Difference between revisions of "Los Angeles"

From OWASP
Jump to: navigation, search
 
(134 intermediate revisions by 2 users not shown)
Line 19: Line 19:
 
== '''Announcements'''  ==
 
== '''Announcements'''  ==
  
=== Change in Leadership ===
+
===''' [https://www.owasp.org/index.php/WASPY_Awards_2013/ OWASP Los Angeles received the BEST Chapter Leaders award at AppSec USA NY]===
Tin Zaw has been a strong and effective visionary President and Leader for OWASP Los Angeles for several years. He will remain an active member of the Board, but effective January 1, 2013, Tin will be stepping down as Leader. Richard Greenberg -- Current Board Member, will assume this role going forward. We give our thanks to Tin for his efforts and dedication and look forward to the new year under Richard's leadership.
+
<br>
 
+
  
 
'''[http://www.meetup.com/OWASP-Los-Angeles/ http://img1.meetupstatic.com/892670376411449149876/img/header/logo.png]
 
'''[http://www.meetup.com/OWASP-Los-Angeles/ http://img1.meetupstatic.com/892670376411449149876/img/header/logo.png]
Line 35: Line 34:
 
===== https://www.owasp.org/index.php/Individual_Member  =====
 
===== https://www.owasp.org/index.php/Individual_Member  =====
  
<br>  
+
<!--
 +
[[Image:Cigital image.jpg| 100px |thumb|left|link=http://www.cigital.com/]]      -->
 +
<br>
 +
== '''2013 December Holiday Party at Daily Grill in LA''' ==
 +
[[Image:holiday.jpg| 500px]]
 +
<br>
  
== '''Next Meeting ''Wednesday, May 29, 2013 7PM'' Symantec Offices, Culver City'''==  
+
<br>
 
+
== '''Next OWASP Meeting'''==
*''' -->Note the change in date, due to the ISSA Security Summit on May 21 ('''[http://www.issala.org/summit/ Have you REGISTERED]?)<--'''
+
''**NOTE: Date for this event **''
 
+
==''' 7pm April 23, 2014 at Symantec offices, 900 Corporate Pointe, Culver City, CA 90230'''==
*''' ''Speaker: Steven Woodward'''
+
 
+
*''' Topic:  Cloud Computing – Security and Interoperability Perspectives'''
+
 
+
Many organizations are evaluating and migrating toward cloud computing solutions.  In 2013, some the key challenges pertain to security and interoperability.  Open cloud standards can help manage risks, while fostering efficient solution delivery.
+
 
+
Steven Woodward shares updates from numerous international cloud standards related organizations. In Canada, he leads several of the cloud computing initiatives in both the private and public sectors.  This includes being one of the founding board members of the Cloud Security Alliance Canadian Chapter.
+
 
+
Steven describes key cloud ecosystems models; highlighting where security considerations fit, along with different perspectives on interoperability.  Several real-life scenarios will be used, highlighting cloud concepts, security, interoperability and the impacts these can have on commitments (functionality, costs, time-to-value and quality).  Service Agreements and Service Level Agreements will also be addressed to identify where you may find security and interoperability considerations specified in the contracts.
+
 
+
The presentation is designed to be interactive and will include some group activities to generate discussions and identify practical solutions.
+
 
+
Attendees of the presentation will leave with a better understanding of cloud security and interoperability considerations, plus be aware of reference material and models that help address those challenges.
+
 
+
*''' Bio: '''Steven Woodward'''
+
 
+
Steven Woodward is CEO and founder of Cloud Perspectives and is the Canadian Cloud Council Director of Cloud Governance.  He was recently announced as the Chief Cloud Officer for “the Politburo”, a new innovative cloud provider based in Canada.  He is a leading contributor to the National Institute of Standards for Technology (NIST), TM Forum, Object Management Group Cloud Standards Customer Council and the International Telecommunication Union (ITU) Joint Collaboration Activity cloud computing working groups.
+
 
+
Steven represents the Canadian Advanced Technology Alliance at the Shared Services Canada Architecture Advisory Committee and is helping define the Canadian Federal Government Cloud Computing Strategy.  In addition to cloud standards and best practices guides, he authored the “Cloud Measurement” chapter in the 2012 CRC Press published book, “The IFPUG Guide to IT and Software Measurement.”  In 2010 he was elected to the International Function Point Users Group (IFPUG) board of directors, where he is responsible for conferences and formed a, IFPUG metrics cloud computing community.
+
  
A frequent international instructor, presenter and leader, he continues fostering cloud collaboration in the industry and academiaFrom Los Angeles, he is travelling to Maui as keynote at the IEEE System of Systems Engineering conference.
+
  '''Topic:  Stop Chasing Vulnerabilities – Getting Started with Continuous Application Security'''
 +
For too long, application security has been “experts-only” and practiced one-app-at-a-time. But modern software development, both technology and process, is mostly incompatible with this old approach and legacy appsec toolsSoftware development has been transformed by practices like Continuous Integration and Continuous Integration, and the time has come to bring these efficiencies to security.  In this talk, Jeff will show you how you can transition to a “Continuous Application Security” approach that generates assurance automatically across an entire application security portfolio. Jeff will demonstrate how both open-source and commercial tools (including OWASP ZAP, Mozilla’s Minion, Gauntlt, and others) can be integrated to provide a comprehensive real time application security dashboard.  With this approach, we can leverage the power of big data analytics to gain unprecedented insight into enterprise application security and finally focus on enterprise application security strategy rather than simply chasing the next XSS.
  
== '''Sponsor: Qualys, Inc.'''==
+
  '''Speaker: Jeff Williams'''  
 +
Jeff Williams has over 20 years of experience in software development and security. Jeff is a founder and CTO of Contrast Security, offering a revolutionary application security technology that accurately identifies vulnerabilities at portfolio scale without requiring experts. Prior to founding Contrast, Jeff was a founder and CEO at Aspect Security.  In addition, Jeff helped found the OWASP Foundation where he served as the Global Chair for 8 years and created many open-source standards, tools, libraries, and guidelines – including the OWASP Top Ten.
  
'''[http://www.qualys.com Qualys, Inc.]
+
== '''Sponsor: Contrast Security'''==
  
On Demand Security.
+
[[Image:Contrastlogo.jpg | 100px |thumb|center|link=http://www.contrastsecurity.com/]]
 +
  
 
===== Please RSVP here: http://www.meetup.com/OWASP-Los-Angeles/events/ =====
 
===== Please RSVP here: http://www.meetup.com/OWASP-Los-Angeles/events/ =====
Line 74: Line 62:
 
== Would you like to speak at an OWASP Los Angeles Meeting? ==  
 
== Would you like to speak at an OWASP Los Angeles Meeting? ==  
  
Call for Papers (CFP) is NOW OPEN. To speak at upcoming OWASP Los Angeles meetings please submit your BIO and talk abstract via email to [mailto:richard.greenberg@owasp.org Richard Greenberg]. The talk must be vendor neutral and its content be available under Creative Common 3.0 license.  
+
Call for Papers (CFP) is NOW OPEN. To speak at upcoming OWASP Los Angeles meetings please submit your BIO and talk abstract via email to [mailto:richard.greenberg@owasp.org Richard Greenberg] OR [mailto:Stuart.Schwartz@owasp.org Stuart Schwartz]. The talk must be vendor neutral and its content be available under Creative Common 3.0 license.  
  
 
<br>  
 
<br>  
 +
 +
== '''Upcoming OWASP Meetings'''  ==
 +
 +
<!-- *''' [http://appseccali.org/ OWASP AppSec California Summit January 27-28, 2014-] ''' -->
 +
<!-- *''' February 19, 2014 at Symantec offices, 900 Corporate Pointe, Culver City, CA 90230''' -->
 +
<!-- *''' March 19, 2014: Joint Dinner Meeting with ISSA''' -->
 +
*'''May 28, 2014 at Symantec offices, 900 Corporate Pointe, Culver City, CA 90230'''
 +
    '''Topic: Cloud Security Through Threat Modeling'''
 +
    '''Speaker: Robert Zigweid'''
  
 
== '''Other Events'''  ==
 
== '''Other Events'''  ==
  
*''' [http://www.issala.org/summit/ Registration now open for the ISSA LA Security Summit May 21 at the Universal City Hilton] '''
+
*''' [https://www.eventbrite.com/e/issa-la-april-lunch-meeting-tickets-11075766917?ref=ebtnebregn ISSA-LA April lunch meeting at Taix French Restaurant - Wednesday, April 16, 2014 11:30am - 1:45pm ] '''
Come see the Opening Keynote by Obama's first Cybersecurity Czar, Howard Schmidt; an OWASP Top Ten session by Jim Manico; a CISO and a Law Enforcement Panel; and much more!
+
  '''Topic: Hacking Information Security Management'''
 +
  '''Speaker: Mikhael Felker, Director of Security & Compliance for ReachLocal'''
 +
<br>
 +
*''' [http://www.issala.org/summit-vi-may-2014/ ISSA-LA 6th Annual Information Security Summit - Friday, May 16, 2014 at Universal City] '''
 +
 
 +
<!-- *''' [http://www.issala.org/ ISSA-LA Monthly Lunch Meeting at Taix French Restaurant - Wednesday January 15th 2014 11:30am - 1:45pm ] ''' -->
  
*''' [http://www.appsecusa.org/2013/ AppSec USA 2013, NYC November 18-21 at Marriott, NYC] '''
 
AppSec USA is a world-class software security conference for technologists, auditors, risk managers, and entrepreneurs, gathering the world's top practitioner, to share the latest research and practices.
 
  
 
== Archives of Previous Meetings  ==
 
== Archives of Previous Meetings  ==
 +
[[Los Angeles/2014 Meetings|2014 Meetings]]
 +
 
[[Los Angeles/2013 Meetings|2013 Meetings]]
 
[[Los Angeles/2013 Meetings|2013 Meetings]]
  
Line 99: Line 101:
 
[[Los Angeles/2008 Meetings|2008 Meetings]]  
 
[[Los Angeles/2008 Meetings|2008 Meetings]]  
  
[[Los Angeles Presentation Archive|List of presentations available from past meetings]] <!--A list of previous presentations conducted at the Los Angeles Chapter can be found [https://www.owasp.org/index.php/Los_Angeles_Previous_Presentations here].-->  
+
[[Los Angeles Presentation Archive | Presentation Archive ]] <!--A list of previous presentations conducted at the Los Angeles Chapter can be found [https://www.owasp.org/index.php/Los_Angeles_Previous_Presentations here].-->  
  
 
<br>  
 
<br>  
Line 108: Line 110:
 
*[mailto:tin.zaw@owasp.org Tin Zaw] -- Board Member
 
*[mailto:tin.zaw@owasp.org Tin Zaw] -- Board Member
 
*[mailto:edward@owasp.org Edward Bonver] -- Board Member
 
*[mailto:edward@owasp.org Edward Bonver] -- Board Member
*[mailto:Kelly.Fitzgerald@owasp.org Kelly Fitzgerald] -- Board Member  
+
*[mailto:mike.francis@owasp.org Mike Francis] -- Board Member  
 
*[mailto:Stuart.Schwartz@owasp.org Stuart Schwartz] -- Board Member  
 
*[mailto:Stuart.Schwartz@owasp.org Stuart Schwartz] -- Board Member  
 +
*[mailto:aaron.guzman@owasp.org Aaron Guzman] -- Board Member
 +
*[mailto:dave.wettenstein@owasp.org Dave Wettenstein] -- Board Member 
  
Volunteer OWASP Leaders: Yev Avidon and Mikhael Felker  <br>
+
Volunteers: Yev Avidon and Mikhael Felker  <br>
Volunteer OWASP Wiki: Mike Francis <br>
+
OWASP Wiki: [mailto:mike.francis@owasp.org Mike Francis] <br>
 
The Los Angeles chapter was founded by Cassio Goldschmidt.  
 
The Los Angeles chapter was founded by Cassio Goldschmidt.  
  
 
<br>The AppSec USA 2010 conference received rave reviews. Thanks to all the volunteers and great speakers who helped make it a success!  
 
<br>The AppSec USA 2010 conference received rave reviews. Thanks to all the volunteers and great speakers who helped make it a success!  
 +
 +
<!-- === ''' [http://appseccali.org/ OWASP AppSec California Summit January 27-28, 2014-] ===
 +
-->
  
 
Web archive: http://2010.AppSecUSA.org  
 
Web archive: http://2010.AppSecUSA.org  

Latest revision as of 15:09, 11 April 2014

Contents

Welcome to the Los Angeles Chapter!

Donatenow.jpg

Single Meeting Supporter: Organizations that wish to support the OWASP Los Angeles Chapter with a 100% tax deductible donation enable the OWASP Foundation to continue its mission

Get the following benefits::

- Meet upwards of 60-90 potential new clients
- Be recognized as a local supporter by posting your company logo on the local chapter page and on our Meetup site(Image size for logos: gif, jpg or png with a size of 150px X 45px at 72dpi or 55px X 80px at 72dpi) 
- Have your marketing write-up included in e-mail blasts sent prior to a monthly meeting.
- Have a table at local chapter meeting 
- Promote your products and services
- Bring a raffle prize to gather business cards

Contact us #Los Angeles Chapter for general questions relating to sponsorship and donations

Announcements

OWASP Los Angeles received the BEST Chapter Leaders award at AppSec USA NY


logo.png

We are on Meetup. Please join our community there.

If you are unable to access Meetup from your work computer as a result of filtering of social sites, we recommend that you view it on your smart phone or via your personal computer.
http://www.meetup.com/OWASP-Los-Angeles/


Become an OWASP Member TODAY

Support your LA Chapter: only $50 for the entire year!
https://www.owasp.org/index.php/Individual_Member


2013 December Holiday Party at Daily Grill in LA

Holiday.jpg


Next OWASP Meeting

**NOTE: Date for this event **

7pm April 23, 2014 at Symantec offices, 900 Corporate Pointe, Culver City, CA 90230

  Topic:  Stop Chasing Vulnerabilities – Getting Started with Continuous Application Security

For too long, application security has been “experts-only” and practiced one-app-at-a-time. But modern software development, both technology and process, is mostly incompatible with this old approach and legacy appsec tools. Software development has been transformed by practices like Continuous Integration and Continuous Integration, and the time has come to bring these efficiencies to security. In this talk, Jeff will show you how you can transition to a “Continuous Application Security” approach that generates assurance automatically across an entire application security portfolio. Jeff will demonstrate how both open-source and commercial tools (including OWASP ZAP, Mozilla’s Minion, Gauntlt, and others) can be integrated to provide a comprehensive real time application security dashboard. With this approach, we can leverage the power of big data analytics to gain unprecedented insight into enterprise application security and finally focus on enterprise application security strategy rather than simply chasing the next XSS.

  Speaker:  Jeff Williams 

Jeff Williams has over 20 years of experience in software development and security. Jeff is a founder and CTO of Contrast Security, offering a revolutionary application security technology that accurately identifies vulnerabilities at portfolio scale without requiring experts. Prior to founding Contrast, Jeff was a founder and CEO at Aspect Security. In addition, Jeff helped found the OWASP Foundation where he served as the Global Chair for 8 years and created many open-source standards, tools, libraries, and guidelines – including the OWASP Top Ten.

Sponsor: Contrast Security

Contrastlogo.jpg


Please RSVP here: http://www.meetup.com/OWASP-Los-Angeles/events/


Would you like to speak at an OWASP Los Angeles Meeting?

Call for Papers (CFP) is NOW OPEN. To speak at upcoming OWASP Los Angeles meetings please submit your BIO and talk abstract via email to Richard Greenberg OR Stuart Schwartz. The talk must be vendor neutral and its content be available under Creative Common 3.0 license.


Upcoming OWASP Meetings

  • May 28, 2014 at Symantec offices, 900 Corporate Pointe, Culver City, CA 90230
   Topic: Cloud Security Through Threat Modeling
   Speaker: Robert Zigweid 

Other Events

 Topic: Hacking Information Security Management
 Speaker: Mikhael Felker, Director of Security & Compliance for ReachLocal 



Archives of Previous Meetings

2014 Meetings

2013 Meetings

2012 Meetings

2011 Meetings

2010 Meetings

2009 Meetings

2008 Meetings

Presentation Archive


Los Angeles Chapter

Volunteers: Yev Avidon and Mikhael Felker
OWASP Wiki: Mike Francis
The Los Angeles chapter was founded by Cassio Goldschmidt.


The AppSec USA 2010 conference received rave reviews. Thanks to all the volunteers and great speakers who helped make it a success!


Web archive: http://2010.AppSecUSA.org

Videos: http://vimeo.com/user4863863/videos

AppSec Logo.jpg