Monday, September 29, 2014
Friday, September 26, 2014
Thursday, September 4, 2014
Tuesday, September 2, 2014
5 Reasons to Attend AppSec USA 2014
You heard about the massive cyber attacks on JPMorgan and Dairy Queen that happened recently. Financial giant JPMorgan is now working with the Federal Bureau of Investigation to mitigate the hacking of their data, and ice cream maven Dairy Queen is under investigation for suspicious credit card activities. These attacks demonstrate the glaring truth that even the most secure organizations are at risk of experiencing undiscriminating data breaches. Hackers are taking advantage of any flaw in an organization’s security and compromising the integrity of businesses’ internal systems. If you think your organization is completely protected from cyber security threats, think again.
It’s imperative that your organization understands how to protect critical infrastructure and best guard against security breaches. Colorado Representative Jared Polis states that attending , a world-class software security conference for developers, auditors, risk managers, technologists and entrepreneurs, will allow you to take away new tools to enhance software security, which will improve operations of businesses and organizations nationwide. Below are 5 more reasons why should you attend:
1. As an AppSec USA attendee, you’ll learn more about software security in sessions led by top industry leaders, including Bruce Schneier of Co3 Systems, Inc. and Gary McGraw of Cigital. AppSec’s speakers are international visionaries who will be at the conference to offer their expertise on security topics you need to know.
2. Along with attending keynote sessions, you can participate in fun interactive events, like AppSec’s extensive Capture the Flag coding and security competition.
3. You’ll get to engage in an all-new, workshop-style Skills Lab track providing instruction and hands-on experience with essential security tools and skills.
4. OWASP hosts a career fair and sponsor expo at AppSec featuring top companies in the industry. You’ll have unique opportunities to network and get hired by the best of the best.
5. You’ll get to experience “Code Brew,” a home-brewing contest judged by brewers from some of Colorado’s top craft breweries. Does any other software security conference offer that? Didn’t think so.
Colorado Governor John Hickenlooper states that Colorado is growing in technology leadership and therefor makes for a great place to hold this year’s AppSec USA conference [John Hickenlooper letter]. Make sure you do not miss out on this informative and influential event.
Tuesday, August 19, 2014
Monday, August 18, 2014
(From Daniel Cuthbert)
It gives me immense pleasure to finally release version 2 of the OWASP Application Security Verification Standard for all to enjoy. The community feedback on this has been overwhelming and it's great to see so many of you investing time and effort into what Sahba and I feel is an incredibly important OWASP project.
As with all standards, I'm sure this will be made better as people use it and we welcome the additions and feedback.
It can be downloaded from the OWASP ASVS page at https://www.owasp.org/index.php/Category:OWASP_Application_Security_Verification_Standard_Project
Again, a huge thanks to all the contributors who helped shape version 2 and I cannot wait to hear how this is being used.
Friday, August 15, 2014
OWASP AppSec USA 2014 Adds Leading Global Experts to List of Speakers
Are you registered for the upcoming OWASP conference? We are excited to be getting closer to the OWASP AppSec USA event and we have now announced our roster of keynote speakers.
The premier software security conference for developers, auditors, risk managers, technologists and entrepreneurs will take place at the Denver Marriott City Center, Sept. 16-19. Below are the keynotes:
• Bruce Schneier, CIO, Co3 Systems, Inc. is an American cryptographer, computer security and privacy specialist, and writer. He is the author of several books on general security topics, computer security and cryptography. (Sept. 18, 8:00 a.m.)
• Renee Guttmann, vice president, Accuvant Office of the CISO is an accomplished global information security and privacy executive with a proven track record of establishing internationally recognized information security programs for Fortune 500 companies. She is the former CISO of Coca-Cola. (Sept. 18, 4:30 p.m.)
• Gary McGraw, CTO, Cigital is a recognized authority on software security, an author of eight books on software security topics and is an editor of a software security series as well as several peer-reviewed papers. (Sept. 19, 8:00 a.m.)
• In addition to keynote sessions, AppSec USA will offer several interactive events. For the first time ever, the conference will feature “Code Brew,” a home-brewing contest judged by brewers from some of Colorado’s top craft breweries, and two full days of training featuring five tracks including developers, builders, breakers, defenders, and a hands on skills lab.
To find out more about OWASP AppSec USA 2014, participate in “Code Brew”, or REGISTER for the conference, please visit www.2014.appsecusa.org/2014/