Difference between revisions of "Los Angeles"

From OWASP
Jump to: navigation, search
 
(323 intermediate revisions by 2 users not shown)
Line 1: Line 1:
== Welcome to the Los Angeles Chapter!  ==
+
== '''Welcome to the Los Angeles Chapter!''' ==
  
 +
[[Image:New_OWASP_LA_Logo-08-2014.jpg|700px|New_OWASP_LA_Logo-08-2014.jpg]]
  
=====[http://www.regonline.com/donation_1044369 https://www.owasp.org/images/2/2f/Donatenow.jpg]=====
+
<!-- =====[http://www.regonline.com/donation_1044369 https://www.owasp.org/images/2/2f/Donatenow.jpg]===== -->
  
 
Single Meeting Supporter:
 
Single Meeting Supporter:
 
Organizations that wish to support the OWASP Los Angeles Chapter with a 100% tax deductible donation enable the OWASP Foundation to continue its mission  
 
Organizations that wish to support the OWASP Los Angeles Chapter with a 100% tax deductible donation enable the OWASP Foundation to continue its mission  
  
Get the following benefits::
+
''[[File:Button_red_sponsor.png|300px| center | link=https://www.regonline.com/Register/Checkin.aspx?EventId=1044369]]''
  - Meet upwards of 60-90 potential new clients
+
 
  - Be recognized as a local supporter by posting your company logo on the local chapter page and on our Meetup site(Image size for logos: gif, jpg or png with a size of 150px X 45px at 72dpi or 55px X 80px at 72dpi)
+
<br>
 +
Get the following benefits:
 +
 
 +
  - Meet upwards of 80-120 potential new clients
 +
  - Be recognized as a local supporter by posting your company logo on the local chapter page and on our Meetup site
 
  - Have your marketing write-up included in e-mail blasts sent prior to a monthly meeting.
 
  - Have your marketing write-up included in e-mail blasts sent prior to a monthly meeting.
  - Have a table at local chapter meeting  
+
  - Have a table at local chapter meeting with lots of time to meet and greet attendees
 
  - Promote your products and services
 
  - Promote your products and services
  - Bring a raffle prize to gather business cards
+
  - Bring a raffle prize to gather business cards and contact information
 +
The cost is only $1,400
  
 
Contact us [[#Los Angeles Chapter]] for general questions relating to sponsorship and donations
 
Contact us [[#Los Angeles Chapter]] for general questions relating to sponsorship and donations
  
== '''Announcements''' ==
+
== '''Chapter Organizational Sponsors''' ==
  
=== Change in Leadership ===
+
''[[File:FormerlyLOGO8.png|200px| center | link=http://www.akana.com/]]''
Tin Zaw has been a strong and effective visionary President and Leader for OWASP Los Angeles for several years. He will remain an active member of the Board, but effective January 1, 2013, Tin will be stepping down as Leader. Richard Greenberg -- Current Board Member, will assume this role going forward. We give our thanks to Tin for his efforts and dedication and look forward to the new year under Richard's leadership.
+
Akana’s comprehensive suite of API Management, API Security, SOA Governance, Cloud Integration, and Microservices solutions helps businesses accelerate digital transformation by securely extending their reach across multiple channels – mobile, cloud and Internet of Things. Akana enables enterprises to quickly deliver scalable applications, share data as APIs, connect and integrate applications, drive partner adoption, monetize their assets and provide intelligent insights into their business and operations. The world’s largest companies including Bank of America, Pfizer, and Verizon use Akana to harness the power of their technology and transform their businesses. Akana is also recognized as a “Leader” by Forrester in API Management Solution Wave, Q3 2014, by other analyst firms. For more information on Akana’s API Platform, see http://www.akana.com
  
 +
<br>
 +
== '''Participation'''  ==
  
'''[http://www.meetup.com/OWASP-Los-Angeles/ http://img1.meetupstatic.com/892670376411449149876/img/header/logo.png]
+
OWASP Foundation is a professional association of global members and is open to anyone interested in learning more about software security. Local chapters are run independently and guided by the [https://www.owasp.org/index.php/Chapter_Leader_Handbook Chapter_Leader_Handbook]. As a 501(c)(3) non-profit professional association your support and sponsorship of any meeting venue and/or refreshments is tax-deductible. Financial contributions should only be made online using the authorized online chapter donation button. To be a SPEAKER at ANY OWASP Chapter in the world simply review the [https://www.owasp.org/index.php/Speaker_Agreement speaker agreement] and then contact the local chapter leader with details of what OWASP PROJECT, independent research or related security topic you would like to present on.
==== We are on Meetup. Please join our community there. ====
+
 
 +
== '''Announcements'''  ==
 +
 
 +
<br>
 +
===''' [https://www.owasp.org/index.php/WASPY_Awards_2013/ OWASP Los Angeles received the BEST Chapter Leaders award at AppSec USA NY]===
 +
<br>
 +
'''<h2>[http://www.meetup.com/OWASP-Los-Angeles https://www.owasp.org/images/8/82/Meetup_logo3.jpg] [http://www.meetup.com/OWASP-Los-Angeles] [http://www.meetup.com/owasp-los-angeles OWASP-Los-Angeles '''''We are on Meetup. Please join our community here''.''']</h2>'''
 
===== If you are unable to access Meetup from your work computer as a result of filtering of social sites, we recommend that you view it on your smart phone or via your personal computer. =====
 
===== If you are unable to access Meetup from your work computer as a result of filtering of social sites, we recommend that you view it on your smart phone or via your personal computer. =====
  
 
===== http://www.meetup.com/OWASP-Los-Angeles/ =====
 
===== http://www.meetup.com/OWASP-Los-Angeles/ =====
  
<br>  
+
<br>
 +
 
 
== '''Become an OWASP Member TODAY'''==
 
== '''Become an OWASP Member TODAY'''==
 
===== Support your LA Chapter: only $50 for the entire year!  =====
 
===== Support your LA Chapter: only $50 for the entire year!  =====
Line 35: Line 50:
 
===== https://www.owasp.org/index.php/Individual_Member  =====
 
===== https://www.owasp.org/index.php/Individual_Member  =====
  
<br>  
+
<br>
  
== '''Next Meeting Wednesday, March 20, 2013 6:15 PM:'''==  
+
== '''Next OWASP Meeting'''==
*'''At: [http://maps.google.com/maps?q=3500+Ramona+Boulevard+%2C+Monterey+Park%2C+CA Luminaria's]'''
+
'''''**[http://www.meetup.com/OWASP-Los-Angeles/pages/Symantec_Parking_Information/ NOTE: Please review NEW parking rules (@meetup.com) for our monthly meetings at Symantec as of 7/22/2014] **'''''
 +
<br>
  
*3500 Ramona Boulevard , Monterey Park, CA [http://maps.google.com/maps?q=3500+Ramona+Boulevard+%2C+Monterey+Park%2C+CA map]
+
== '''[http://www.meetup.com/OWASP-Los-Angeles/events/219134708/ May 27, 2015 7pm at Symantec - Culver City, Ca] '''<br> ==
  
*Note the change in date, as this is a joint meeting with ISSA
+
  Speaker: Kelly Fitzgerald
  
*There is a fee to attend this Special Meeting. Register early online before the Monday prior to the the event, and get a $10 discount!
+
  Topic: Clever: Securing the Savvy Vector
*ISSA, OWASP, ISC2, & CSA Members, and Students: $25 / Non-Members: $35
+
*Register NOW: http://issalamarchdinnermeeting.eventbrite.com/
+
  
 +
'''<u>Abstract:</u>'''
 +
Depending on your age you may remember Superman or Office Space and the clever scheme to take the portions of a penny from huge number of transactions in order to un-noticeably get rich quick.  What about cybercrime in the real world?  In this talk we will look at the clever side of cybercrime.  Real world examples, events and protection. This information will help you as a security professional look at your world with a clever view and make you better at securing your world from the clever, savvy vector.
  
 +
'''<u>Speaker bio:</u>'''
 +
Kelly has a BS in Computer Science from CSUSB. She was awarded a full academic scholarship from the National Science Foundation. In her senior year of college she took a job at EvidentData doing computer forensics. From there she fell in love with the dark side and purposely went in persuit of a career in computer security looking at the bleedy places where people and technology bruise. Kelly has worked at Symantec since 2003 and has two single-filer patents pending.
 +
<br>
  
== ''' Speaker: Garret Grajek''' ==
+
<div style="text-align: center;">
*''' Synopsis: '''
+
Thanks to our sponsor: Absolute Software
  
Securing Mobile Apps – that’s the big discussion today. The last couple of years enterprises have been attempting to meet this requirement by deploying client-intensive MDMs (Mobile Device Managers). This has left the apps being utilized by partners, suppliers and customers – completely unprotected. How do we meet the challenge of applying security authentication standards to these un-managed devices. This is what will be discussed/demo’d.
+
''[[File:Absolsw.png|200px| center | link=http://www.prevoty.com ]]''
 +
sponsor info:
 +
Absolute Software is the industry standard in persistent endpoint security and management solutions for computers, laptops, tablets, and smartphones—and the data they contain. Our persistence technology is built into over half a billion devices around the world.  
 +
</div>
  
Presentation Break-Out:
 
  
''' Title: Securing Mobile Apps for the Enterprise '''
+
===== Please RSVP here: http://www.meetup.com/OWASP-Los-Angeles/events/ =====
 +
<br>
  
*''' Agenda: '''
+
== Would you like to speak at an OWASP Los Angeles Meeting? ==
  
I. The Condudrum: Secure the Phone or the App?
+
Call for Papers (CFP) is NOW OPEN. To speak at upcoming OWASP Los Angeles meetings please submit your BIO and talk abstract via email to [mailto:richard.greenberg@owasp.org Richard Greenberg] OR [mailto:Stuart.Schwartz@owasp.org Stuart Schwartz]. The talk must be vendor neutral and its content be available under Creative Common 3.0 license.
  
II. History: SMS (System Manangement Server) vs WAM
+
<br>
  
III. Now: MDM vs MAM (Mobile Appplication Managemnt)
+
== '''Upcoming OWASP Meetings'''  ==
  
IV: Advantage of App-Centric Security (MAM)
+
== '''[http://www.meetup.com/OWASP-Los-Angeles/events/219134730/ June 24, 2015 7pm Symantec - Culver City, Ca] '''<br> ==
 +
  Topic: tbd
  
- Modifiable Authentication
+
  Speaker:  tbd
  
- No Agent needed
+
<br>
 +
== '''Other Events'''  ==
 +
<br>
  
- No update needed of client software for workflow/Auth change
+
=== ''' [http://summit.issala.org/ ISSA-LA Seventh Annual Information Security Summit - Thursday, June 4, 2015 7:30am - 6pm @ Los Angeles Convention Center] '''<br> ===
 
+
OWASP Special 20% discount code: <b>"SW24OC"</b>
V: Demo of MAM
+
[[Media:ISSA_LA_Summit7_-_OWASP_LA.pdf | ISSA LA SUMMIT7 - OWASP-LA FLYER]]
 
+
VI Q.A.
+
 
+
*''' Bio: '''
+
 
+
Garret Grajek, CTO / COO, SecureAuth Corporation.
+
 
+
Garret Grajek is a CISSP-certified security engineer with more than 20 years of experience in the information security and authentication space. As Chief Technical Officer and Chief Operating Officer for SecureAuth Corporation, Garret is responsible for the strategic direction of the company’s Identity Enforcement product offerings.
+
 
+
Prior to co-founding SecureAuth, Grajek held leadership roles at some of the world’s leading technology companies including Cisco and IBM, where he was responsible for consumer and network security products. He also served as western region lead field engineer for RSA Security.
+
 
+
Grajek also worked at Netegrity where he was responsible for field implementation of Access Control products and led installations of SiteMinder, the security suite that controls all user access to the E*Trade Financial Services web site. Netegrity became the standard for internet access control and was acquired by CA.
+
 
+
He began his career as an entrepreneur and founder of an independent programming company that specialized in operating systems and network utilities. A pioneer in the use of the Linux operating system in enterprise environments, Grajek was responsible for the successful completion of numerous projects for IBM, Texas Instruments, Tandem Computers.
+
 
+
Grajek holds bachelor’s degree in computer science from the University of Texas at Austin.
+
 
+
== '''Sponsor: Security Innovation'''==
+
 
+
[https://www.securityinnovation.com/ Security Innovation]
+
 
+
The Application Security Company
+
 
+
Reduce Application Security Risk
+
 
+
Security Innovation focuses on the most difficult IT Security problem, and the root cause of most data breaches – insecure applications. Their solutions are based on the three pillars of a secure SDLC, which feed into one another to create an ecosystem of repeatable, secure software development: ''' [https://www.securityinnovation.com/solutions/standards-and-process.html Standards] ''', ''' [https://www.securityinnovation.com/solutions/education.html Education] ''' and ''' [https://www.securityinnovation.com/solutions/assessment.html Assessment] '''
+
 
+
===== Please RSVP here: http://www.meetup.com/OWASP-Los-Angeles/events/ =====
+
 
<br>
 
<br>
 +
=== ''' [http://summit.issala.org/summit-7-training/ ISSA-LA Summit 7 Training – Friday, June 5, 2015 @ Los Angeles Convention Center<br><b>--Classes--</b>  <br><u>Secure Coding Boot Camp</u> by <i>Jim Manico</i>,<br><u>Information Security Boot Camp for IT Professionals</u> by <i>Ed Pagett</i> & <i>Mikhael Felker</i>,<br><u>Investigating Social Networking Sites/Darknet Investigations</u> by <i>Kirby Plessas</i>,<br><u>Build Your Own Pentesting Environment</u> by <i>Kevin Cardwell</i>] '''<br> ===
  
== Would you like to speak at an OWASP Los Angeles Meeting? ==
 
  
Call for Papers (CFP) is NOW OPEN. To speak at upcoming OWASP Los Angeles meetings please submit your BIO and talk abstract via email to [mailto:richard.greenberg@owasp.org Richard Greenberg]. The talk must be vendor neutral and its content be available under Creative Common 3.0 license.
+
== Archives of Previous Meetings  ==
 +
[[Los Angeles/2015 Meetings|2015 Meetings]]
  
<br>
+
[[Los Angeles/2014 Meetings|2014 Meetings]]
  
== '''Other Events'''  ==
+
[[Los Angeles/2013 Meetings|2013 Meetings]]
*''' [http://www.socallinuxexpo.org/scale11x The Eleventh Annual Southern California Linux Expo February 22-24, 2013 Hilton Los Angeles International Airport] '''
+
  
*''' [http://www.issala.org/summit/ Early Bird Registration now open for the ISSA LA Security Summit May 21 at the Universal City Hilton] '''
 
 
 
== Archives of Previous Meetings  ==
 
 
[[Los Angeles/2012 Meetings|2012 Meetings]]  
 
[[Los Angeles/2012 Meetings|2012 Meetings]]  
  
Line 129: Line 122:
 
[[Los Angeles/2008 Meetings|2008 Meetings]]  
 
[[Los Angeles/2008 Meetings|2008 Meetings]]  
  
[[Los Angeles Presentation Archive|List of presentations available from past meetings]] <!--A list of previous presentations conducted at the Los Angeles Chapter can be found [https://www.owasp.org/index.php/Los_Angeles_Previous_Presentations here].-->  
+
[[Los Angeles Presentation Archive | Presentation Archive ]] <!--A list of previous presentations conducted at the Los Angeles Chapter can be found [https://www.owasp.org/index.php/Los_Angeles_Previous_Presentations here].-->  
  
<br>  
+
<br>
  
 
== Los Angeles Chapter  ==
 
== Los Angeles Chapter  ==
Line 138: Line 131:
 
*[mailto:tin.zaw@owasp.org Tin Zaw] -- Board Member
 
*[mailto:tin.zaw@owasp.org Tin Zaw] -- Board Member
 
*[mailto:edward@owasp.org Edward Bonver] -- Board Member
 
*[mailto:edward@owasp.org Edward Bonver] -- Board Member
*[mailto:Kelly.Fitzgerald@owasp.org Kelly Fitzgerald] -- Board Member  
+
*[mailto:mike.francis@owasp.org Mike Francis] -- Board Member  
 
*[mailto:Stuart.Schwartz@owasp.org Stuart Schwartz] -- Board Member  
 
*[mailto:Stuart.Schwartz@owasp.org Stuart Schwartz] -- Board Member  
 +
*[mailto:aaron.guzman@owasp.org Aaron Guzman] -- Board Member
 +
*[mailto:dave.wettenstein@owasp.org Dave Wettenstein] -- Board Member 
  
Volunteer OWASP Leaders: Yev Avidon and Mikhael Felker  <br>
+
Volunteers: Yev Avidon and Mikhael Felker  <br>
Volunteer OWASP Wiki: Mike Francis <br>
+
OWASP Wiki: [mailto:mike.francis@owasp.org Mike Francis] <br>
 
The Los Angeles chapter was founded by Cassio Goldschmidt.  
 
The Los Angeles chapter was founded by Cassio Goldschmidt.  
  
 
<br>The AppSec USA 2010 conference received rave reviews. Thanks to all the volunteers and great speakers who helped make it a success!  
 
<br>The AppSec USA 2010 conference received rave reviews. Thanks to all the volunteers and great speakers who helped make it a success!  
 +
 +
<!-- === ''' [http://appseccali.org/ OWASP AppSec California Summit January 27-28, 2014-] ===
 +
-->
  
 
Web archive: http://2010.AppSecUSA.org  
 
Web archive: http://2010.AppSecUSA.org  

Latest revision as of 12:18, 28 May 2015

Welcome to the Los Angeles Chapter!

New_OWASP_LA_Logo-08-2014.jpg


Single Meeting Supporter: Organizations that wish to support the OWASP Los Angeles Chapter with a 100% tax deductible donation enable the OWASP Foundation to continue its mission

Button red sponsor.png


Get the following benefits:

- Meet upwards of 80-120 potential new clients
- Be recognized as a local supporter by posting your company logo on the local chapter page and on our Meetup site
- Have your marketing write-up included in e-mail blasts sent prior to a monthly meeting.
- Have a table at local chapter meeting with lots of time to meet and greet attendees
- Promote your products and services
- Bring a raffle prize to gather business cards and contact information

The cost is only $1,400

Contact us #Los Angeles Chapter for general questions relating to sponsorship and donations

Chapter Organizational Sponsors

FormerlyLOGO8.png

Akana’s comprehensive suite of API Management, API Security, SOA Governance, Cloud Integration, and Microservices solutions helps businesses accelerate digital transformation by securely extending their reach across multiple channels – mobile, cloud and Internet of Things. Akana enables enterprises to quickly deliver scalable applications, share data as APIs, connect and integrate applications, drive partner adoption, monetize their assets and provide intelligent insights into their business and operations. The world’s largest companies including Bank of America, Pfizer, and Verizon use Akana to harness the power of their technology and transform their businesses. Akana is also recognized as a “Leader” by Forrester in API Management Solution Wave, Q3 2014, by other analyst firms. For more information on Akana’s API Platform, see http://www.akana.com


Participation

OWASP Foundation is a professional association of global members and is open to anyone interested in learning more about software security. Local chapters are run independently and guided by the Chapter_Leader_Handbook. As a 501(c)(3) non-profit professional association your support and sponsorship of any meeting venue and/or refreshments is tax-deductible. Financial contributions should only be made online using the authorized online chapter donation button. To be a SPEAKER at ANY OWASP Chapter in the world simply review the speaker agreement and then contact the local chapter leader with details of what OWASP PROJECT, independent research or related security topic you would like to present on.

Announcements


OWASP Los Angeles received the BEST Chapter Leaders award at AppSec USA NY


Meetup_logo3.jpg [1] OWASP-Los-Angeles We are on Meetup. Please join our community here.

If you are unable to access Meetup from your work computer as a result of filtering of social sites, we recommend that you view it on your smart phone or via your personal computer.
http://www.meetup.com/OWASP-Los-Angeles/


Become an OWASP Member TODAY

Support your LA Chapter: only $50 for the entire year!
https://www.owasp.org/index.php/Individual_Member


Next OWASP Meeting

**NOTE: Please review NEW parking rules (@meetup.com) for our monthly meetings at Symantec as of 7/22/2014 **

May 27, 2015 7pm at Symantec - Culver City, Ca

  Speaker: Kelly Fitzgerald
  Topic: Clever: Securing the Savvy Vector

Abstract: Depending on your age you may remember Superman or Office Space and the clever scheme to take the portions of a penny from huge number of transactions in order to un-noticeably get rich quick. What about cybercrime in the real world? In this talk we will look at the clever side of cybercrime. Real world examples, events and protection. This information will help you as a security professional look at your world with a clever view and make you better at securing your world from the clever, savvy vector.

Speaker bio: Kelly has a BS in Computer Science from CSUSB. She was awarded a full academic scholarship from the National Science Foundation. In her senior year of college she took a job at EvidentData doing computer forensics. From there she fell in love with the dark side and purposely went in persuit of a career in computer security looking at the bleedy places where people and technology bruise. Kelly has worked at Symantec since 2003 and has two single-filer patents pending.

Thanks to our sponsor: Absolute Software

Absolsw.png

sponsor info: Absolute Software is the industry standard in persistent endpoint security and management solutions for computers, laptops, tablets, and smartphones—and the data they contain. Our persistence technology is built into over half a billion devices around the world.


Please RSVP here: http://www.meetup.com/OWASP-Los-Angeles/events/


Would you like to speak at an OWASP Los Angeles Meeting?

Call for Papers (CFP) is NOW OPEN. To speak at upcoming OWASP Los Angeles meetings please submit your BIO and talk abstract via email to Richard Greenberg OR Stuart Schwartz. The talk must be vendor neutral and its content be available under Creative Common 3.0 license.


Upcoming OWASP Meetings

June 24, 2015 7pm Symantec - Culver City, Ca

  Topic: tbd
  Speaker:  tbd


Other Events


ISSA-LA Seventh Annual Information Security Summit - Thursday, June 4, 2015 7:30am - 6pm @ Los Angeles Convention Center

OWASP Special 20% discount code: "SW24OC" ISSA LA SUMMIT7 - OWASP-LA FLYER

ISSA-LA Summit 7 Training – Friday, June 5, 2015 @ Los Angeles Convention Center
--Classes--
Secure Coding Boot Camp by Jim Manico,
Information Security Boot Camp for IT Professionals by Ed Pagett & Mikhael Felker,
Investigating Social Networking Sites/Darknet Investigations by Kirby Plessas,
Build Your Own Pentesting Environment by Kevin Cardwell

Archives of Previous Meetings

2015 Meetings

2014 Meetings

2013 Meetings

2012 Meetings

2011 Meetings

2010 Meetings

2009 Meetings

2008 Meetings

Presentation Archive


Los Angeles Chapter

Volunteers: Yev Avidon and Mikhael Felker
OWASP Wiki: Mike Francis
The Los Angeles chapter was founded by Cassio Goldschmidt.


The AppSec USA 2010 conference received rave reviews. Thanks to all the volunteers and great speakers who helped make it a success!


Web archive: http://2010.AppSecUSA.org

Videos: http://vimeo.com/user4863863/videos

AppSec Logo.jpg