Difference between revisions of "Los Angeles"

From OWASP
Jump to: navigation, search
 
(273 intermediate revisions by 2 users not shown)
Line 1: Line 1:
== Welcome to the Los Angeles Chapter!  ==
+
== '''Welcome to the Los Angeles Chapter!''' ==
  
 +
[[Image:New_OWASP_LA_Logo-08-2014.jpg|700px|New_OWASP_LA_Logo-08-2014.jpg]]
  
=====[http://www.regonline.com/donation_1044369 https://www.owasp.org/images/2/2f/Donatenow.jpg]=====
+
<!-- =====[http://www.regonline.com/donation_1044369 https://www.owasp.org/images/2/2f/Donatenow.jpg]===== -->
  
 
Single Meeting Supporter:
 
Single Meeting Supporter:
 
Organizations that wish to support the OWASP Los Angeles Chapter with a 100% tax deductible donation enable the OWASP Foundation to continue its mission  
 
Organizations that wish to support the OWASP Los Angeles Chapter with a 100% tax deductible donation enable the OWASP Foundation to continue its mission  
  
Get the following benefits::
+
''[[File:Button_red_sponsor.png|300px| center | link=https://www.regonline.com/Register/Checkin.aspx?EventId=1044369]]''
  - Meet upwards of 60-90 potential new clients
+
 
  - Be recognized as a local supporter by posting your company logo on the local chapter page and on our Meetup site(Image size for logos: gif, jpg or png with a size of 150px X 45px at 72dpi or 55px X 80px at 72dpi)
+
<br>
 +
Get the following benefits:
 +
 
 +
  - Meet upwards of 80-120 potential new clients
 +
  - Be recognized as a local supporter by posting your company logo on the local chapter page and on our Meetup site
 
  - Have your marketing write-up included in e-mail blasts sent prior to a monthly meeting.
 
  - Have your marketing write-up included in e-mail blasts sent prior to a monthly meeting.
  - Have a table at local chapter meeting  
+
  - Have a table at local chapter meeting with lots of time to meet and greet attendees
 
  - Promote your products and services
 
  - Promote your products and services
  - Bring a raffle prize to gather business cards
+
  - Bring a raffle prize to gather business cards and contact information
 +
The cost is only $1,400
  
 
Contact us [[#Los Angeles Chapter]] for general questions relating to sponsorship and donations
 
Contact us [[#Los Angeles Chapter]] for general questions relating to sponsorship and donations
  
== '''Announcements''' ==
+
== '''Chapter Organizational Sponsors''' ==
  
=== ''' [http://appseccali.org/ Mark Your Calendars: OWASP AppSec California Summit January 27-28, 2014-] ===
+
''[[File:akana.jpeg|150px| center | link=http://www.akana.com/]]''
 +
Akana’s comprehensive suite of API Management, API Security, SOA Governance, Cloud Integration, and Microservices solutions helps businesses accelerate digital transformation by securely extending their reach across multiple channels – mobile, cloud and Internet of Things. Akana enables enterprises to quickly deliver scalable applications, share data as APIs, connect and integrate applications, drive partner adoption, monetize their assets and provide intelligent insights into their business and operations. The world’s largest companies including Bank of America, Pfizer, and Verizon use Akana to harness the power of their technology and transform their businesses. Akana is also recognized as a “Leader” by Forrester in API Management Solution Wave, Q3 2014, by other analyst firms. For more information on Akana’s API Platform, see http://www.akana.com
  
 +
<br>
 +
== '''Participation'''  ==
  
=== [https://www.owasp.org/index.php/WASPY_Awards_2013 Los Angeles OWASP Chapter Board Nominated for Best Chapter Leader] ===
+
OWASP Foundation is a professional association of global members and is open to anyone interested in learning more about software security. Local chapters are run independently and guided by the [https://www.owasp.org/index.php/Chapter_Leader_Handbook Chapter_Leader_Handbook]. As a 501(c)(3) non-profit professional association your support and sponsorship of any meeting venue and/or refreshments is tax-deductible. Financial contributions should only be made online using the authorized online chapter donation button. To be a SPEAKER at ANY OWASP Chapter in the world simply review the [https://www.owasp.org/index.php/Speaker_Agreement speaker agreement] and then contact the local chapter leader with details of what OWASP PROJECT, independent research or related security topic you would like to present on.
We have been nominated for the 2013 Global WASPY Awards, and are humbled to share this honor with the leading web application security professionals in the world.
+
 
Join OWASP and become a member and show your support by casting your vote!
+
== '''Announcements'''  ==
  
 
<br>
 
<br>
===[[OWASP Los Angeles nominated for BEST CHAPTER LEADER]]===
+
===''' [https://www.owasp.org/index.php/WASPY_Awards_2013/ OWASP Los Angeles received the BEST Chapter Leaders award at AppSec USA NY]===
 
<br>
 
<br>
 
+
'''<h2>[http://www.meetup.com/OWASP-Los-Angeles https://www.owasp.org/images/8/82/Meetup_logo3.jpg] [http://www.meetup.com/OWASP-Los-Angeles] [http://www.meetup.com/owasp-los-angeles OWASP-Los-Angeles '''''We are on Meetup. Please join our community here''.''']</h2>'''
'''[http://www.meetup.com/OWASP-Los-Angeles/ http://img1.meetupstatic.com/892670376411449149876/img/header/logo.png]
+
==== We are on Meetup. Please join our community there. ====
+
 
===== If you are unable to access Meetup from your work computer as a result of filtering of social sites, we recommend that you view it on your smart phone or via your personal computer. =====
 
===== If you are unable to access Meetup from your work computer as a result of filtering of social sites, we recommend that you view it on your smart phone or via your personal computer. =====
  
 
===== http://www.meetup.com/OWASP-Los-Angeles/ =====
 
===== http://www.meetup.com/OWASP-Los-Angeles/ =====
  
<br>  
+
<br>
 +
 
 
== '''Become an OWASP Member TODAY'''==
 
== '''Become an OWASP Member TODAY'''==
 
===== Support your LA Chapter: only $50 for the entire year!  =====
 
===== Support your LA Chapter: only $50 for the entire year!  =====
Line 42: Line 50:
 
===== https://www.owasp.org/index.php/Individual_Member  =====
 
===== https://www.owasp.org/index.php/Individual_Member  =====
  
<br>
 
 
== '''Next Meeting [https://issaladinnermeeting.eventbrite.com/ OWASP-ISSA Joint Monthly Meeting-] Wednesday September 18, 2013 7PM '''==
 
@ [http://maps.google.com/maps?q=11301+Olympic+Blvd.+%23204%2C+West+Los+Angeles%2C+CA The Olympic Collection Banquet & Conference Center 11301 Olympic Blvd. #204, West Los Angeles, CA ]
 
 
'''Speaker''': Jerry Hoff'''<br>
 
Whitehat Security, VP, Static Code Analysis Division; Managing Partner / Co-Founder, INFRARED SECURITY; Former Developer Security Consulting & FTE Across The Board; Over 10,000 Hours Delivering Technical Training; MS In Computer Science, Washington University
 
 
'''Topic''': Demonstration of Common Web Vulnerabilities using WebGoat.NET'''<br>
 
Developers cannot defend against unknown threats.  Understanding vulnerabilities and security controls is an absolute necessity – not only for developers, but for Architects, QA and anyone else involved in the creation of software. This talk starts by making a strong argument for developer education, and how it fits into any organization’s SDLC. From there, we discuss other OWASP resources and projects dedicated to developer education, and an in-depth discussion of OWASP WebGoat.NET – an ASP.NET specific re-design of OWASP which meets the needs and addresses the challenges of modern application security training programs.
 
 
<br>
 
<br>
<br>
 
 
== '''Sponsor: Checkmarx and Trend Micro'''==
 
  
[[Image:Chx.png |link=http://www.checkmarx.com/]]
+
== '''Next OWASP Meeting'''==
 +
'''''**[http://www.meetup.com/OWASP-Los-Angeles/pages/Symantec_Parking_Information/ NOTE: Please review NEW parking rules (@meetup.com) for our monthly meetings at Symantec as of 7/22/2014] **'''''
 
<br>
 
<br>
Checkmarx provides the best way for organizations to introduce security into their Software Development Lifecycle (SDLC) which systematically eliminates software risk.
 
  
The product enables developers and auditors to easily scan un-compiled / un-built code in all major coding languages and identify its security vulnerabilities.
+
== '''[http://www.meetup.com/OWASP-Los-Angeles/events/219134708/ July 29, 2015 7pm at Symantec - Culver City, Ca] '''<br> ==
  
Static Code Analysis (SCA) delivers security and the requirement of incorporating security into the software development lifecycle (SDLC). It is the only proven method to cover the entire code base and identify all the vulnerable areas in the software. In static code analysis the entire code base is abstracted and all code properties and code data-flows are exposed.
+
  Speaker: Leif Dreizler
  
With Checkmarx's CxSuite, auditors and developers have immediate access to the code analysis results and remediation advice. We provide user friendly, high productivity, flexible and accurate risk intelligence platform that ensures your application remains hacker-proof.
+
  Topic: Inherent differences between the hacker and developer mentality
  
[[Image:Iab120x90_1855632.jpeg | link=http://www.trendmicro.com/]]
+
'''<u>Abstract:</u>'''
 +
Leif Dreizler, BugCrowd, explores the inherent differences between the hacker and developer mentality. In this discussion, the audience will hear from a former breaker and fixer of security flaws on how developers who acknowledge the existence of ‘The Bogeyman’ come that much closer to being active participants in ensuring their company’s security, rather than passive victims. During his talk you'll learn... how to decrease friction between dev and security teams, how crowdsourced security testing merges into the SDLC, how organizations can increase ROI on security testing with a pay for performance model and more.
 +
 
 +
'''<u>Speaker bio:</u>'''
 +
Leif is a Senior Security Engineer at Bugcrowd, the innovator in crowdsourced security testing for the enterprise, where he works to customize and support security testing solutions for Bugcrowd clients. Prior to Bugcrowd, Leif worked as Senior Application Security Engineer at Redspin, performing application security assessments. During his time at Redspin he served as the Application Team Lead, working with clients large and small at the engineering and sales level. Leif is an OWASP speaker and member, and contributes to the Firebug project. Leif attended the University of California where he studied Computer Science. Most recently, Leif spoke at Bsides-SF and invited to be part of the department’s “Array of Talks” panel, a speaker series that he helped develop.
 
<br>
 
<br>
Trend Micro Incorporated, a global leader in security software, strives to make the world safe for exchanging digital information.  Our solutions for consumers, businesses and governments provide layered content security to protect information on mobile devices, endpoints, gateways, servers and the cloud.
 
  
Trend Micro enables the smart protection of information, with innovative security technology that is simple to deploy and manage, and fits an evolving ecosystem. Leveraging these solutions, organizations can protect their end users, their evolving data center and cloud resources, and their information threatened by sophisticated targeted attacks.
+
<div style="text-align: center;">
 +
Thanks to our sponsor: Bugcrowd
 +
 
 +
<!-- ''[[File:Bugcrowd.jpg|200px| center | link=http://www.bugcrowd.com/ ]]''
 +
sponsor info:
 +
 
 +
An innovator in crowdsourced security testing for the enterprise, Bugcrowd harnesses the power of more than 18,000 security researchers to surface critical software vulnerabilities and level the playing field in cybersecurity. Bugcrowd also provides a range of responsible disclosure and managed service options that allow companies to commission a customized security testing program that fits their specific requirements. Bugcrowd’s proprietary vulnerability disclosure platform is deployed by Western Union, Pinterest, Drupal and many others. Based in San Francisco, CA, Bugcrowd is backed by Costanoa Venture Capital, Rally Ventures, Paladin Capital Group and Blackbird Ventures. For more information visit www.bugcrowd.com.  
 +
</div>
  
All of their solutions are powered by cloud-based global threat intelligence, the Trend Micro™ Smart Protection Network™, and are supported by over 1,200 threat experts around the globe.  For more information, visit www.trendmicro.com.
 
  
 
===== Please RSVP here: http://www.meetup.com/OWASP-Los-Angeles/events/ =====
 
===== Please RSVP here: http://www.meetup.com/OWASP-Los-Angeles/events/ =====
Line 84: Line 88:
 
<br>  
 
<br>  
  
== '''Other Events'''  ==
+
== '''Upcoming OWASP Meetings'''  ==
  
*''' [http://www.bsidesoc.org FIRST B-Sides Orange County Conference - Friday, October 4th, 2013 10:30 am - 5:00 pm ]
+
<br>
 +
== '''Other Events'''  ==
 
<br>
 
<br>
  
*''' [http://www.appsecusa.org/2013/ AppSec USA 2013, NYC November 18-21 at Marriott, NYC] '''
 
AppSec USA is a world-class software security conference for technologists, auditors, risk managers, and entrepreneurs, gathering the world's top practitioner, to share the latest research and practices.
 
  
*''' [http://appseccali.org/ OWASP AppSec California Summit January 27-28, 2014-] '''
 
<br>
 
  
 
== Archives of Previous Meetings  ==
 
== Archives of Previous Meetings  ==
 +
[[Los Angeles/2015 Meetings|2015 Meetings]]
 +
 +
[[Los Angeles/2014 Meetings|2014 Meetings]]
 +
 
[[Los Angeles/2013 Meetings|2013 Meetings]]
 
[[Los Angeles/2013 Meetings|2013 Meetings]]
  
Line 110: Line 115:
 
[[Los Angeles Presentation Archive | Presentation Archive ]] <!--A list of previous presentations conducted at the Los Angeles Chapter can be found [https://www.owasp.org/index.php/Los_Angeles_Previous_Presentations here].-->  
 
[[Los Angeles Presentation Archive | Presentation Archive ]] <!--A list of previous presentations conducted at the Los Angeles Chapter can be found [https://www.owasp.org/index.php/Los_Angeles_Previous_Presentations here].-->  
  
<br>  
+
<br>
  
 
== Los Angeles Chapter  ==
 
== Los Angeles Chapter  ==
Line 117: Line 122:
 
*[mailto:tin.zaw@owasp.org Tin Zaw] -- Board Member
 
*[mailto:tin.zaw@owasp.org Tin Zaw] -- Board Member
 
*[mailto:edward@owasp.org Edward Bonver] -- Board Member
 
*[mailto:edward@owasp.org Edward Bonver] -- Board Member
*[mailto:Kelly.Fitzgerald@owasp.org Kelly Fitzgerald] -- Board Member  
+
*[mailto:mike.francis@owasp.org Mike Francis] -- Board Member  
 
*[mailto:Stuart.Schwartz@owasp.org Stuart Schwartz] -- Board Member  
 
*[mailto:Stuart.Schwartz@owasp.org Stuart Schwartz] -- Board Member  
 +
*[mailto:aaron.guzman@owasp.org Aaron Guzman] -- Board Member
 +
*[mailto:dave.wettenstein@owasp.org Dave Wettenstein] -- Board Member 
  
 
Volunteers: Yev Avidon and Mikhael Felker  <br>
 
Volunteers: Yev Avidon and Mikhael Felker  <br>
Volunteer OWASP Wiki: Mike Francis <br>
+
OWASP Wiki: [mailto:mike.francis@owasp.org Mike Francis] <br>
 
The Los Angeles chapter was founded by Cassio Goldschmidt.  
 
The Los Angeles chapter was founded by Cassio Goldschmidt.  
  
 
<br>The AppSec USA 2010 conference received rave reviews. Thanks to all the volunteers and great speakers who helped make it a success!  
 
<br>The AppSec USA 2010 conference received rave reviews. Thanks to all the volunteers and great speakers who helped make it a success!  
 +
 +
<!-- === ''' [http://appseccali.org/ OWASP AppSec California Summit January 27-28, 2014-] ===
 +
-->
  
 
Web archive: http://2010.AppSecUSA.org  
 
Web archive: http://2010.AppSecUSA.org  

Latest revision as of 13:15, 27 July 2015

Welcome to the Los Angeles Chapter!

New_OWASP_LA_Logo-08-2014.jpg


Single Meeting Supporter: Organizations that wish to support the OWASP Los Angeles Chapter with a 100% tax deductible donation enable the OWASP Foundation to continue its mission

Button red sponsor.png


Get the following benefits:

- Meet upwards of 80-120 potential new clients
- Be recognized as a local supporter by posting your company logo on the local chapter page and on our Meetup site
- Have your marketing write-up included in e-mail blasts sent prior to a monthly meeting.
- Have a table at local chapter meeting with lots of time to meet and greet attendees
- Promote your products and services
- Bring a raffle prize to gather business cards and contact information

The cost is only $1,400

Contact us #Los Angeles Chapter for general questions relating to sponsorship and donations

Chapter Organizational Sponsors

Akana.jpeg

Akana’s comprehensive suite of API Management, API Security, SOA Governance, Cloud Integration, and Microservices solutions helps businesses accelerate digital transformation by securely extending their reach across multiple channels – mobile, cloud and Internet of Things. Akana enables enterprises to quickly deliver scalable applications, share data as APIs, connect and integrate applications, drive partner adoption, monetize their assets and provide intelligent insights into their business and operations. The world’s largest companies including Bank of America, Pfizer, and Verizon use Akana to harness the power of their technology and transform their businesses. Akana is also recognized as a “Leader” by Forrester in API Management Solution Wave, Q3 2014, by other analyst firms. For more information on Akana’s API Platform, see http://www.akana.com


Participation

OWASP Foundation is a professional association of global members and is open to anyone interested in learning more about software security. Local chapters are run independently and guided by the Chapter_Leader_Handbook. As a 501(c)(3) non-profit professional association your support and sponsorship of any meeting venue and/or refreshments is tax-deductible. Financial contributions should only be made online using the authorized online chapter donation button. To be a SPEAKER at ANY OWASP Chapter in the world simply review the speaker agreement and then contact the local chapter leader with details of what OWASP PROJECT, independent research or related security topic you would like to present on.

Announcements


OWASP Los Angeles received the BEST Chapter Leaders award at AppSec USA NY


Meetup_logo3.jpg [1] OWASP-Los-Angeles We are on Meetup. Please join our community here.

If you are unable to access Meetup from your work computer as a result of filtering of social sites, we recommend that you view it on your smart phone or via your personal computer.
http://www.meetup.com/OWASP-Los-Angeles/


Become an OWASP Member TODAY

Support your LA Chapter: only $50 for the entire year!
https://www.owasp.org/index.php/Individual_Member


Next OWASP Meeting

**NOTE: Please review NEW parking rules (@meetup.com) for our monthly meetings at Symantec as of 7/22/2014 **

July 29, 2015 7pm at Symantec - Culver City, Ca

  Speaker: Leif Dreizler
  Topic: Inherent differences between the hacker and developer mentality

Abstract: Leif Dreizler, BugCrowd, explores the inherent differences between the hacker and developer mentality. In this discussion, the audience will hear from a former breaker and fixer of security flaws on how developers who acknowledge the existence of ‘The Bogeyman’ come that much closer to being active participants in ensuring their company’s security, rather than passive victims. During his talk you'll learn... how to decrease friction between dev and security teams, how crowdsourced security testing merges into the SDLC, how organizations can increase ROI on security testing with a pay for performance model and more.

Speaker bio: Leif is a Senior Security Engineer at Bugcrowd, the innovator in crowdsourced security testing for the enterprise, where he works to customize and support security testing solutions for Bugcrowd clients. Prior to Bugcrowd, Leif worked as Senior Application Security Engineer at Redspin, performing application security assessments. During his time at Redspin he served as the Application Team Lead, working with clients large and small at the engineering and sales level. Leif is an OWASP speaker and member, and contributes to the Firebug project. Leif attended the University of California where he studied Computer Science. Most recently, Leif spoke at Bsides-SF and invited to be part of the department’s “Array of Talks” panel, a speaker series that he helped develop.

Thanks to our sponsor: Bugcrowd



Los Angeles Chapter

Volunteers: Yev Avidon and Mikhael Felker
OWASP Wiki: Mike Francis
The Los Angeles chapter was founded by Cassio Goldschmidt.


The AppSec USA 2010 conference received rave reviews. Thanks to all the volunteers and great speakers who helped make it a success!


Web archive: http://2010.AppSecUSA.org

Videos: http://vimeo.com/user4863863/videos

AppSec Logo.jpg