Difference between revisions of "Netherlands"

From OWASP
Jump to: navigation, search
(Mark your Calendar for our next Chapter Meeting!)
(47 intermediate revisions by 2 users not shown)
Line 1: Line 1:
 
{{Chapter Template|chaptername=Netherlands|extra=|mailinglistsite=http://lists.owasp.org/mailman/listinfo/owasp-netherlands|emailarchives=http://lists.owasp.org/pipermail/owasp-netherlands}}  
 
{{Chapter Template|chaptername=Netherlands|extra=|mailinglistsite=http://lists.owasp.org/mailman/listinfo/owasp-netherlands|emailarchives=http://lists.owasp.org/pipermail/owasp-netherlands}}  
  
<br>
 
  
==== Local News  ====
+
<paypal>Netherlands</paypal>
  
=== Registration for our next Chapter Meeting is open and it's Free! ===
+
<!-- First tab -->
  
'''Our next Chapter meeting is scheduled for November 14th  in Rotterdam!'''
+
= Local News  =
 +
;'''Provisional 2013 Chapter Event Calendar'''
 +
*January 31, 2013
 +
*March 7, 2013
 +
*May 9, 2013
 +
*June 27, 2013
 +
*September 12, 2013
 +
*November 7, 2012
  
We are glad to announce '''David Rook''', known on twitter as '''@securityninja''', as guest speaker from Ireland!<br>
+
'''November 28th and 29th 2013: OWASP Benelux meeting in the Netherlands!'''
David will present about his open source project, the code review tool [http://sourceforge.net/projects/agnitiotool/ '''Agnitio''']<br>
+
Alex Thissen, principal architect at Achmea, will present his experience and lessons learned implementing the Microsoft SDL at Achmea <br>
+
(to read the full abstract, see the tab [https://www.owasp.org/index.php/Netherlands#tab=Chapter_Meetings Chapter Meetings] )<br>
+
So mark your calendar at November 14th for our upcomming Chapter meeting!
+
  
[http://owaspnetherlandschapter2011.eventbrite.com/ http://www.owasp.org/images/7/77/Buttoncreate.png]
 
  
----
 
  
=== OWASP at the GovCert Symposium 2011  ===
+
[[File:Follow-us-on-twitter.png|frameless|100px|link=http://www.twitter.com/owasp_NL]]
  
The OWASP Netherlands Chapter will be present as guest organisation at the [http://www.govcert.nl/symposium GovCert Symposium 2011]
+
<!-- Second tab -->
  
----
+
= Calendar =
=== OWASP BeNeLux Day 2011 ===
+
Mark your calendar for the 2011 edition: 1st and 2nd of December 2011 in Luxemburg. <br>
+
[https://www.owasp.org/index.php/BeNeLux_OWASP_Day_2011 The OWASP BeNeLux Day 2011] is scheduled for December 1st and 2nd.
+
  
----
+
=== Provisional Chapter Event Calendar 2013 ===
=== OWASP College Chapters ===
+
Interested in starting you own college chapter?  <br>
+
Have a look at: http://www.owasp.org/index.php/OWASP_College_Chapters_Program
+
  
----
+
*January 31, 2013
<paypal>Netherlands</paypal>
+
*March 7, 2013
 +
*May 9, 2013
 +
*June 27, 2013
 +
*September 12, 2013
 +
*November 7, 2012
  
====  Chapter Meetings  ====
+
'''November 28th and 29th 2013: OWASP Benelux meeting in the Netherlands!'''
  
'''Date &amp; Time: November 14th, 2011 - 19:00 '''
+
<!-- Third tab -->
'''Location: Rotterdam'''<br>  
+
  
We are glad to announce David Rook twitter @securityninja as guest speaker from Ireland! More details to come!<br>
+
= Past Events  =
  
 +
*Events held in [[Netherlands Previous Events 2012|2012]]
 +
*Events held in [[Netherlands Previous Events 2011|2011]]
 +
*Events held in [[Netherlands Previous Events 2010|2010]]
 +
*Events held in [[Netherlands Previous Events 2009|2009]]
 +
*Events held in [[Netherlands Previous Events 2008|2008]]
 +
*Events held in [[Netherlands Previous Events 2007|2007]]
 +
*Events held in [[Netherlands Previous Events 2006|2006]]
 +
*Events held in [[Netherlands Previous Events 2005|2005]]
  
'''David Rook'''  is the Application Security Lead at Realex Payments in Dublin. He is a contributor to several OWASP projects including the code review guide and the Cryptographic Storage Cheat Sheet. He has presented at leading information security conferences including DEF CON, BlackHat USA and RSA Europe. In addition to his work with OWASP David created a security resource website and blog called Security Ninja (http://www.securityninja.co.uk).
+
<!-- Fourth tab -->
  
In 2010 the Security Ninja blog was nominated for five awards including the best technology blog at the Irish Blog Awards, the Computer Weekly IT Security blog award and was a finalist for the Irish Web Awards Best Technology Site. In 2011 David received a Developer Security MVP award from Microsoft. David has recently become one of the first mentors in the Information Security Mentors project helping young people progress their information security careers.
+
= Chapter Leaders  =
  
'''Abstract:'''  Agnitio: the security code review Swiss army knife
+
The Netherlands Chapter is supported by the following board:  
  
Teaching developers to write secure code, helping security professionals find security flaws in source code, producing application security metrics and reports with integrity checks and audit trails. If you want to implement an SDLC that produces secure software with the audit trails and reports frequently demanded by auditors and management you need to acknowledge that these are key constituents and implement them in a form that is both easy to understand and use.
+
*[https://www.owasp.org/index.php/User:Ferdinand_Vroom Ferdinand Vroom]
 +
*[https://www.owasp.org/index.php/User:Knoblochmartin Martin Knobloch], PervaSec
  
This is far easier to talk about than it is to implement in the real world where well structured SDLC’s are rare and application security programmes are usually under funded. Working with developers, security professionals and management to cultivate an environment where secure code is written and flaws found consistently requires both time and money. The same can be said for producing informative reports and metrics when all of your security code review data resides in notepad, Word and Excel files. With these problems in mind I developed Agnitio to be my security code review Swiss army knife and released it as a free tool in late 2010.
+
<br>
  
In this demonstration filled talk I will show how Agnitio can be used to addresses repeatability, integrity and audit trail concerns by requiring the creation of application profiles, the use of a security code review checklist consisting of over 80 application security questions and mandatory integrity checks for reviews and reports created using the tool. I will demonstrate how the inbuilt secure coding and security code review guidance modules allow developers and security professionals to access the information they need precisely when they need it. I will also show how Agnitio automatically creates metrics and reports bringing much needed visibility to the security code review process with no extra effort required from the reviewer, developers or management.
+
*[mailto:netherlands@owasp.org OWASP Netherlands], OWASP Netherlands board email adres
  
Agnitio v2.1 will be demonstrated during this talk which will show how Agnitio’s already powerful feature set has been expanded to guidance and questions linked to the OWASP top 10 mobile risks as well as the ability to decompile and analyse Android applications.
+
Our goal is to professionalize the local OWASP functioning, provide in a bigger footprint to detect OWASP opportunities such as speakers/topics/sponsors/… and set a 5 year target on: Target audiences, Different events and Interactions of OWASP global – local projects.  
  
 +
<!-- Fifth and last tab -->
  
'''Alex Thissen''' is a principal architect at Achmea and concentrates on integration-architecture and security. You can meet hem at various conferences and seminars where he will share his experiences from the field. He likes just about everything related to Microsoft products and technologies, but tries to focus on building secure web-applications in distributed enterprise environments.
+
= Chapter Support  =
  
'''Abstract:''' Implementing SDLC and lessons learned
+
=== Chapter Sponsoring  ===
Paying attention to security during application development is a must. Yet, often we find that security didn’t get the attention it should have had. One of the ways to force yourself to “think and act security” is to embed security in your development process. The Microsoft Security Development Lifecycle (SDL) is a platform-agnostic approach for applying security during the various stages of your development process. In this session you will get an overview of the Microsoft SDL and how it fits in “traditional” and agile projects.
+
But, with just an approach you are not done. This session will also show the hurdles that Achmea encountered during the implementation of an SDL, and what should be done to make an SDL successful. You will get to see the lesson learned from the Microsoft Competence Centre at Achmea IT.
+
----
+
  
&nbsp;
+
OWASP Netherlands is looking for organizations to sponsor our chapter.
 +
If you are interested in sponsoring the Netherlands chapter please contact us via email: [mailto:netherlands@owasp.org netherlands 'at' owasp.org].
  
== Past Events  ==
+
=== Donation ===
  
*Events held in [[Netherlands Previous Events 2011|2011]]
+
If you would like to donate to our chapter, please use the PayPal link at the top of this page.
*Events held in [[Netherlands Previous Events 2010|2010]]
+
Thank you!
*Events held in [[Netherlands Previous Events 2009|2009]]
+
*Events held in [[Netherlands Previous Events 2008|2008]]
+
*Events held in [[Netherlands Previous Events 2007|2007]]
+
*Events held in [[Netherlands Previous Events 2006|2006]]
+
*Events held in [[Netherlands Previous Events 2005|2005]]
+
  
==== Call for Speakers  ====
+
=== Call for Speakers  ===
  
 
We are continuously looking for speakers.<br>'''Presentations:''' Are you working on an interesting subject, would you like to share your experience with the OWASP community and do you have presentation skills. Please let us know! Any topic related to web application security will be appreciated!<br>'''VAC, Vulnerability, Attack, Countermeasure:''' The VAC is a re occuring part of the chapter meetings. The VAC is a half hour in-depth technical presentation about a vulnerability, how it can be exploited and how to prevent it!<br>  
 
We are continuously looking for speakers.<br>'''Presentations:''' Are you working on an interesting subject, would you like to share your experience with the OWASP community and do you have presentation skills. Please let us know! Any topic related to web application security will be appreciated!<br>'''VAC, Vulnerability, Attack, Countermeasure:''' The VAC is a re occuring part of the chapter meetings. The VAC is a half hour in-depth technical presentation about a vulnerability, how it can be exploited and how to prevent it!<br>  
Line 90: Line 90:
 
Interested in presenting at a local chapter meeting, please send an email to: netherlands 'at' owasp.org  
 
Interested in presenting at a local chapter meeting, please send an email to: netherlands 'at' owasp.org  
  
==== Call for Location  ====
+
=== Call for Location  ===
  
 
For the OWASP Netherlands chapter meetings to come, we are continuously looking for locations!  
 
For the OWASP Netherlands chapter meetings to come, we are continuously looking for locations!  
Line 105: Line 105:
  
 
Interested in sponsoring a local chapter meeting, please send an email to: netherlands 'at' owasp.org  
 
Interested in sponsoring a local chapter meeting, please send an email to: netherlands 'at' owasp.org  
 +
<!-- Don't remove this tag -->
 +
__NOTOC__
 +
<headertabs/>
  
==== Chapter Leaders  ====
 
  
The Netherlands Chapter is supported by the following board:
+
OWASP Netherlands thanks its structural chapter supporters for 2011 and the OWASP BeNeLux Day 2011:
 
+
*[mailto:ferdinand.vroom@owasp.org Ferdinand Vroom], Nationale Nederlanden
+
*[mailto:martin.knobloch@owasp.org Martin Knobloch], PervaSec
+
 
+
<br>
+
 
+
*[mailto:netherlands@owasp.org OWASP Netherlands], OWASP Netherlands board email adres
+
 
+
Our goal is to professionalize the local OWASP functioning, provide in a bigger footprint to detect OWASP opportunities such as speakers/topics/sponsors/… and set a 5 year target on: Target audiences, Different events and Interactions of OWASP global – local projects.
+
 
+
==== Chapter Sponsoring  ====
+
 
+
OWASP Netherlands is looking for organizations to sponsor our chapter. If you are interested in sponsoring the Netherlands chapter please contact via email: [mailto:netherlands@owasp.org netherlands 'at' owasp.org].
+
 
+
<br>If you would like to donate to our chapter, please use the PayPal link below. Thank you!
+
 
+
<br><paypal>Netherlands</paypal>
+
 
+
<br>
+
  
__NOTOC__ <headertabs />
+
[http://www8.hp.com/us/en/business-solutions/solution.html?compURI=1079733 https://www.owasp.org/images/b/b4/HP_Logo.jpg] [http://http://www.f5.com/ https://www.owasp.org/images/f/fd/AppSec_Research_2010_sponsor_F5_logo.jpg]
  
 
[[Category:Europe]]
 
[[Category:Europe]]

Revision as of 06:52, 6 December 2012

OWASP Netherlands

Welcome to the Netherlands chapter homepage.
Click here to join the local chapter mailing list.

Participation

OWASP Foundation (Overview Slides) is a professional association of global members and is and open to anyone interested in learning more about software security. Local chapters are run independently and guided by the Chapter_Leader_Handbook. As a 501(c)(3) non-profit professional association your support and sponsorship of any meeting venue and/or refreshments is tax-deductible. Financial contributions should only be made online using the authorized online chapter donation button. To be a SPEAKER at ANY OWASP Chapter in the world simply review the speaker agreement and then contact the local chapter leader with details of what OWASP PROJECT, independent research or related software security topic you would like to present on.

Sponsorship/Membership

Btn donate SM.gif to this chapter or become a local chapter supporter.

Or consider the value of Individual, Corporate, or Academic Supporter membership. Ready to become a member? Join Now BlueIcon.JPG


funds to OWASP earmarked for Netherlands.


[edit]

Provisional 2013 Chapter Event Calendar
  • January 31, 2013
  • March 7, 2013
  • May 9, 2013
  • June 27, 2013
  • September 12, 2013
  • November 7, 2012

November 28th and 29th 2013: OWASP Benelux meeting in the Netherlands!


Follow-us-on-twitter.png


Provisional Chapter Event Calendar 2013

  • January 31, 2013
  • March 7, 2013
  • May 9, 2013
  • June 27, 2013
  • September 12, 2013
  • November 7, 2012

November 28th and 29th 2013: OWASP Benelux meeting in the Netherlands!


  • Events held in 2012
  • Events held in 2011
  • Events held in 2010
  • Events held in 2009
  • Events held in 2008
  • Events held in 2007
  • Events held in 2006
  • Events held in 2005


The Netherlands Chapter is supported by the following board:


Our goal is to professionalize the local OWASP functioning, provide in a bigger footprint to detect OWASP opportunities such as speakers/topics/sponsors/… and set a 5 year target on: Target audiences, Different events and Interactions of OWASP global – local projects.


Chapter Sponsoring

OWASP Netherlands is looking for organizations to sponsor our chapter. If you are interested in sponsoring the Netherlands chapter please contact us via email: netherlands 'at' owasp.org.

Donation

If you would like to donate to our chapter, please use the PayPal link at the top of this page. Thank you!

Call for Speakers

We are continuously looking for speakers.
Presentations: Are you working on an interesting subject, would you like to share your experience with the OWASP community and do you have presentation skills. Please let us know! Any topic related to web application security will be appreciated!
VAC, Vulnerability, Attack, Countermeasure: The VAC is a re occuring part of the chapter meetings. The VAC is a half hour in-depth technical presentation about a vulnerability, how it can be exploited and how to prevent it!

Links:

Speaker Agreement

Template

Interested in presenting at a local chapter meeting, please send an email to: netherlands 'at' owasp.org

Call for Location

For the OWASP Netherlands chapter meetings to come, we are continuously looking for locations!

Most preferable, the location is good accessible with public transport and by car. Free parking should be provided.

What do we expect:

  • meeting room for at least 50 people
  • lunch for attendees
    • drinks, sandwiches...
  • a small present for the speakers
    • (e.g. bottle of wine, for speakers from aboard alcohol might be less practical if flying in only with hand luggage)

Interested in sponsoring a local chapter meeting, please send an email to: netherlands 'at' owasp.org


OWASP Netherlands thanks its structural chapter supporters for 2011 and the OWASP BeNeLux Day 2011:

HP_Logo.jpg AppSec_Research_2010_sponsor_F5_logo.jpg