Pittsburgh

From OWASP
Revision as of 22:22, 17 August 2013 by Lee Cambria (Talk | contribs)

Jump to: navigation, search


Contents

OWASP Pittsburgh

Welcome to the Pittsburgh chapter homepage. The chapter leaders are Lee Cambria Barb Mahoney and Steve Lis
Click here to join the local chapter mailing list.

Participation

OWASP Foundation (Overview Slides) is a professional association of global members and is and open to anyone interested in learning more about software security. Local chapters are run independently and guided by the Chapter_Leader_Handbook. As a 501(c)(3) non-profit professional association your support and sponsorship of any meeting venue and/or refreshments is tax-deductible. Financial contributions should only be made online using the authorized online chapter donation button. To be a SPEAKER at ANY OWASP Chapter in the world simply review the speaker agreement and then contact the local chapter leader with details of what OWASP PROJECT, independent research or related software security topic you would like to present on.

Sponsorship/Membership

Btn donate SM.gif to this chapter or become a local chapter supporter.

Or consider the value of Individual, Corporate, or Academic Supporter membership. Ready to become a member? Join Now BlueIcon.JPG

NEXT MEETING

Fall Meeting & Membership Drive--Wednesday, October 2, 2013 from 1 PM-2 PM (plus OWASP swag!)

Fall is approaching! And so...

The topic for our next meeting will be: Cybersecurity – "Current Trends and Threats

Please join us for our October meeting of the Pittsburgh OWASP chapter. Reserve your seat today for October 2nd from 1:00 to 2:00.

WE HAVE 5 MORE SEATS LEFT AS OF AUGUST 17,2013!!!!!!

We are excited to announce Bobby Dominguez as our guest speaker for our October meeting. Bobby is an accomplished pioneer in e-commerce and a security expert. In 1989, Dominguez was a founder and designer of the Internet’s first online social network, Matchmaker.com. Lycos acquired Matchmaker.com in 2000, where he created and led the security department. He repeated his success at integrating security & risk management into top-level business initiatives at Home Shopping Network and PSCU Financial Services. Under his leadership, the Sykes Enterprises' security team was selected as one of the 5 “Best Security Teams in the US” by SC Magazine in 2008. Bobby was also selected as one of the top 5 “CSOs of Year” in both 2009 & 2010 by SC Magazine. And in 2012 he was a finalist for (ISC)² Americas Information Security Leadership Awards.

Location: 525 William Penn Place, Pittsburgh, Pa

Note: When entering the building please register with security and then make your way to the 11th floor we will be in room 1120 and 1122. Time 1:00PM to 2:00PM.

Register Now: We have limited seating of 50 people. Please reserve your seat early by e-mail to Lee Cambria at lee.cambria@gmail.com or lee.cambria@owasp.org This is going to be a fun filled networking and learning experience with giveaways of OWASP pens, stickers and bags

We hope to see you there!

Thank you,

Lee Cambria, Barb Mahoney, and Steve Lis

Pittsburgh OWASP Chapter Leaders



Spring Meeting & Membership Drive--Wednesday, May 15th, 2013 from 11 AM-2 PM (plus PIZZA!)

Spring has sprung! And so...

Hello Everyone! Here’s a quick update…

The topic for our next meeting will be: Threat Modeling - The First Step in Secure Application Development

Application security issues continue to be a growing concern for businesses large and small. In fact, many people would be surprised to find that some of the most popular mobile apps downloaded are vulnerable to issues found in the OWASP Mobile Top 10 list of common vulnerabilities. To address these issues security needs to be integrated into the software development lifecycle (SDLC) used by the developers. When developing an application in a secure manner threat modeling is an important but often forgotten first step.

This 1-hour talk will start out as an overview of where to integrate security into the SDLC process. The remainder of the talk will focus on the threat modeling portion of the SecSDLC. During this stage the OWASP Mobile Threat Model will be introduced. To provide real world examples vulnerabilities found in many of the top 25 downloaded apps found in the Apple App Store and Google Play will be covered.

About the Presenter: Matt Neely is the Director of Research, Innovation and Strategic Initiatives at SecureState, a security management consulting firm. At SecureState Matt leads the Research and Innovation team which focuses on imagining, researching and developing methodologies and tools that will solve industry related issues. In addition to Matt’s technical background, his strong understanding of business processes and organizational structure allow him to meet the security needs of the business world. Matt is a regular speaker at various business and security user groups and conferences including Black Hat, Defcon, THOTCON and ShmooCon. Matt recently published the book Radio Reconnaissance in Penetration Testing.

As a reminder, the meeting will be held Wednesday, May 15th from 11 AM to 2 PM courtesy of Summa at 925 Liberty Avenue in Pittsburgh, PA 15222. A Pizza lunch will be served, so please RSVP as soon as possible!

Thanks, ____________________________

The next OWASP chapter meeting will be held on Wednesday, May 15th from 11 AM to 2 PM courtesy of Summa at 925 Liberty Avenue in Pittsburgh, PA 15222.

Pizza will be served – so please let us know if you’re attending in order to help us get an accurate count!

We are working on finalizing the details on a speaker for this session—and hope to have an update for you on that soon, as well… stay tuned for updates. Again, please let us know if you plan to attend.

And as always, please consider supporting the local chapter by JOINING! Click the link above to lend your support.

Finally, don’t forget to attend the Pittsburgh Chapter of ISSA 2013 Information Security Forum on Friday, May 3, 2013 at the Doubletree Hotel at 101 Mall Blvd in Monroeville, Pennsylvania. Registration fee for members of OWASP is $10 to attend the forum with advance registration. Advance Registration is required – Deadline for advance registration is April 26, 2013. After the deadline there will be a registration fee of $20.00 for Members OWASP and $30.00 for Non-Members.

See you there!

Spring Meeting & Membership Drive

Hope you’re all surviving winter! We’re currently working toward scheduling our next meeting for the last week of March, to usher in Spring! We’ll send out another email and update the website when we have a more solid date, time, and location lined up.

Also, we are keen to expand the Pittsburgh chapter’s membership. If you’ve been attending the meetings and would like to see more meetings, more content (more food?), we’d urge you to consider joining at either the personal level or consider the value of having your business becoming a Corporate member.

A one year Individual Membership is just $50, and helps fund the chapter.

A one year Corporate Supporter Membership is $5000.00, and organizations that wish to support OWASP can make a 100% tax deductible donation. These funds are used to enable the OWASP Foundation mission supporting Projects enabling & Grants and receiving discounts at OWASP Conferences for employees to attend and if exhibiting.

To join, please click the link above on this page!

We hope you’ll join us, and help keep the chapter growing so that we can provide content. Also, if there are specific topics you’d like for March’s chapter meeting (or speakers, for that matter!) please let us know.

Best regards,


December Chapter Meeting

This December's Chapter Meeting will be a lunchtime roundtable scheduled for NOON-1:30 PM Thursday, December 13th, 2012. After all, how can we not enjoy the awesomeness of a date following 12/12/12!? If we have enough advance interest and registration, we will have the session catered with a Taco Bar – (somewhat) in keeping with a Mayan Calendar theme. If we've survived the end of the world, we might as well have a good time while we discuss security…


The subject of the roundtable will be a fairly general one: The Application Security Lifecycle- From Planning to Testing to Fixing, and Back Again. We’d like to hear from a wide variety of viewpoints, including project managers, developers, ethical hackers/pen testers, network/infrastructure specialists and general security folks.


This will also provide us all a great opportunity to get to know other members of the community, and to get the Pittsburgh chapter rolling along into the New Year (presuming the Mayans were wrong!).


If you are planning to join us please e-mail the Pittsburgh Chapter's mailing list to reserve your seat!

Location Info: 525 William Penn Place, downtown Pittsburgh. When entering the building please register with security and then make your way to the 11th floor we will be in room 1120.


Owasp Pittsburgh Chapter


October Chapter Meeting

The October meeting of the Pittsburgh chapter of OWASP will be held on the 22nd at 525 William Penn Place. Beginning at 11:00a.m. Richard Blake will discuss the goals and purpose of OWASP and introduce the group to possible outreach programs available for our members. Please plan to attend to share your experience and knowledge with the group.

When entering the building please register with security and then make your way to the 11th floor we will be in room 1120.


If you are planning to join us please e-mail Lee Cambria to reserve your seat.

Lee Cambria