Difference between revisions of "Pittsburgh"

From OWASP
Jump to: navigation, search
(20 intermediate revisions by 5 users not shown)
Line 1: Line 1:
{{Chapter Template|chaptername=Pittsburgh|extra=The chapter leader is [mailto:dd1133@yahoo.com Domenic DiTano]|mailinglistsite=http://lists.owasp.org/mailman/listinfo/owasp-pittsburgh|emailarchives=http://lists.owasp.org/pipermail/owasp-pittsburgh}}
+
 
 +
{{Chapter Template|chaptername=Pittsburgh|extra=The chapter leader is [mailto:lee.cambria@owasp.org Lee Cambria] |mailinglistsite=http://lists.owasp.org/mailman/listinfo/owasp-Pittsburgh|emailarchives=http://lists.owasp.org/pipermail/owasp-Pittsburgh
 +
|mailinglistsite=http://lists.owasp.org/mailman/listinfo/owasp-pittsburgh|emailarchives=http://lists.owasp.org/pipermail/owasp-pittsburgh}}
  
 
== Local News ==
 
== Local News ==
  
'''OWASP Moves to MediaWiki Portal - 16:06, 18 May 2006 (EDT)'''
+
==='''Spring Meeting & Membership Drive--Wednesday, May 15th, 2013 from 11 AM-2 PM (plus PIZZA!)'''===
 +
Spring has sprung! And so...
 +
 
 +
Hello Everyone! Here’s a quick update…
 +
 
 +
The topic for our next meeting will be: '''Threat Modeling - The First Step in Secure Application Development'''
 +
 
 +
Application security issues continue to be a growing concern for businesses large and small. In fact, many people would be surprised to find that some of the most popular mobile apps downloaded are vulnerable to issues found in the OWASP Mobile Top 10 list of common vulnerabilities. To address these issues security needs to be integrated into the software development lifecycle (SDLC) used by the developers.  When developing an application in a secure manner threat modeling is an important but often forgotten first step.
 +
 
 +
This 1-hour talk will start out as an overview of where to integrate security into the SDLC process.  The remainder of the talk will focus on the threat modeling portion of the SecSDLC.  During this stage the OWASP Mobile Threat Model will be introduced. To provide real world examples vulnerabilities found in many of the top 25 downloaded apps found in the Apple App Store and Google Play will be covered.
 +
 
 +
''About the Presenter:'' '''Matt Neely''' is the Director of Research, Innovation and Strategic Initiatives at SecureState, a security management consulting firm.  At SecureState Matt leads the Research and Innovation team which focuses on imagining, researching and developing methodologies and tools that will solve industry related issues. In addition to Matt’s technical background, his strong understanding of business processes and organizational structure allow him to meet the security needs of the business world.  Matt is a regular speaker at various business and security user groups and conferences including Black Hat, Defcon, THOTCON and ShmooCon. Matt recently published the book Radio Reconnaissance in Penetration Testing.
 +
 
 +
As a reminder, the meeting will be held '''Wednesday, May 15th from 11 AM to 2 PM''' courtesy of Summa at '''925 Liberty Avenue in Pittsburgh, PA 15222'''.  A Pizza lunch will be served, so please '''RSVP as soon as possible'''!
 +
 
 +
Thanks,
 +
 
 +
[mailto:richard.r.blake@bnymellon.com Richard R. Blake]
 +
 
 +
____________________________
 +
 
 +
The next OWASP chapter meeting will be held on '''Wednesday, May 15th from 11 AM to 2 PM''' courtesy of '''Summa at 925 Liberty Avenue in Pittsburgh, PA 15222.''' 
 +
 
 +
Pizza will be served – so '''please let us know if you’re attending''' in order to help us get an accurate count!
 +
 
 +
We are working on finalizing the details on a speaker for this session—and hope to have an update for you on that soon, as well… stay tuned for updates.  Again, please let us know if you plan to attend.
 +
 
 +
And as always, please consider supporting the local chapter by JOINING! Click the link above to lend your support.
 +
 
 +
Finally, don’t forget to attend the '''Pittsburgh Chapter of ISSA 2013 Information Security Forum''' on Friday, May 3, 2013 at the Doubletree Hotel at 101 Mall Blvd in Monroeville, Pennsylvania.  Registration fee for members of OWASP is $10 to attend the forum with advance registration. Advance Registration is required – Deadline for advance registration is April 26, 2013. After the deadline there will be a registration fee of $20.00 for Members OWASP and $30.00 for Non-Members.
 +
 
 +
See you there!
 +
 
 +
[mailto:richard.r.blake@bnymellon.com Richard R. Blake]
 +
 
 +
==='''Spring Meeting & Membership Drive'''===
 +
 
 +
Hope you’re all surviving winter!  We’re currently working toward scheduling our next meeting for the last week of March, to usher in Spring!  We’ll send out another email and update the website when we have a more solid date, time, and location lined up.
 +
 
 +
Also, we are keen to expand the Pittsburgh chapter’s membership.  If you’ve been attending the meetings and would like to see more meetings, more content (more food?), we’d urge you to consider joining at either the personal level or consider the value of having your business becoming a Corporate member.
 +
 
 +
A one year Individual Membership is just $50, and helps fund the chapter. 
 +
 
 +
A one year Corporate Supporter Membership is $5000.00, and organizations that wish to support OWASP can make a 100% tax deductible donation. These funds are used to enable the OWASP Foundation mission supporting Projects enabling & Grants and receiving discounts at OWASP Conferences for employees to attend and if exhibiting.
 +
 
 +
To join, please click the link above on this page!
 +
 
 +
We hope you’ll join us, and help keep the chapter growing so that we can provide content.  Also, if there are specific topics you’d like for March’s chapter meeting (or speakers, for that matter!) please let us know.
 +
 
 +
Best regards,
 +
 
 +
 
 +
[mailto:richard.r.blake@bnymellon.com Richard R. Blake]
 +
 
 +
 
 +
==='''December Chapter Meeting'''===
 +
 
 +
This December's Chapter Meeting will be a lunchtime roundtable scheduled for NOON-1:30 PM Thursday, December 13th, 2012.  After all, how can we not enjoy the awesomeness of a date following 12/12/12!? If we have enough advance interest and registration, we will have the session catered with a Taco Bar – (somewhat) in keeping with a Mayan Calendar theme. If we've survived the end of the world, we might as well have a good time while we discuss security…
 +
 
 +
 +
The subject of the roundtable will be a fairly general one: '''The Application Security Lifecycle- From Planning to Testing to Fixing, and Back Again'''.  We’d like to hear from a wide variety of viewpoints, including project managers, developers, ethical hackers/pen testers, network/infrastructure specialists and general security folks. 
 +
 +
 
 +
This will also provide us all a great opportunity to get to know other members of the community, and to get the Pittsburgh chapter rolling along into the New Year (presuming the Mayans were wrong!).
 +
 
 +
 
 +
If you are planning to join us please e-mail the Pittsburgh Chapter's mailing list to reserve your seat!
 +
 
 +
'''Location Info: 525 William Penn Place, downtown Pittsburgh. When entering the building please register with security and then make your way to the 11th floor we will be in room 1120.'''
 +
 
 +
 
 +
[mailto:owasp-pittsburgh@lists.owasp.org Owasp Pittsburgh Chapter]
 +
 
 +
 
 +
 
 +
==='''October Chapter Meeting'''===
 +
 
 +
The October meeting of the Pittsburgh chapter of OWASP will be held on the 22nd at 525 William Penn Place.  Beginning at 11:00a.m. Richard Blake will discuss the goals and purpose of OWASP and introduce the group to possible outreach programs available for our members.  Please plan to attend to share your experience and knowledge with the group.
 +
 
 +
When entering the building please register with security and then make your way to the 11th floor we will be in room 1120.
 +
 
 +
 
 +
If you are planning to join us please e-mail Lee Cambria to reserve your seat.
 +
 
 +
[mailto:lee.cambria@owasp.org Lee Cambria]
 +
 
  
OWASP is pleased to announce the arrival of OWASP 2.0!
 
  
OWASP 2.0 utilizes the MediaWiki portal to manage and provide
+
[[Category:OWASP Chapter]]
the latest OWASP related information. Enjoy!
+
[[Category:Pennsylvania]]

Revision as of 12:23, 6 May 2013


Contents

OWASP Pittsburgh

Welcome to the Pittsburgh chapter homepage. The chapter leader is Lee Cambria
Click here to join the local chapter mailing list.

Participation

OWASP Foundation (Overview Slides) is a professional association of global members and is and open to anyone interested in learning more about software security. Local chapters are run independently and guided by the Chapter_Leader_Handbook. As a 501(c)(3) non-profit professional association your support and sponsorship of any meeting venue and/or refreshments is tax-deductible. Financial contributions should only be made online using the authorized online chapter donation button. To be a SPEAKER at ANY OWASP Chapter in the world simply review the speaker agreement and then contact the local chapter leader with details of what OWASP PROJECT, independent research or related software security topic you would like to present on.

Sponsorship/Membership

Btn donate SM.gif to this chapter or become a local chapter supporter.

Or consider the value of Individual, Corporate, or Academic Supporter membership. Ready to become a member? Join Now BlueIcon.JPG

Local News

Spring Meeting & Membership Drive--Wednesday, May 15th, 2013 from 11 AM-2 PM (plus PIZZA!)

Spring has sprung! And so...

Hello Everyone! Here’s a quick update…

The topic for our next meeting will be: Threat Modeling - The First Step in Secure Application Development

Application security issues continue to be a growing concern for businesses large and small. In fact, many people would be surprised to find that some of the most popular mobile apps downloaded are vulnerable to issues found in the OWASP Mobile Top 10 list of common vulnerabilities. To address these issues security needs to be integrated into the software development lifecycle (SDLC) used by the developers. When developing an application in a secure manner threat modeling is an important but often forgotten first step.

This 1-hour talk will start out as an overview of where to integrate security into the SDLC process. The remainder of the talk will focus on the threat modeling portion of the SecSDLC. During this stage the OWASP Mobile Threat Model will be introduced. To provide real world examples vulnerabilities found in many of the top 25 downloaded apps found in the Apple App Store and Google Play will be covered.

About the Presenter: Matt Neely is the Director of Research, Innovation and Strategic Initiatives at SecureState, a security management consulting firm. At SecureState Matt leads the Research and Innovation team which focuses on imagining, researching and developing methodologies and tools that will solve industry related issues. In addition to Matt’s technical background, his strong understanding of business processes and organizational structure allow him to meet the security needs of the business world. Matt is a regular speaker at various business and security user groups and conferences including Black Hat, Defcon, THOTCON and ShmooCon. Matt recently published the book Radio Reconnaissance in Penetration Testing.

As a reminder, the meeting will be held Wednesday, May 15th from 11 AM to 2 PM courtesy of Summa at 925 Liberty Avenue in Pittsburgh, PA 15222. A Pizza lunch will be served, so please RSVP as soon as possible!

Thanks,

Richard R. Blake

____________________________

The next OWASP chapter meeting will be held on Wednesday, May 15th from 11 AM to 2 PM courtesy of Summa at 925 Liberty Avenue in Pittsburgh, PA 15222.

Pizza will be served – so please let us know if you’re attending in order to help us get an accurate count!

We are working on finalizing the details on a speaker for this session—and hope to have an update for you on that soon, as well… stay tuned for updates. Again, please let us know if you plan to attend.

And as always, please consider supporting the local chapter by JOINING! Click the link above to lend your support.

Finally, don’t forget to attend the Pittsburgh Chapter of ISSA 2013 Information Security Forum on Friday, May 3, 2013 at the Doubletree Hotel at 101 Mall Blvd in Monroeville, Pennsylvania. Registration fee for members of OWASP is $10 to attend the forum with advance registration. Advance Registration is required – Deadline for advance registration is April 26, 2013. After the deadline there will be a registration fee of $20.00 for Members OWASP and $30.00 for Non-Members.

See you there!

Richard R. Blake

Spring Meeting & Membership Drive

Hope you’re all surviving winter! We’re currently working toward scheduling our next meeting for the last week of March, to usher in Spring! We’ll send out another email and update the website when we have a more solid date, time, and location lined up.

Also, we are keen to expand the Pittsburgh chapter’s membership. If you’ve been attending the meetings and would like to see more meetings, more content (more food?), we’d urge you to consider joining at either the personal level or consider the value of having your business becoming a Corporate member.

A one year Individual Membership is just $50, and helps fund the chapter.

A one year Corporate Supporter Membership is $5000.00, and organizations that wish to support OWASP can make a 100% tax deductible donation. These funds are used to enable the OWASP Foundation mission supporting Projects enabling & Grants and receiving discounts at OWASP Conferences for employees to attend and if exhibiting.

To join, please click the link above on this page!

We hope you’ll join us, and help keep the chapter growing so that we can provide content. Also, if there are specific topics you’d like for March’s chapter meeting (or speakers, for that matter!) please let us know.

Best regards,


Richard R. Blake


December Chapter Meeting

This December's Chapter Meeting will be a lunchtime roundtable scheduled for NOON-1:30 PM Thursday, December 13th, 2012. After all, how can we not enjoy the awesomeness of a date following 12/12/12!? If we have enough advance interest and registration, we will have the session catered with a Taco Bar – (somewhat) in keeping with a Mayan Calendar theme. If we've survived the end of the world, we might as well have a good time while we discuss security…


The subject of the roundtable will be a fairly general one: The Application Security Lifecycle- From Planning to Testing to Fixing, and Back Again. We’d like to hear from a wide variety of viewpoints, including project managers, developers, ethical hackers/pen testers, network/infrastructure specialists and general security folks.


This will also provide us all a great opportunity to get to know other members of the community, and to get the Pittsburgh chapter rolling along into the New Year (presuming the Mayans were wrong!).


If you are planning to join us please e-mail the Pittsburgh Chapter's mailing list to reserve your seat!

Location Info: 525 William Penn Place, downtown Pittsburgh. When entering the building please register with security and then make your way to the 11th floor we will be in room 1120.


Owasp Pittsburgh Chapter


October Chapter Meeting

The October meeting of the Pittsburgh chapter of OWASP will be held on the 22nd at 525 William Penn Place. Beginning at 11:00a.m. Richard Blake will discuss the goals and purpose of OWASP and introduce the group to possible outreach programs available for our members. Please plan to attend to share your experience and knowledge with the group.

When entering the building please register with security and then make your way to the 11th floor we will be in room 1120.


If you are planning to join us please e-mail Lee Cambria to reserve your seat.

Lee Cambria