Single Meeting Supporter:
 +
Organizations that wish to support the OWASP Los Angeles Chapter with a 100% tax deductible donation  enable the OWASP Foundation to continue its mission
  
== Announcements ==
+
Get the following benefits::
 +
  - Meet upwards of 60-70 potential new clients
 +
- Be recognized as a local supporter by posting your company logo on the local chapter page(Image size for logos: gif, jpg or png with a size of 150px X 45px at 72dpi or 55px X 80px at 72dpi)
 +
- Have your marketing write-up included in e-mail blasts sent prior to a monthly meeting.
 +
- Have a table at local chapter meeting
 +
- Promote your products and services
 +
- Bring a raffle prize to gather business cards
  
http://img1.meetupstatic.com/892670376411449149876/img/header/logo.png
+
Contact us [[#Los Angeles Chapter]] for general questions relating to sponsorship and donations
===== We are on Meetup. Please join our community there. =====
+
  
===== http://www.meetup.com/OWASP-Los-Angeles/ =====
+
== Announcements  ==
  
===== Sign up for OWASP Los Angeles mailing list, very low volume and spam free. =====
+
*'''Change in Leadership'''
 +
Tin Zaw has been a strong and effective visionary President and Leader for OWASP Los Angeles for several years. He will remain an active member of the Board, but effective January 1, 2013, Tin will be stepping down as Leader. Richard Greenberg -- Current Board Member, will assume this role going forward. We give our thanks to Tin for his efforts and dedication and look forward to the new year under Richard's leadership.
  
===== https://lists.owasp.org/mailman/listinfo/owasp-losangeles  =====
 
  
<br>
+
*'''http://img1.meetupstatic.com/892670376411449149876/img/header/logo.png
 +
===== We are on Meetup. Please join our community there. =====
  
== OWASP LA Security Summit: April 25, 2012, 3:00PM - 8PM <br> ==
+
===== http://www.meetup.com/OWASP-Los-Angeles/ =====
  
''(Note different time and location)''
 
  
  
'''Jerry Hoff VP, Static Code Analysis Division at WhiteHat Security, will be speaking about Webgoat. Shakeel Tufail, Federal Practice Director for HP Enterprise Security Solutions, will be speaking on ''"Software (In)Security - Challenges to securing software"''. Noa Bar Yosef, Senior Security Strategist at Imperva, will be speaking on ''"De-Anonymizing Anonymous"''. A concluding panel, moderated by Richard Greenberg, Information Security Officer for LA County Public Health, will have the speakers joined by Adnan Masood, a Software Engineer and Architect.
+
*'''OWASP Mailing List'''
 +
===== Sign up for the OWASP Los Angeles mailing list, very low volume and spam free. =====
  
''Food and drinks will follow''.'''
+
===== https://lists.owasp.org/mailman/listinfo/owasp-losangeles  =====
 
+
 
+
 
+
<!-- '''''Location:'''''<br>  -->
+
<b>
+
Location:
+
 
+
Four Points by Sheraton Los Angeles </b>
+
 
+
5990 Green Valley Cir
+
 
+
Culver City, CA 90230
+
 
+
(310) 641-7740
+
 
+
 
+
RSVP at http://www.meetup.com/OWASP-Los-Angeles/
+
  
 
<br>  
 
<br>  
  
'''Thanks to Our Sponsors:'''
+
== Next Meeting  January 23, 7PM:==
'''
+
*'''At: Symantec Offices'''
  
http://www.f5.com/flash/application-ready-network/f5-logo.jpg
+
*900 Corporate Pointe, Culver City, CA 90230
  
Internet threats are widely varied and multi-layered. As these threats evolve, organizations find that traditional firewalls lack the intelligence and the scalability needed to stay effective and responsive under DDoS and a whole range of other sophisticated attacks. The result is a failure to protect the business from loss of critical Internet data center services.
 
  
F5 offers a native, high performance firewall solution that protects the entire infrastructure and scales to perform under the most demanding conditions. F5 provides the intelligence and flexibility you need to stay secure in the ever-changing and increasingly threatening landscape. You get a common platform to deliver applications and significantly improve responsiveness to rapidly evolving threats.
+
== Speaker: Jim Manico from Whitehat Security==
 +
*'''Abstract: Top Ten Web Defenses'''
  
In addition, F5 provides a flexible, certified web application firewall and comprehensive, policy-based web application security to address emerging threats at the application level. This combination significantly reduces the risk of damage to intellectual property, data, and web applications. With F5, you get a complete application protection solution on a certified network firewall platform that eliminates the need for multiple appliances. This lowers maintenance and management costs, and increases the confidentiality, availability, and integrity of your applications, network, and processes. F5 brings together the network, applications, data, and users under a single security strategy that traditional firewalls and point solutions don’t offer.
+
We cannot “firewall” or “patch” our way to secure websites. In the past, security professionals thought firewalls, Secure Sockets Layer (SSL), patching, and privacy policies were enough. Today, however, these methods are outdated and ineffective, as attacks on prominent, well-protected websites are occurring every day. Website developers must learn to code in a secure fashion to have any chance of providing organizations with proper defenses in the current threat-scape. The session will provide specific tips and guidelines to make website code both low risk and less vulnerable.
  
 +
*'''Bio:''' Jim Manico
 +
Jim is the VP of Security Architecture for WhiteHat Security. Jim is also the host of the OWASP Podcast Series, is the committee chair of the OWASP Connections Committee, is the project manager of the OWASP Cheatsheet series, and is a significant contributor to several additional OWASP projects. Jim provides secure coding and developer awareness training for WhiteHat Security using his 8+ years of experience delivering developer-training courses for SANS, Aspect Security and others. He brings 16 years of database-driven Web software development and analysis experience to WhiteHat and OWASP as well. Jim works on the beautiful island of Kauai, Hawaii where he lives with his wife Tracey.
  
http://www.genevatechnicalservices.com/images/partners/qualys-logo.gif
+
== Sponsor: Whitehat Security==
 +
Founded in 2001 and headquartered in Santa Clara, California, WhiteHat Security provides end-to-end solutions for Web security. The company's cloud technology platform and leading security engineers turn verified security intelligence into actionable insights for customers. Through a combination of core products and strategic partnerships, WhiteHat Security provides complete Web security at a scale unmatched in the industry. WhiteHat Sentinel, the company's flagship product line, manages thousands of websites --
 +
including sites in the most regulated industries as well as top ecommerce, finance and healthcare companies.
 +
www.whitehatsec.com
  
Qualys, Inc. is the pioneer and leading provider of information security and compliance cloud solutions with 5,500+ customers in 85 countries, including 51 of the Forbes Global 100. The QualysGuard Cloud Platform and integrated suite of applications helps businesses simplify security operations and lower the cost of compliance by delivering critical security intelligence on demand and automating the full spectrum of auditing, compliance and protection for IT systems and web applications. Founded in 1999, Qualys has established strategic partnerships with leading managed service providers and consulting organizations including BT, Dell SecureWorks, Fujitsu, IBM, NTT, Symantec, Verizon, and Wipro. The company is also a founding member of the Cloud Security Alliance (CSA).
 
  
For more information, please visit www.qualys.com.
+
===== Please RSVP here: http://www.meetup.com/OWASP-Los-Angeles/events/ =====
 +
<br>
  
== April message from OWASP Los Angeles <br> ==
+
<br>
 +
== Would you like to speak at an OWASP Los Angeles Meeting? ==  
  
 +
Call for Papers (CFP) is NOW OPEN. To speak at upcoming OWASP Los Angeles meetings please submit your BIO and talk abstract via email to [mailto:tin.zaw@owasp.org Tin Zaw]. The talk must be vendor neutral and its content be available under Creative Common 3.0 license.
  
<b> 1. Participate in Projects </b>
+
<br>  
 
+
OWASP is about projects. Without projects, OWASP wouldn't exist, and projects need new blood. I would like to encourage your participation in the projects. There are many projects to choose from (link below) but  testing, development and code review guides are in urgent need of help. You don't need to be a coder to contribute.
+
 
+
https://www.owasp.org/index.php/Category:OWASP_Project
+
 
+
Please see what you can contribute and feel free to reach out to the project leaders directly, or send me an email if you want an introduction.
+
 
+
<b> 2. Call for Local Speakers </b>
+
 
+
We have a lot of security talent in LA area and we would love to hear from you. Edward Bonver is leading an initiative to have local speakers more involved and present at OWASP meetings. Please reach out to him at edward@owasp.org if you're interested.
+
 
+
----
+
  
 
== Other Events  ==
 
== Other Events  ==
 +
*'''ISSA Los Angeles Monthly Meeting'''
 +
        Special Discount for OWASP Members
 +
        WEDNESDAY, January  16, 2013 11:30 AM - 1:45 PM
 +
        at Les Freres Taix French Restaurant
 +
        1911 West Sunset Blvd., LA, Ca 90026
 +
        (213) 484-1265
 +
        issala.org
  
'''ISSA-LA''' holds a lunch meeting on the 3rd Wed of each month, for more information visit [http://www.issa-la.org/ www.issa-la.org].
+
*'''OWASP Orange County Q1 Meeting'''
 +
        January 17 6PM
 +
        Topic: Putting your robots to work: security automation at Twitter
 +
        Presenter: Neil Matatall and Justin Collins
 +
        http://www.meetup.com/OWASP-OC/events/96085252/
  
The leading InfoSec Professionals in SoCal will be Gathering at the Universal City Hilton May 16 for the '''ISSA-LA''' Information Security Summit. Visit: http://www.issala.org/summit/
 
 
<br>
 
----
 
Would you like to speak at an OWASP Los Angeles Meeting?
 
 
Call for Papers (CFP) is NOW OPEN. To speak at upcoming OWASP Los Angeles meetings please submit your BIO and talk abstract via email to [mailto:tin.zaw@owasp.org Tin Zaw]. The talk must be vendor neutral and its content be available under Creative Common 3.0 license.
 
 
<br>
 
  
 
== Archives of Previous Meetings  ==
 
== Archives of Previous Meetings  ==
 +
[[Los Angeles/2012 Meetings|2012 Meetings]]
  
 
[[Los Angeles/2011 Meetings|2011 Meetings]]  
 
[[Los Angeles/2011 Meetings|2011 Meetings]]  
Line 111: Line 100:
 
== Los Angeles Chapter  ==
 
== Los Angeles Chapter  ==
  
*[mailto:tin.zaw@owasp.org Tin Zaw] -- Chapter Leader and President   
+
*[mailto:richard.greenberg@owasp.org Richard Greenberg] -- Chapter Leader and President   
*[mailto:cassio@owasp.org Cassio Goldschmidt] -- Board Member
+
*[mailto:tin.zaw@owasp.org Tin Zaw] -- Board Member
*[mailto:richard.greenberg@owasp.org Richard Greenberg] -- Board Member
+
 
*[mailto:edward@owasp.org Edward Bonver] -- Board Member
 
*[mailto:edward@owasp.org Edward Bonver] -- Board Member
 +
*[mailto:Kelly.Fitzgerald@owasp.org Kelly Fitzgerald] -- Board Member
 +
*[mailto:Stuart.Schwartz@owasp.org Stuart Schwartz] -- Board Member
  
Volunteer OWASP Leaders: Kelly Fitzgerald, Yev Avidon, Mikhael Felker and Stuart Schwartz
+
Volunteer OWASP Leaders: Yev Avidon and Mikhael Felker <br>
 +
Los Angeles chapter was founded by Cassio Goldschmidt.
  
 
<br>The AppSec USA 2010 conference received rave reviews. Thanks to all the volunteers and great speakers who helped make it a success!  
 
<br>The AppSec USA 2010 conference received rave reviews. Thanks to all the volunteers and great speakers who helped make it a success!  

Revision as of 20:50, 10 January 2013

Contents

Welcome to the Los Angeles Chapter!

Sponsors and Supporters Donate Here:

https://www.cvent.com/events/owasp-sponsorship-and-donation/registration-99bc1441e2684ff5b214b0df6b3a9ae3.aspx

Single Meeting Supporter: Organizations that wish to support the OWASP Los Angeles Chapter with a 100% tax deductible donation enable the OWASP Foundation to continue its mission

Get the following benefits::

- Meet upwards of 60-70 potential new clients
- Be recognized as a local supporter by posting your company logo on the local chapter page(Image size for logos: gif, jpg or png with a size of 150px X 45px at 72dpi or 55px X 80px at 72dpi) 
- Have your marketing write-up included in e-mail blasts sent prior to a monthly meeting.
- Have a table at local chapter meeting 
- Promote your products and services
- Bring a raffle prize to gather business cards

Contact us #Los Angeles Chapter for general questions relating to sponsorship and donations

Announcements

  • Change in Leadership

Tin Zaw has been a strong and effective visionary President and Leader for OWASP Los Angeles for several years. He will remain an active member of the Board, but effective January 1, 2013, Tin will be stepping down as Leader. Richard Greenberg -- Current Board Member, will assume this role going forward. We give our thanks to Tin for his efforts and dedication and look forward to the new year under Richard's leadership.


  • logo.png
We are on Meetup. Please join our community there.
http://www.meetup.com/OWASP-Los-Angeles/
  • OWASP Mailing List
Sign up for the OWASP Los Angeles mailing list, very low volume and spam free.
https://lists.owasp.org/mailman/listinfo/owasp-losangeles


Next Meeting January 23, 7PM:

  • At: Symantec Offices
  • 900 Corporate Pointe, Culver City, CA 90230


Speaker: Jim Manico from Whitehat Security

  • Abstract: Top Ten Web Defenses

We cannot “firewall” or “patch” our way to secure websites. In the past, security professionals thought firewalls, Secure Sockets Layer (SSL), patching, and privacy policies were enough. Today, however, these methods are outdated and ineffective, as attacks on prominent, well-protected websites are occurring every day. Website developers must learn to code in a secure fashion to have any chance of providing organizations with proper defenses in the current threat-scape. The session will provide specific tips and guidelines to make website code both low risk and less vulnerable.

  • Bio: Jim Manico

Jim is the VP of Security Architecture for WhiteHat Security. Jim is also the host of the OWASP Podcast Series, is the committee chair of the OWASP Connections Committee, is the project manager of the OWASP Cheatsheet series, and is a significant contributor to several additional OWASP projects. Jim provides secure coding and developer awareness training for WhiteHat Security using his 8+ years of experience delivering developer-training courses for SANS, Aspect Security and others. He brings 16 years of database-driven Web software development and analysis experience to WhiteHat and OWASP as well. Jim works on the beautiful island of Kauai, Hawaii where he lives with his wife Tracey.

Sponsor: Whitehat Security

Founded in 2001 and headquartered in Santa Clara, California, WhiteHat Security provides end-to-end solutions for Web security. The company's cloud technology platform and leading security engineers turn verified security intelligence into actionable insights for customers. Through a combination of core products and strategic partnerships, WhiteHat Security provides complete Web security at a scale unmatched in the industry. WhiteHat Sentinel, the company's flagship product line, manages thousands of websites -- including sites in the most regulated industries as well as top ecommerce, finance and healthcare companies.

www.whitehatsec.com


Please RSVP here: http://www.meetup.com/OWASP-Los-Angeles/events/



Would you like to speak at an OWASP Los Angeles Meeting?

Call for Papers (CFP) is NOW OPEN. To speak at upcoming OWASP Los Angeles meetings please submit your BIO and talk abstract via email to Tin Zaw. The talk must be vendor neutral and its content be available under Creative Common 3.0 license.


Other Events

  • ISSA Los Angeles Monthly Meeting
        Special Discount for OWASP Members
       WEDNESDAY, January  16, 2013 11:30 AM - 1:45 PM
       at Les Freres Taix French Restaurant
       1911 West Sunset Blvd., LA, Ca 90026
       (213) 484-1265
       issala.org
  • OWASP Orange County Q1 Meeting
       January 17 6PM
       Topic: Putting your robots to work: security automation at Twitter
       Presenter: Neil Matatall and Justin Collins
       http://www.meetup.com/OWASP-OC/events/96085252/


Archives of Previous Meetings

2012 Meetings

2011 Meetings

2010 Meetings

2009 Meetings

2008 Meetings

List of presentations available from past meetings


Los Angeles Chapter

Volunteer OWASP Leaders: Yev Avidon and Mikhael Felker
Los Angeles chapter was founded by Cassio Goldschmidt.


The AppSec USA 2010 conference received rave reviews. Thanks to all the volunteers and great speakers who helped make it a success!

Web archive: http://2010.AppSecUSA.org

Videos: http://vimeo.com/user4863863/videos

AppSec Logo.jpg