OWASP Foundation OWASP does not endorse or recommend commercial products or services , allowing our community to remain vendor neutral with the collective wisdom of the best minds in software security worldwide.
OWASP Foundation, NYC Chapter Exploits & Innovation OWASP was established in 2001. In 2004 it 12/7 AGENDA became a 501(c)(3) not-for-profit charitable 6:00pm Welcome Networking / Social organization focused on improving the security 6:15pm Royal Hansen, Goldman Sachs of software. 6:30pm iOS Spelunking, Mikhail Sosonkin The mission is to make software security visible 7:30pm “Goldfish Pond” w/ Joe Bernik so that individuals and organizations worldwide can make informed decisions about true ● SimpleRISK, Josh Sokol ● OpCode41, Ken Belva software security risks. 8:30pm State of Bug Bounties, Leif Dreizler Everyone is free to participate in OWASP and all of our materials are available under a free 9:30pm After Party and open software license.
THANK YOU! OWASP Leaders, Members Meet-Up Attendees Venue Host - Goldman Sachs Tonight’s Meeting Sponsors Hewlett Packard, ProactiveRISK, Synack, Lifars, Illumio, LogRhythm NYCSeed, ff Venture Capital Thank you to our our corporate supporters that enable us to make software security visible, so that individuals and organizations worldwide can make informed decisions about true software security risks
LOCAL SUPPORT PROVIDED BYers
Corporate Membership
2015 Chapter Summary Wrap Up Active events - Project Sprints - Virtual Village 125 - Cheat Sheets - Top 10 IR - ++Other projects Active people
2016 Chapter Goals Quarterly Chapter Meetings Career Development / Training Project Sprints Highlight & Promote Innovation Membership Growth <insert your area of focus>
Got Idea, Training, Talk, Project? “01100011 01101111 01100100 01100101” Open-Source Tactical and Practical SUBMIT ONLINE Speaker Committee Selection
How Can You Help? Local / Global Technical Committee - Improve X - Projects - Speakers Local / Global Business Committee - Improve Y - Events - Logistics
2016 Leadership ● Determine mission and purpose. It is the board's ● Ensure adequate financial resources. One of the board's responsibility to create and review a statement of mission foremost responsibilities is to secure adequate resources and purpose that articulates the organization's goals, for the organization to fulfill its mission. means, and primary constituents served. ● Protect assets and provide proper financial oversight. ● Select the chief executive. Boards must reach consensus The board must assist in developing the annual budget and on the chief executive's responsibilities and undertake a ensuring that proper financial controls are in place. careful search to find the most qualified individual for the ● Build a competent board. All boards have a responsibility position. to articulate prerequisites for candidates, orient new ● Support and evaluate the chief executive. The board members, and periodically and comprehensively evaluate should ensure that the chief executive has the moral and their own performance. professional support he or she needs to further the goals of ● Ensure legal and ethical integrity. The board is ultimately the organization. responsible for adherence to legal standards and ethical ● Ensure effective planning. Boards must actively norms. participate in an overall planning process and assist in ● Enhance the organization's public standing . The board implementing and monitoring the plan's goals. should clearly articulate the organization's mission, ● Monitor and strengthen programs and services. The accomplishments, and goals to the public and garner board's responsibility is to determine which programs are support from the community. consistent with the organization's mission and monitor their effectiveness.
Active Chapters Globally
OWASP AppSecEMEA 2016 June 27 - 1 July Rome Italy
HACKNYC 2016 July 18th - 21st ● Call for Trainers! ● Hackathon ● Bug Bounty
OWASP AppSecUSA 2016 October 11-14, Washington, DC
New York Metro Joint Cyber Security Conference October 2016 InfraGard - New York Metro ISACA - New York Metro ISACA - New Jersey ISACA - Greater Hartford CT (ISC)2 - New Jersey ISSA - New York HELP WANTED OWASP - NYC, LI, BKLN HTCIA - Northeast Region ACFE - New Jersey
FREE TRAINING The Software Assurance Forum for Excellence in Code (SAFECode) is a Welcome to the OWASP Video Collection ONLINE: www.owasp.org non-profit organization exclusively dedicated to increasing trust in 1.1 OWASP AppSecUSA 2015 Conference information and communications technology products and services 1.2 OWASP NYC Cyber Security Channel through the advancement of effective software assurance methods. 1.3 OWASP AppSecEU 2015 Conference SAFECode is a global, industry-led effort to identify and promote best 1.4 OWASP Global Webinars practices for developing and delivering more secure and reliable software, 1.5 OWASP AppSecUSA 2014 Conference hardware and services. 1.6 OWASP AppSec Europe 2014 Conference 1.7 OWASP AppSec California 2014 Conference Courses include: 1.8 OWASP AppSecUSA 2013 Conference 1.9 OWASP AppSec EU Research 2013 Conference ● Introduction to Cryptography Secure 1.10 OWASP AppSec Video Tutorial Series w/ Jerry Hoff ● Memory Handling in C 1.11 OWASP AppSecUSA 2012 Conference ● Threat Modeling 1.12 OWASP AppSecUSA 2011 Conference ● Secure Java Programming ● Cross Site Scripting (XSS) 1.13 OWASP Summit 2011 ● Product Penetration Testing 1.14 OWASP Appsec DC 2010 Conference ● Auth 101: A Passwords Backgrounder for Everyone 1.15 OWASP USA 2010 Conference ● DOH: Default, Obscure and Hidden Content for Everyone 1.16 OWASP EU 2010 Conference ● An Introduction to Windows Access Controls 1.17 OWASP FROC 2010 Conference ● File Permissions Linux and OS X Injections 1.18 OWASP USA 2009 Conference ● SQL and Beyond CSRF 1.19 OWASP AppSecEMEA 2009 Conference ● Cross Site Request Forgery for Everyone 1.20 OWASP Israel 2008 Details: https://training.safecode.org/courses 1.21 OWASP AppSecUSA 2008 Conference 1.22 OWASP SnowFROC 1.23 OWASP Minneapolis/St. Paul (OWASP MSP)
Community
Questions
Recommend
More recommend