Dallas

2019-08-27T20:18:48Z

Jeromme Lawler:

{{Chapter Template|chaptername=Dallas|extra=The chapter leaders are

Chapter Lead- [mailto:dsheridan@cigital.com Denis Sheridan]

Board Member- [mailto:jeromme.lawler@guggenheimpartners.com Jeromme Lawler]
 
|mailinglistsite=http://lists.owasp.org/mailman/listinfo/owasp-dallas|emailarchives=http://lists.owasp.org/pipermail/owasp-dallas}}

== Get Connected and Stay Connected ==

In addition to our [http://bit.ly/fWT3pN Mailing List] we also have a [http://bit.ly/eHEW6O Dallas OWASP Twitter Feed] a [http://on.fb.me/fHr5XY Dallas OWASP Facebook Page] and a [http://linkd.in/g3WxGG Dallas OWASP Linkedin Group]. We invite you to join or follow whichever groups suit you, get involved with your fellow Dallas OWASP Chapter members, and we'll keep them all up to date with the latest official news and announcements from the chapter leadership.

'''Click any of the links below to visit the corresponding Dallas OWASP social networking groups:'''

{| cellspacing="15"
|-
| [[Image:Join the list.png|150px|link=http://bit.ly/fWT3pN]]
| [[Image:Follow-us-on-twitter.png|175px|link=http://bit.ly/eHEW6O]]
| [[Image:Join-us-on-Facebook.jpg|175px|link=http://on.fb.me/fHr5XY]]
| [[Image:Linkedin-button.gif|135px|link=http://linkd.in/g3WxGG]]
| [[Image:meetup-button.png|108px|link=https://www.meetup.com/Dallas-The-Open-Web-Application-Security-Project-Meetup/]]
|}

=== Announcements ===

== September Meeting ==

'''When:''' Tuesday, September 17, 2019 - 6:00 PM

'''Topic: ''' Bug Hunting - An adventure in free time

Bug bounty programs are the new industry buzz in offensive security. Some even market it as the next generation of penetration testing. While I won’t attempt to prove or disprove that theory, I will share my experiences while hunting for vulnerabilities and working with vendors in open and closed source software. Over the last two years I have found and responsibly disclosed many vulnerabilities. The most important component is working with the vendor or project which can be challenging because there is no uniform way to report a vulnerability. Several public vulnerabilities that I discovered will be discussed along with the tools I use. This includes a vulnerability that has been confirmed to impact over a dozen Windows applications. Recommendations and tips will also be shared.

'''Who:'''

Rich Mirch has been in IT for over 21 years; Rich is currently a member of the Red Team at State Farm where he mimics tools, tactics and procedures of skilled adversaries to help uncover potential vulnerabilities within State Farm’s information networks. Rich’s strong background as a UNIX/database administrator coupled with his knowledge of offensive security position him uniquely to identify vulnerabilities in software and applications.

'''Where:''' State Farm Insurance - 3661 N. Plano Rd. Suite 1000 - Richardson, TX

Park in the CITYLINE garage. Please bring a photo ID as part of the check-in process.

IMPORTANT Meeting Notes:

This office is a gun-free zone. Please do not attempt to bring in any guns, holsters, ammo, etc. into their office space.

The meeting food & drinks will be sponsored by State Farm.

=== Previous Meetings ===

== July Meeting ==

'''When:''' Tuesday, July 23, 2019 - 6:00 PM

'''Topic: ''' Cloud, the Hard Way

'''Who:''' Will Bengtson is the Director of Cloud Security, Distinguished Engineer at Capital One.

'''Where:''' Toyota Motor North America, Inc. - 6565 Headquarters Drive, Plano, TX

[[Media:Cloud_-_The_Hard_Way.pdf]]

== June Meeting ==

'''When:''' Tuesday, June 25, 2019 - 6:00 PM

'''Topic: ''' Anti-Phish Codes -- Addressing credential compromise that lead to Data breaches and Fraud

'''Who:''' Dr. Chiruvolu brings in more than two decades of expertise, insights on technology and cyber security in several market verticals such as Finance, Healthcare, Enterprise and Govt./Education.

'''Where:''' Capital Factory + The DEC - 3102 Oak Lawn Ave - Dallas, TX

[[Media:UberPasscodes-AntiPhishing2FA-PresArchive.pdf]]

== May Meeting ==

'''When:''' Thursday, May 23, 2019 - 6:00 PM

'''Topic: ''' Microservices: What Am I Securing Again?

'''Who:'''
Travis Biehn is a Principal Consultant at Synopsys and consulting research lead for the Synopsys Cybersecurity Research Center.
David Bohannon is a Senior Security Consultant at Synopsys.

'''Where:''' The Garage at Capital One - 8000 Dominion Pkwy - Plano, TX - Building with TC out front
[[Media:Microservices_OWASP_Preso_Sanitized.pptx]]

== March Meeting ==

'''When:''' Thursday, May 23, 2019 - 6:00 PM

'''Topic: ''' Tineola: Taking a Bite Out of Enterprise Blockchain

'''Who:''' Stark Riedesel is a senior consultant at Synopsys with six years of security industry experience.

== February Meeting ==

'''When:''' Tuesday, February 19, 2019 - 6:00 PM

'''Topic: ''' Threat-modeling legacy Cloud Applications

'''Who:''' Kevin Nassery is a Senior Principal Consultant at Synopsys where he leads the Software Security Initiatives (SSI) practice

'''Where:''' Epsilon - 6021 Connection Drive - Irving, TX

[[Media:Owasp-dallas.pptx]]

== January Meeting ==

'''When:''' Tuesday, January 15, 2019 - 6:00 PM

'''Topic: ''' Container and Container-Aware Security

'''Who:'''

Travis Stanfield, Senior Director of Software Engineering at Capital One

Liam Randall, President and Co-Founder of Critical Stack

'''Where:''' Capital One - 8000 Dominion Pkwy - Plano, TX

[[Media:OWASP_dallas_Jan_2019.zip]]

== November Meeting ==

'''When:''' Tuesday, November 13, 2018 - 6:00 PM

'''Topic: ''' Securing Containers on the High Seas

'''Who:''' Jack Mannino is the CEO of nVisium.

'''Where:''' Capital One - 8000 Dominion Pkwy - Plano, TX

== September Meeting ==

'''When:''' Tuesday, September 18, 2018 - 6:00 PM

'''Topic: ''' Security Shift Left! Enable, Protect, and Execute.

'''Who:''' Teddi Poehls, currently working as a Senior Sales Engineer for Signal Sciences

'''Where:''' Epsilon - 6021 Connection Drive, Irving, TX

== August Meeting ==

'''When:''' Tuesday, August 21, 2018 - 6:00 PM

'''Topic: ''' Tangled Web

'''Who:''' Herb has worked for State Farm for over 26 years. He is currently a member of the Security Analytics/Threat hunting team.

'''Where:''' State Farm Insurance - 3661 N. Plano Rd. Suite 1000, Richardson, TX

== July Meeting ==

'''When:''' Tuesday, July 17, 2018 - 6:00 PM

'''Topic: ''' Interactive Capture the Flag (CTF) Introduction

'''Who:''' Gabriel Lawrence is the General Manager of Cyber-Protection at Toyota

'''Where:''' Toyota Motor North America, Inc. - 6565 Headquarters Drive, Plano, TX

== June Meeting ==

'''When:''' Tuesday, June 19, 2018 - 6:00 PM

'''Topic: ''' Cloud Jacking

'''Who:''' Bryan McAninch is a cybersecurity professional with over twenty years experience in various disciplines including digital forensics, penetration testing, and security architecture.

'''Where:''' Toyota Motor North America, Inc. - 6565 Headquarters Drive, Plano, TX

== April Meeting ==

'''When:''' Tuesday, April 17, 2018 - 6:00 PM

'''Topic: ''' Viewing the Nodes in the Noise: Leveraging Data Science to Discover Persistent Threats

'''Who:''' David Evenden is an experienced offensive security operator/analyst with over 10 years of active work experience inside the Intelligence Community (IC).

'''Where:''' Allstate - 8711 N. Freeport Parkway - Irving, TX

== March Meeting ==

'''When:''' Tuesday, March 20, 2018 - 6:00 PM

'''Topic: ''' DevSecOps Unplugged

'''Who:''' Vishal Asthana, CISSP has been with Security Compass for over 4 years

'''Where:''' Akamai - 15950 Dallas Parkway - Dallas, TX

== February Meeting ==

'''When:''' Tuesday, February 20, 2018 - 6:00 PM

'''Topic: ''' Bugs in the Blockchain and “Contractual” Vulnerability

'''Who:''' Stark Riedesel is a software security consultant working for Synopsys here in the Dallas area.

'''Where:''' Alliance Data Systems - 7500 Dallas Parkway 7th Floor, Plano, TX

'''Materials''': [[Media:Bugs_in_the_Blockchain.pptx]]

== January Meeting ==

'''When:''' Tuesday, January 16, 2018 - 6:00 PM

'''Topic: ''' OWASP Top 10 2017

'''Who:''' Andrew van der Stock is a Senior Principal Consultant with Synopsys.

'''Where:''' Toyota Motor North America, Inc. - 6565 Headquarters Drive · Plano

== October Meeting ==
'''When:''' Tuesday, October 10, 2017 - 6:00 PM

'''Topic: ''' Application Security in the DevOps World

'''Who:''' Apoorva Phadke is a Senior Security Consultant at Synopsys.

'''Where:''' Akamai - 15950 Dallas Parkway, Dallas, TX

== September Meeting ==
'''When:''' Wednesday, September 13, 2017 - 6:00 PM

'''Topic: ''' Automate All The Things

'''Who:''' Matt Konda, CEO of Jemurai. Jemurai is a consulting firm specializing in application security.

'''Where:''' Epsilon - 6021 Connection Drive, Irving, TX

== August Meeting ==
'''When:''' Wednesday, August 15, 2017 - 6:00 PM

'''Topic: ''' Making Vulnerability Management Less Painful with OWASP DefectDojo

'''Who:''' Greg Anderson is a security professional and creator of DefectDojo

'''Where:''' Intuit

'''Materials:''' https://docs.google.com/presentation/d/1DnV-e6TWoH0YexZJpPQeRTD0eeHwWpmsSu-MRjMczwQ/edit?usp=sharing

== July Meeting ==
'''When:''' Wednesday, July 19, 2017 - 6:00 PM

'''Topic: ''' IoT Security Landscape: Survey & Analysis

'''Who:''' Mark Szewczul, CISSP, is an IoT Security Architect at Zimperium

'''Where:''' Goldman Sachs - 6011 Connection Drive, Irving, TX 75039, Dallas, TX

== June Meeting ==
'''When:''' Tuesday, June 20, 2017 - 6:00 PM

'''Topic: ''' From Hot Rodding to Hacking, Securing the Modern Automobile

'''Who:''' Art Dahnert is a Managing Consultant who has over 19 years of experience in the software industry with over 8 years Application Security experience.

'''Where:''' Toyota - 5360 Legacy Drive, Building 1, 2nd Floor, Plano, TX

'''Materials''': [[media:Hot_Rodding_and_Hacking_v3.pdf]]

== May Meeting ==
'''When:''' Tuesday, May 16, 2017 - 6:00 PM

'''Topic: ''' OWASP Dallas Social

'''Who:''' OWASP Dallas

'''Where:''' Dots Hop House & Cocktail Courtyard - 2645 Commerce Street , Dallas, TX (map)

== April Meeting ==
'''When:''' Monday, April 17, 2017 - 6:00 PM

'''Topic: ''' AWS Security: Staying on Top of the Cloud

'''Who:''' Kurtis Miller is a Principal Security Consultant for NCC Group, North America.

'''Where:''' Goldman Sachs - 6011 Connection Drive, Irving, TX 75039, Dallas, TX

'''Materials''': [[media:AWS_Security_-_Staying_on_Top_of_the_Cloud.pdf]]

== March Meeting ==
'''When:''' Tuesday, March 21, 2017 - 6:00 PM

'''Topic: ''' Secrets Revealed: How Your Competitors are Scaling Application Security

'''Who:''' Nishchal Bhalla, is a noted expert, speaker and a published author who has been in the information security field for two decades.

'''Where:''' Intuit, Inc. - 5601 Headquarters Dr, Plano, TX

'''Materials''': [[media:2017.03_OWASP_Dallas_Presentation_v5.pdf ]] [https://www.securitycompass.com/managingapplicationsecurity2017/ (More Info)]

== February Meeting ==
'''When:''' Tuesday, February 21, 2017 - 6:00 PM

'''Topic: ''' Secure Architecture In The Land of Microservices

'''Who:''' Jack is the CEO at nVisium and focuses on building solutions to make security and education scale in fast-paced software development organizations.

'''Where:''' 8000 Dominion Pkwy, Plano, TX - Capital One

'''Materials''': [[Media:Microservice_Security.pdf]]

== January Meeting ==
'''When:''' January 17 - 6:00 PM

'''Topic: ''' Helping Developers Embrace Security with OWASP Tools

'''Who:''' Joseph Konieczka is a Lead Technology Solutions Specialist on the Remedy on Demand infrastructure team at BMC Software.

'''Where:''' 6011 Connection Drive, Irving, TX 75039, Dallas, TX - Goldman Sachs

== November Meeting ==
'''When:''' Tuesday, November 8, 2016 - 5:30 PM

'''Topic: ''' Privacy Preserving Big Data Analytics

'''Who:''' Hassan Takabi is Assistant Professor of Computer Science and Engineering at the University of North Texas, Denton, TX, USA.

'''Where:''' Epsilon - 6021 Connection Drive, Irving, TX

== October Meeting ==
'''When:''' Monday, October 17, 2016 - 5:30 PM

'''Topic: ''' NoSQL: "No Injections" or "No Security"?

'''Who:''' Stark Riedesel is a Security Consultant for Cigital, an industry leader in application security.

'''Where:''' Akamai - 15950 Dallas Parkway, Dallas, TX

== September Meeting ==
'''When:''' Monday, September 19, 2016 - 5:30 PM

'''Topic: ''' Web Attacker’s Toolkit: An in depth analysis of RFI in the wild

'''Who:''' Tony Lauro is a Lead Sr. Enterprise Security Architect for Akamai's Web Security division.

'''Where:''' Akamai - 15950 Dallas Parkway, Dallas, TX

== August Meeting ==
'''When:''' Tuesday, August 16, 2016 - 5:30 PM

'''Topic: ''' OWASP Dallas August Social

'''Who:''' Dallas OWASP Community

'''Where:''' Braindead Brewing - 2625 Main St, Dallas, TX

== July Meeting ==
'''When:''' Tuesday, July 19, 2016 - 5:30 PM

'''Topic: ''' Pen Testing with Powershell

'''Who:''' Rajganesh Pandurangan is a Lead Managing Consultant at US Bank and the creator of Web Application Exploitation Distro (http://www.waed.info)

'''Where:''' 6011 Connection Drive, Irving, TX 75039, Dallas, TX - Goldman Sachs

'''Materials''': [[Media:OWASP-pentest-with-powershell.pptx]]

== June Meeting ==
'''When:''' Tuesday, June 21, 2016 - 5:30 PM

'''Topic: ''' Web App Testing Stats Compared to The OWASP Top 10

'''Who:''' Joel Scambray is a Principal at Cigital.

'''Where:''' 8000 Dominion Pkwy, Plano, TX - Capital One

'''Materials''': [[Media:Cigital_Top10_DallasOWASP-062116.pdf]]

== May Meeting ==
'''When:''' Tuesday, May 17, 2016 - 5:30 PM

'''Topic: ''' Can we do better than Passwords?

'''Who:''' Dr. Girish Chiruvolu, CISSP, CISM is Director, Information security and Risk Management at Thomson Reuters, Carrollton TX.

'''Where:''' 6011 Connection Drive, Irving, TX 75039 - Goldman Sachs.

'''Materials''': [[Media:OWASP_May17th_Password-less-logins.pdf]]

== April Meeting ==
'''When:''' Tuesday, April 19, 2016 - 5:30 PM

'''Topic: ''' OWASP Happy Hour

'''Who:''' OWASP Dallas Members

'''Where:''' Humperdinks NW Highway - 2208 W Northwest Hwy, Dallas, TX

== March Meeting ==
'''When:''' Tuesday, March 15, 2016 - 5:30 PM

'''Topic: ''' Integrating Security into the Software/System Development Life Cycle (SDLC) Process—Myths and Facts

'''Who:''' Rick Brunner is an Assistant Faculty member at Collin College and is an active member of Collin’s Cyber Security Advisory Board.

'''Where:''' Epsilon - 6021 Connection Drive, Irving, TX.

'''Materials''': [[Media:March_2016_OWASP_-_Secure_SDLC_Presentation_and_Related_Material.zip]]

== February Meeting ==
'''When:''' Wednesday, February 17, 2016 - 5:30 PM

'''Topic: ''' DNS Attack Vectors

'''Who:''' John Devasia is a Senior Product Manager in the Cloud Security BU at Akamai Technologies.

'''Where:''' 6011 Connection Drive, Irving, TX 75039 - Goldman Sachs.

== January Meeting ==
'''When:''' Tuesday, January 19, 2016 - 5:30 PM

'''Topic: ''' Bountiful Bugs and DRM Breakage

'''Who:''' Dave Ferguson is a Solution Architect at Qualys and has been a specialist in Application Security since 2006.

'''Where:''' 6011 Connection Drive, Irving, TX 75039 - Goldman Sachs.

== November Meeting ==
'''When:''' Tuesday, November 17th, 2015 from 5:30 PM – ?:?? PM

'''Topic: ''' OWASP Dallas Happy Hour

'''Where:''' Mexican Sugar at Shops at Legacy - 7501 Lone Star Drive, Suite 8150, Plano, TX

== October Meeting ==
'''When:''' Wednesday October 7th, 2015 from 11:30 AM – 1:00 PM

'''Topic: ''' Anatomy of a Logic Flaw

'''Who:''' Charles Henderson is the Vice President of Managed Security Testing at Trustwave.

'''Where:''' 6011 Connection Drive, Irving, TX 75039.

== September Meeting ==
'''When:''' Thursday September 17th, 2015 from 5:30PM – 6:30 PM

'''Topic: ''' Application Security Trends

'''Who:''' Stephen Pasco is a Vice President of Application Risk at Goldman Sachs

'''Where:''' 6011 Connection Drive, Irving, TX 75039.

== May Meeting ==
'''When:''' Wednesday May 6, 2015 from 11:30 AM – 1:00 PM

'''Topic: ''' The Future of Mobile Payments: Secure Mobile Architecture

'''Who:''' Denis M. Sheridan is a Managing Consultant at Cigital.

'''Where:''' North Lake College Central Campus, 5001 North MacArthur Boulevard, Irving, Texas 75038, Room: A-215

== October Meeting ==
'''When:''' Wednesday October 1, 2014 from 11:30 AM – 1:00 PM

'''Topic: '''Succeeding with Enterprise Software Security Key Performance Indicators

'''Who:''' Rafal Los, Director, Office of the CISO

'''Where:''' Richland College, 12800 Abrams Road, Dallas, TX 75243, Room: Sabine Hall: SH117

== March Meeting ==
'''When:''' Wednesday March 5, 2014 from 11:30 AM – 1:00 PM

'''Topic: ''' OWASP Dallas basic Python tutorial

'''Who:''' Matt Parsons, CISSP MSM

'''Where:''' Richland College, 12800 Abrams Road, Dallas, TX 75243, Room: Sabine Hall: SH117

== September Meeting ==
'''When:''' Wednesday September 11, 2013 from 11:30 AM – 1:00 PM

'''Topic: ''' PCI Mobile Payment Acceptance Security Guidelines for Developers

'''Who:''' Ralph Spencer Poore, Director, Emerging Standards at PCI Security Standards Council

'''Where:''' Richland College, 12800 Abrams Road, Dallas, TX 75243, Room: Sabine Hall: SH117

'''Slides''': [[Media:Dallas OWASP 9-11-2013.pdf]]

== May Meeting ==
'''When:''' Wednesday May 8, 2013 from 11:30 AM – 1:00 PM

'''Topic: ''' Implementation Patterns for Software Security Programs

'''Who:''' Dan Cornell, Principal, Denim Group

'''Where:''' Richland College, 12800 Abrams Road, Dallas, TX 75243, Room: Sabine Hall: SH117

[http://www.richlandcollege.edu/map/ Map]

== February Meeting ==
'''When:''' Wednesday February 6, 2013 from 11:30 AM – 1:00 PM

'''Topic: ''' Using Webappsec Vulns to Break Censorship

'''Who:''' Robert Hansen, a.k.a. rsnake

'''Where:''' Richland College, 12800 Abrams Road, Dallas, TX 75243, Room: Sabine Hall: SH117

[http://www.richlandcollege.edu/map/ Map]

__NOTOC__
<headertabs></headertabs>

[[Category:Texas]]

2019-07-01T19:13:28Z

Jeromme Lawler:

Dallas

2019-06-13T16:02:14Z

Jeromme Lawler:

{{Chapter Template|chaptername=Dallas|extra=The chapter leaders are

Chapter Lead- [mailto:dsheridan@cigital.com Denis Sheridan]

Board Member- [mailto:jeromme.lawler@guggenheimpartners.com Jeromme Lawler]
 
|mailinglistsite=http://lists.owasp.org/mailman/listinfo/owasp-dallas|emailarchives=http://lists.owasp.org/pipermail/owasp-dallas}}

== Get Connected and Stay Connected ==

In addition to our [http://bit.ly/fWT3pN Mailing List] we also have a [http://bit.ly/eHEW6O Dallas OWASP Twitter Feed] a [http://on.fb.me/fHr5XY Dallas OWASP Facebook Page] and a [http://linkd.in/g3WxGG Dallas OWASP Linkedin Group]. We invite you to join or follow whichever groups suit you, get involved with your fellow Dallas OWASP Chapter members, and we'll keep them all up to date with the latest official news and announcements from the chapter leadership.

'''Click any of the links below to visit the corresponding Dallas OWASP social networking groups:'''

{| cellspacing="15"
|-
| [[Image:Join the list.png|150px|link=http://bit.ly/fWT3pN]]
| [[Image:Follow-us-on-twitter.png|175px|link=http://bit.ly/eHEW6O]]
| [[Image:Join-us-on-Facebook.jpg|175px|link=http://on.fb.me/fHr5XY]]
| [[Image:Linkedin-button.gif|135px|link=http://linkd.in/g3WxGG]]
| [[Image:meetup-button.png|108px|link=https://www.meetup.com/Dallas-The-Open-Web-Application-Security-Project-Meetup/]]
|}

=== Announcements ===

== June Meeting ==

'''When:''' Tuesday, June 25, 2019 - 6:00 PM

'''Topic: ''' Anti-Phish Codes -- Addressing credential compromise that lead to Data breaches and Fraud

81% of data breaches and online fraud have been traced back to credential compromise. as per the Verizon and Ponemon Inst reports. All the current popular Password, OATH OTP, SMS authentication schemes fundamentally are susceptible to interception and spoofing of account credentials, and thus account take-overs.

A special class of bearer-sensitive Anti-Phish codes is presented that makes the credential spoofing by phishing and other attacks totally ineffective. To help understand the new concept live hacking is also incorporated in the presentation. The anti-phish codes help enterprise reduce the risk of data breaches and online fraud through account take overs and credential phishing to practically zero.

'''Who:'''

Dr. Chiruvolu brings in more than two decades of expertise, insights on technology and cyber security in several market verticals such as Finance, Healthcare, Enterprise and Govt./Education. He is an entrepreneur himself with deep hands-on expertise from ideation to monetization/market traction. He has been instrumental and passionate about bringing change in the Cyber security and online fraud by addressing the fundamental cyber risk on Enterprise, and cloud computing exceeding some of the industry standards. Dr. Chiruvolu is a CISSP/CISM and has spent several years in the security industry and has led several successful programs on several fronts of Information Security, Risk management and Compliance at fortune 500 companies such as Experian, Thomson Reuters, Citi, Capital One. He is passionate about strong user authentication, Identity and Access management and has co-authored over 40 referred technical papers and has 20+ patents. He holds a Ph.D in Computer Science and an MBA in Marketing and Finance.

'''Where:''' Capital Factory + The DEC - 3102 Oak Lawn Ave - Dallas, TX

The Centrum’s visitor parking garage is located off Welborn Street, between North Hall Street and Cedar Springs Road. Use the elevator closest to Oak Lawn Avenue and select Floor 1 for the easiest access. Give you phone # for parking validation.

IMPORTANT Meeting Notes:

This office is a gun-free zone. Please do not attempt to bring in any guns, holsters, ammo, etc. into their office space.

The meeting food & drinks will be sponsored by OWASP Dallas.

=== Previous Meetings ===

== May Meeting ==

'''When:''' Thursday, May 23, 2019 - 6:00 PM

'''Topic: ''' Microservices: What Am I Securing Again?

'''Who:'''

Travis Biehn is a Principal Consultant at Synopsys and consulting research lead for the Synopsys Cybersecurity Research Center.

David Bohannon is a Senior Security Consultant at Synopsys.

'''Where:''' The Garage at Capital One - 8000 Dominion Pkwy - Plano, TX - Building with TC out front

[[Media:Microservices_OWASP_Preso_Sanitized.pptx]]

== March Meeting ==

'''When:''' Thursday, May 23, 2019 - 6:00 PM

'''Topic: ''' Tineola: Taking a Bite Out of Enterprise Blockchain

'''Who:''' Stark Riedesel is a senior consultant at Synopsys with six years of security industry experience.

'''Where:''' Needs a location

== February Meeting ==

'''When:''' Tuesday, February 19, 2019 - 6:00 PM

'''Topic: ''' Threat-modeling legacy Cloud Applications

'''Who:''' Kevin Nassery is a Senior Principal Consultant at Synopsys where he leads the Software Security Initiatives (SSI) practice

'''Where:''' Epsilon - 6021 Connection Drive - Irving, TX

[[Media:Owasp-dallas.pptx]]

== January Meeting ==

'''When:''' Tuesday, January 15, 2019 - 6:00 PM

'''Topic: ''' Container and Container-Aware Security

'''Who:'''

Travis Stanfield, Senior Director of Software Engineering at Capital One

Liam Randall, President and Co-Founder of Critical Stack

'''Where:''' Capital One - 8000 Dominion Pkwy - Plano, TX

[[Media:OWASP_dallas_Jan_2019.zip]]

== November Meeting ==

'''When:''' Tuesday, November 13, 2018 - 6:00 PM

'''Topic: ''' Securing Containers on the High Seas

'''Who:''' Jack Mannino is the CEO of nVisium.

'''Where:''' Capital One - 8000 Dominion Pkwy - Plano, TX

== September Meeting ==

'''When:''' Tuesday, September 18, 2018 - 6:00 PM

'''Topic: ''' Security Shift Left! Enable, Protect, and Execute.

'''Who:''' Teddi Poehls, currently working as a Senior Sales Engineer for Signal Sciences

'''Where:''' Epsilon - 6021 Connection Drive, Irving, TX

== August Meeting ==

'''When:''' Tuesday, August 21, 2018 - 6:00 PM

'''Topic: ''' Tangled Web

'''Who:''' Herb has worked for State Farm for over 26 years. He is currently a member of the Security Analytics/Threat hunting team.

'''Where:''' State Farm Insurance - 3661 N. Plano Rd. Suite 1000, Richardson, TX

== July Meeting ==

'''When:''' Tuesday, July 17, 2018 - 6:00 PM

'''Topic: ''' Interactive Capture the Flag (CTF) Introduction

'''Who:''' Gabriel Lawrence is the General Manager of Cyber-Protection at Toyota

'''Where:''' Toyota Motor North America, Inc. - 6565 Headquarters Drive, Plano, TX

== June Meeting ==

'''When:''' Tuesday, June 19, 2018 - 6:00 PM

'''Topic: ''' Cloud Jacking

'''Who:''' Bryan McAninch is a cybersecurity professional with over twenty years experience in various disciplines including digital forensics, penetration testing, and security architecture.

'''Where:''' Toyota Motor North America, Inc. - 6565 Headquarters Drive, Plano, TX

== April Meeting ==

'''When:''' Tuesday, April 17, 2018 - 6:00 PM

'''Topic: ''' Viewing the Nodes in the Noise: Leveraging Data Science to Discover Persistent Threats

'''Who:''' David Evenden is an experienced offensive security operator/analyst with over 10 years of active work experience inside the Intelligence Community (IC).

'''Where:''' Allstate - 8711 N. Freeport Parkway - Irving, TX

== March Meeting ==

'''When:''' Tuesday, March 20, 2018 - 6:00 PM

'''Topic: ''' DevSecOps Unplugged

'''Who:''' Vishal Asthana, CISSP has been with Security Compass for over 4 years

'''Where:''' Akamai - 15950 Dallas Parkway - Dallas, TX

== February Meeting ==

'''When:''' Tuesday, February 20, 2018 - 6:00 PM

'''Topic: ''' Bugs in the Blockchain and “Contractual” Vulnerability

'''Who:''' Stark Riedesel is a software security consultant working for Synopsys here in the Dallas area.

'''Where:''' Alliance Data Systems - 7500 Dallas Parkway 7th Floor, Plano, TX

'''Materials''': [[Media:Bugs_in_the_Blockchain.pptx]]

== January Meeting ==

'''When:''' Tuesday, January 16, 2018 - 6:00 PM

'''Topic: ''' OWASP Top 10 2017

'''Who:''' Andrew van der Stock is a Senior Principal Consultant with Synopsys.

'''Where:''' Toyota Motor North America, Inc. - 6565 Headquarters Drive · Plano

== October Meeting ==
'''When:''' Tuesday, October 10, 2017 - 6:00 PM

'''Topic: ''' Application Security in the DevOps World

'''Who:''' Apoorva Phadke is a Senior Security Consultant at Synopsys.

'''Where:''' Akamai - 15950 Dallas Parkway, Dallas, TX

== September Meeting ==
'''When:''' Wednesday, September 13, 2017 - 6:00 PM

'''Topic: ''' Automate All The Things

'''Who:''' Matt Konda, CEO of Jemurai. Jemurai is a consulting firm specializing in application security.

'''Where:''' Epsilon - 6021 Connection Drive, Irving, TX

== August Meeting ==
'''When:''' Wednesday, August 15, 2017 - 6:00 PM

'''Topic: ''' Making Vulnerability Management Less Painful with OWASP DefectDojo

'''Who:''' Greg Anderson is a security professional and creator of DefectDojo

'''Where:''' Intuit

'''Materials:''' https://docs.google.com/presentation/d/1DnV-e6TWoH0YexZJpPQeRTD0eeHwWpmsSu-MRjMczwQ/edit?usp=sharing

== July Meeting ==
'''When:''' Wednesday, July 19, 2017 - 6:00 PM

'''Topic: ''' IoT Security Landscape: Survey & Analysis

'''Who:''' Mark Szewczul, CISSP, is an IoT Security Architect at Zimperium

'''Where:''' Goldman Sachs - 6011 Connection Drive, Irving, TX 75039, Dallas, TX

== June Meeting ==
'''When:''' Tuesday, June 20, 2017 - 6:00 PM

'''Topic: ''' From Hot Rodding to Hacking, Securing the Modern Automobile

'''Who:''' Art Dahnert is a Managing Consultant who has over 19 years of experience in the software industry with over 8 years Application Security experience.

'''Where:''' Toyota - 5360 Legacy Drive, Building 1, 2nd Floor, Plano, TX

'''Materials''': [[media:Hot_Rodding_and_Hacking_v3.pdf]]

== May Meeting ==
'''When:''' Tuesday, May 16, 2017 - 6:00 PM

'''Topic: ''' OWASP Dallas Social

'''Who:''' OWASP Dallas

'''Where:''' Dots Hop House & Cocktail Courtyard - 2645 Commerce Street , Dallas, TX (map)

== April Meeting ==
'''When:''' Monday, April 17, 2017 - 6:00 PM

'''Topic: ''' AWS Security: Staying on Top of the Cloud

'''Who:''' Kurtis Miller is a Principal Security Consultant for NCC Group, North America.

'''Where:''' Goldman Sachs - 6011 Connection Drive, Irving, TX 75039, Dallas, TX

'''Materials''': [[media:AWS_Security_-_Staying_on_Top_of_the_Cloud.pdf]]

== March Meeting ==
'''When:''' Tuesday, March 21, 2017 - 6:00 PM

'''Topic: ''' Secrets Revealed: How Your Competitors are Scaling Application Security

'''Who:''' Nishchal Bhalla, is a noted expert, speaker and a published author who has been in the information security field for two decades.

'''Where:''' Intuit, Inc. - 5601 Headquarters Dr, Plano, TX

'''Materials''': [[media:2017.03_OWASP_Dallas_Presentation_v5.pdf ]] [https://www.securitycompass.com/managingapplicationsecurity2017/ (More Info)]

== February Meeting ==
'''When:''' Tuesday, February 21, 2017 - 6:00 PM

'''Topic: ''' Secure Architecture In The Land of Microservices

'''Who:''' Jack is the CEO at nVisium and focuses on building solutions to make security and education scale in fast-paced software development organizations.

'''Where:''' 8000 Dominion Pkwy, Plano, TX - Capital One

'''Materials''': [[Media:Microservice_Security.pdf]]

== January Meeting ==
'''When:''' January 17 - 6:00 PM

'''Topic: ''' Helping Developers Embrace Security with OWASP Tools

'''Who:''' Joseph Konieczka is a Lead Technology Solutions Specialist on the Remedy on Demand infrastructure team at BMC Software.

'''Where:''' 6011 Connection Drive, Irving, TX 75039, Dallas, TX - Goldman Sachs

== November Meeting ==
'''When:''' Tuesday, November 8, 2016 - 5:30 PM

'''Topic: ''' Privacy Preserving Big Data Analytics

'''Who:''' Hassan Takabi is Assistant Professor of Computer Science and Engineering at the University of North Texas, Denton, TX, USA.

'''Where:''' Epsilon - 6021 Connection Drive, Irving, TX

== October Meeting ==
'''When:''' Monday, October 17, 2016 - 5:30 PM

'''Topic: ''' NoSQL: "No Injections" or "No Security"?

'''Who:''' Stark Riedesel is a Security Consultant for Cigital, an industry leader in application security.

'''Where:''' Akamai - 15950 Dallas Parkway, Dallas, TX

== September Meeting ==
'''When:''' Monday, September 19, 2016 - 5:30 PM

'''Topic: ''' Web Attacker’s Toolkit: An in depth analysis of RFI in the wild

'''Who:''' Tony Lauro is a Lead Sr. Enterprise Security Architect for Akamai's Web Security division.

'''Where:''' Akamai - 15950 Dallas Parkway, Dallas, TX

== August Meeting ==
'''When:''' Tuesday, August 16, 2016 - 5:30 PM

'''Topic: ''' OWASP Dallas August Social

'''Who:''' Dallas OWASP Community

'''Where:''' Braindead Brewing - 2625 Main St, Dallas, TX

== July Meeting ==
'''When:''' Tuesday, July 19, 2016 - 5:30 PM

'''Topic: ''' Pen Testing with Powershell

'''Who:''' Rajganesh Pandurangan is a Lead Managing Consultant at US Bank and the creator of Web Application Exploitation Distro (http://www.waed.info)

'''Where:''' 6011 Connection Drive, Irving, TX 75039, Dallas, TX - Goldman Sachs

'''Materials''': [[Media:OWASP-pentest-with-powershell.pptx]]

== June Meeting ==
'''When:''' Tuesday, June 21, 2016 - 5:30 PM

'''Topic: ''' Web App Testing Stats Compared to The OWASP Top 10

'''Who:''' Joel Scambray is a Principal at Cigital.

'''Where:''' 8000 Dominion Pkwy, Plano, TX - Capital One

'''Materials''': [[Media:Cigital_Top10_DallasOWASP-062116.pdf]]

== May Meeting ==
'''When:''' Tuesday, May 17, 2016 - 5:30 PM

'''Topic: ''' Can we do better than Passwords?

'''Who:''' Dr. Girish Chiruvolu, CISSP, CISM is Director, Information security and Risk Management at Thomson Reuters, Carrollton TX.

'''Where:''' 6011 Connection Drive, Irving, TX 75039 - Goldman Sachs.

'''Materials''': [[Media:OWASP_May17th_Password-less-logins.pdf]]

== April Meeting ==
'''When:''' Tuesday, April 19, 2016 - 5:30 PM

'''Topic: ''' OWASP Happy Hour

'''Who:''' OWASP Dallas Members

'''Where:''' Humperdinks NW Highway - 2208 W Northwest Hwy, Dallas, TX

== March Meeting ==
'''When:''' Tuesday, March 15, 2016 - 5:30 PM

'''Topic: ''' Integrating Security into the Software/System Development Life Cycle (SDLC) Process—Myths and Facts

'''Who:''' Rick Brunner is an Assistant Faculty member at Collin College and is an active member of Collin’s Cyber Security Advisory Board.

'''Where:''' Epsilon - 6021 Connection Drive, Irving, TX.

'''Materials''': [[Media:March_2016_OWASP_-_Secure_SDLC_Presentation_and_Related_Material.zip]]

== February Meeting ==
'''When:''' Wednesday, February 17, 2016 - 5:30 PM

'''Topic: ''' DNS Attack Vectors

'''Who:''' John Devasia is a Senior Product Manager in the Cloud Security BU at Akamai Technologies.

'''Where:''' 6011 Connection Drive, Irving, TX 75039 - Goldman Sachs.

== January Meeting ==
'''When:''' Tuesday, January 19, 2016 - 5:30 PM

'''Topic: ''' Bountiful Bugs and DRM Breakage

'''Who:''' Dave Ferguson is a Solution Architect at Qualys and has been a specialist in Application Security since 2006.

'''Where:''' 6011 Connection Drive, Irving, TX 75039 - Goldman Sachs.

== November Meeting ==
'''When:''' Tuesday, November 17th, 2015 from 5:30 PM – ?:?? PM

'''Topic: ''' OWASP Dallas Happy Hour

'''Where:''' Mexican Sugar at Shops at Legacy - 7501 Lone Star Drive, Suite 8150, Plano, TX

== October Meeting ==
'''When:''' Wednesday October 7th, 2015 from 11:30 AM – 1:00 PM

'''Topic: ''' Anatomy of a Logic Flaw

'''Who:''' Charles Henderson is the Vice President of Managed Security Testing at Trustwave.

'''Where:''' 6011 Connection Drive, Irving, TX 75039.

== September Meeting ==
'''When:''' Thursday September 17th, 2015 from 5:30PM – 6:30 PM

'''Topic: ''' Application Security Trends

'''Who:''' Stephen Pasco is a Vice President of Application Risk at Goldman Sachs

'''Where:''' 6011 Connection Drive, Irving, TX 75039.

== May Meeting ==
'''When:''' Wednesday May 6, 2015 from 11:30 AM – 1:00 PM

'''Topic: ''' The Future of Mobile Payments: Secure Mobile Architecture

'''Who:''' Denis M. Sheridan is a Managing Consultant at Cigital.

'''Where:''' North Lake College Central Campus, 5001 North MacArthur Boulevard, Irving, Texas 75038, Room: A-215

== October Meeting ==
'''When:''' Wednesday October 1, 2014 from 11:30 AM – 1:00 PM

'''Topic: '''Succeeding with Enterprise Software Security Key Performance Indicators

'''Who:''' Rafal Los, Director, Office of the CISO

'''Where:''' Richland College, 12800 Abrams Road, Dallas, TX 75243, Room: Sabine Hall: SH117

== March Meeting ==
'''When:''' Wednesday March 5, 2014 from 11:30 AM – 1:00 PM

'''Topic: ''' OWASP Dallas basic Python tutorial

'''Who:''' Matt Parsons, CISSP MSM

'''Where:''' Richland College, 12800 Abrams Road, Dallas, TX 75243, Room: Sabine Hall: SH117

== September Meeting ==
'''When:''' Wednesday September 11, 2013 from 11:30 AM – 1:00 PM

'''Topic: ''' PCI Mobile Payment Acceptance Security Guidelines for Developers

'''Who:''' Ralph Spencer Poore, Director, Emerging Standards at PCI Security Standards Council

'''Where:''' Richland College, 12800 Abrams Road, Dallas, TX 75243, Room: Sabine Hall: SH117

'''Slides''': [[Media:Dallas OWASP 9-11-2013.pdf]]

== May Meeting ==
'''When:''' Wednesday May 8, 2013 from 11:30 AM – 1:00 PM

'''Topic: ''' Implementation Patterns for Software Security Programs

'''Who:''' Dan Cornell, Principal, Denim Group

'''Where:''' Richland College, 12800 Abrams Road, Dallas, TX 75243, Room: Sabine Hall: SH117

[http://www.richlandcollege.edu/map/ Map]

== February Meeting ==
'''When:''' Wednesday February 6, 2013 from 11:30 AM – 1:00 PM

'''Topic: ''' Using Webappsec Vulns to Break Censorship

'''Who:''' Robert Hansen, a.k.a. rsnake

'''Where:''' Richland College, 12800 Abrams Road, Dallas, TX 75243, Room: Sabine Hall: SH117

[http://www.richlandcollege.edu/map/ Map]

__NOTOC__
<headertabs></headertabs>

[[Category:Texas]]

Dallas

2019-05-29T14:13:34Z

Jeromme Lawler:

{{Chapter Template|chaptername=Dallas|extra=The chapter leaders are

Chapter Lead- [mailto:dsheridan@cigital.com Denis Sheridan]

Board Member- [mailto:jeromme.lawler@guggenheimpartners.com Jeromme Lawler]
 
|mailinglistsite=http://lists.owasp.org/mailman/listinfo/owasp-dallas|emailarchives=http://lists.owasp.org/pipermail/owasp-dallas}}

== Get Connected and Stay Connected ==

In addition to our [http://bit.ly/fWT3pN Mailing List] we also have a [http://bit.ly/eHEW6O Dallas OWASP Twitter Feed] a [http://on.fb.me/fHr5XY Dallas OWASP Facebook Page] and a [http://linkd.in/g3WxGG Dallas OWASP Linkedin Group]. We invite you to join or follow whichever groups suit you, get involved with your fellow Dallas OWASP Chapter members, and we'll keep them all up to date with the latest official news and announcements from the chapter leadership.

'''Click any of the links below to visit the corresponding Dallas OWASP social networking groups:'''

{| cellspacing="15"
|-
| [[Image:Join the list.png|150px|link=http://bit.ly/fWT3pN]]
| [[Image:Follow-us-on-twitter.png|175px|link=http://bit.ly/eHEW6O]]
| [[Image:Join-us-on-Facebook.jpg|175px|link=http://on.fb.me/fHr5XY]]
| [[Image:Linkedin-button.gif|135px|link=http://linkd.in/g3WxGG]]
| [[Image:meetup-button.png|108px|link=https://www.meetup.com/Dallas-The-Open-Web-Application-Security-Project-Meetup/]]
|}

=== Announcements ===

== May Meeting ==

'''When:''' Thursday, May 23, 2019 - 6:00 PM

'''Topic: ''' Microservices: What Am I Securing Again?

We read Martin Fowler’s manifesto on microservices so you don’t have to. Microservices brings challenges that we’ve come to expect; tools don’t work as well as they used to, software has more baked-in complexity, and there’s an explosion of components listening on TCP/IP ports.

It’s not all lost: Travis & David present the latest from the field on microservices security – highlighting the thorny corners of the security problem, and critical architectural safety-rails to provide developers, so they can go fast and maybe break less.

Link to original white paper:
https://martinfowler.com/articles/microservices.html

'''Who:'''

Travis Biehn is a Principal Consultant at Synopsys and consulting research lead for the Synopsys Cybersecurity Research Center. He works with developers, security program stakeholders, and companies to improve their security posture. Travis focuses on building capabilities against emerging technologies and the analysis of challenging systems. Prior to Synopsys, he worked as an Architect and Developer on SCADA / HMI systems, web apps, backend components, and mobile applications.

David Bohannon is a Senior Security Consultant at Synopsys. His work is heavily focused on web applications, frameworks, and middleware technologies. In addition to client-facing engagements, David also conducts internal software development and vulnerability research for Synopsys. He holds a Bachelor of Science in Computer Science from University of Georgia.

'''Where:''' The Garage at Capital One - 8000 Dominion Pkwy - Plano, TX - Building with TC out front

IMPORTANT Meeting Notes:

This office is a gun-free zone. Please do not attempt to bring in any guns, holsters, ammo, etc. into their office space.

[[Media:Microservices_OWASP_Preso_Sanitized.pptx]]

=== Previous Meetings ===

== March Meeting ==

'''When:''' Thursday, May 23, 2019 - 6:00 PM

'''Topic: ''' Tineola: Taking a Bite Out of Enterprise Blockchain

'''Who:''' Stark Riedesel is a senior consultant at Synopsys with six years of security industry experience.

'''Where:''' Needs a location

== February Meeting ==

'''When:''' Tuesday, February 19, 2019 - 6:00 PM

'''Topic: ''' Threat-modeling legacy Cloud Applications

'''Who:''' Kevin Nassery is a Senior Principal Consultant at Synopsys where he leads the Software Security Initiatives (SSI) practice

'''Where:''' Epsilon - 6021 Connection Drive - Irving, TX

[[Media:Owasp-dallas.pptx]]

== January Meeting ==

'''When:''' Tuesday, January 15, 2019 - 6:00 PM

'''Topic: ''' Container and Container-Aware Security

'''Who:'''

Travis Stanfield, Senior Director of Software Engineering at Capital One

Liam Randall, President and Co-Founder of Critical Stack

'''Where:''' Capital One - 8000 Dominion Pkwy - Plano, TX

[[Media:OWASP_dallas_Jan_2019.zip]]

== November Meeting ==

'''When:''' Tuesday, November 13, 2018 - 6:00 PM

'''Topic: ''' Securing Containers on the High Seas

'''Who:''' Jack Mannino is the CEO of nVisium.

'''Where:''' Capital One - 8000 Dominion Pkwy - Plano, TX

== September Meeting ==

'''When:''' Tuesday, September 18, 2018 - 6:00 PM

'''Topic: ''' Security Shift Left! Enable, Protect, and Execute.

'''Who:''' Teddi Poehls, currently working as a Senior Sales Engineer for Signal Sciences

'''Where:''' Epsilon - 6021 Connection Drive, Irving, TX

== August Meeting ==

'''When:''' Tuesday, August 21, 2018 - 6:00 PM

'''Topic: ''' Tangled Web

'''Who:''' Herb has worked for State Farm for over 26 years. He is currently a member of the Security Analytics/Threat hunting team.

'''Where:''' State Farm Insurance - 3661 N. Plano Rd. Suite 1000, Richardson, TX

== July Meeting ==

'''When:''' Tuesday, July 17, 2018 - 6:00 PM

'''Topic: ''' Interactive Capture the Flag (CTF) Introduction

'''Who:''' Gabriel Lawrence is the General Manager of Cyber-Protection at Toyota

'''Where:''' Toyota Motor North America, Inc. - 6565 Headquarters Drive, Plano, TX

== June Meeting ==

'''When:''' Tuesday, June 19, 2018 - 6:00 PM

'''Topic: ''' Cloud Jacking

'''Who:''' Bryan McAninch is a cybersecurity professional with over twenty years experience in various disciplines including digital forensics, penetration testing, and security architecture.

'''Where:''' Toyota Motor North America, Inc. - 6565 Headquarters Drive, Plano, TX

== April Meeting ==

'''When:''' Tuesday, April 17, 2018 - 6:00 PM

'''Topic: ''' Viewing the Nodes in the Noise: Leveraging Data Science to Discover Persistent Threats

'''Who:''' David Evenden is an experienced offensive security operator/analyst with over 10 years of active work experience inside the Intelligence Community (IC).

'''Where:''' Allstate - 8711 N. Freeport Parkway - Irving, TX

== March Meeting ==

'''When:''' Tuesday, March 20, 2018 - 6:00 PM

'''Topic: ''' DevSecOps Unplugged

'''Who:''' Vishal Asthana, CISSP has been with Security Compass for over 4 years

'''Where:''' Akamai - 15950 Dallas Parkway - Dallas, TX

== February Meeting ==

'''When:''' Tuesday, February 20, 2018 - 6:00 PM

'''Topic: ''' Bugs in the Blockchain and “Contractual” Vulnerability

'''Who:''' Stark Riedesel is a software security consultant working for Synopsys here in the Dallas area.

'''Where:''' Alliance Data Systems - 7500 Dallas Parkway 7th Floor, Plano, TX

'''Materials''': [[Media:Bugs_in_the_Blockchain.pptx]]

== January Meeting ==

'''When:''' Tuesday, January 16, 2018 - 6:00 PM

'''Topic: ''' OWASP Top 10 2017

'''Who:''' Andrew van der Stock is a Senior Principal Consultant with Synopsys.

'''Where:''' Toyota Motor North America, Inc. - 6565 Headquarters Drive · Plano

== October Meeting ==
'''When:''' Tuesday, October 10, 2017 - 6:00 PM

'''Topic: ''' Application Security in the DevOps World

'''Who:''' Apoorva Phadke is a Senior Security Consultant at Synopsys.

'''Where:''' Akamai - 15950 Dallas Parkway, Dallas, TX

== September Meeting ==
'''When:''' Wednesday, September 13, 2017 - 6:00 PM

'''Topic: ''' Automate All The Things

'''Who:''' Matt Konda, CEO of Jemurai. Jemurai is a consulting firm specializing in application security.

'''Where:''' Epsilon - 6021 Connection Drive, Irving, TX

== August Meeting ==
'''When:''' Wednesday, August 15, 2017 - 6:00 PM

'''Topic: ''' Making Vulnerability Management Less Painful with OWASP DefectDojo

'''Who:''' Greg Anderson is a security professional and creator of DefectDojo

'''Where:''' Intuit

'''Materials:''' https://docs.google.com/presentation/d/1DnV-e6TWoH0YexZJpPQeRTD0eeHwWpmsSu-MRjMczwQ/edit?usp=sharing

== July Meeting ==
'''When:''' Wednesday, July 19, 2017 - 6:00 PM

'''Topic: ''' IoT Security Landscape: Survey & Analysis

'''Who:''' Mark Szewczul, CISSP, is an IoT Security Architect at Zimperium

'''Where:''' Goldman Sachs - 6011 Connection Drive, Irving, TX 75039, Dallas, TX

== June Meeting ==
'''When:''' Tuesday, June 20, 2017 - 6:00 PM

'''Topic: ''' From Hot Rodding to Hacking, Securing the Modern Automobile

'''Who:''' Art Dahnert is a Managing Consultant who has over 19 years of experience in the software industry with over 8 years Application Security experience.

'''Where:''' Toyota - 5360 Legacy Drive, Building 1, 2nd Floor, Plano, TX

'''Materials''': [[media:Hot_Rodding_and_Hacking_v3.pdf]]

== May Meeting ==
'''When:''' Tuesday, May 16, 2017 - 6:00 PM

'''Topic: ''' OWASP Dallas Social

'''Who:''' OWASP Dallas

'''Where:''' Dots Hop House & Cocktail Courtyard - 2645 Commerce Street , Dallas, TX (map)

== April Meeting ==
'''When:''' Monday, April 17, 2017 - 6:00 PM

'''Topic: ''' AWS Security: Staying on Top of the Cloud

'''Who:''' Kurtis Miller is a Principal Security Consultant for NCC Group, North America.

'''Where:''' Goldman Sachs - 6011 Connection Drive, Irving, TX 75039, Dallas, TX

'''Materials''': [[media:AWS_Security_-_Staying_on_Top_of_the_Cloud.pdf]]

== March Meeting ==
'''When:''' Tuesday, March 21, 2017 - 6:00 PM

'''Topic: ''' Secrets Revealed: How Your Competitors are Scaling Application Security

'''Who:''' Nishchal Bhalla, is a noted expert, speaker and a published author who has been in the information security field for two decades.

'''Where:''' Intuit, Inc. - 5601 Headquarters Dr, Plano, TX

'''Materials''': [[media:2017.03_OWASP_Dallas_Presentation_v5.pdf ]] [https://www.securitycompass.com/managingapplicationsecurity2017/ (More Info)]

== February Meeting ==
'''When:''' Tuesday, February 21, 2017 - 6:00 PM

'''Topic: ''' Secure Architecture In The Land of Microservices

'''Who:''' Jack is the CEO at nVisium and focuses on building solutions to make security and education scale in fast-paced software development organizations.

'''Where:''' 8000 Dominion Pkwy, Plano, TX - Capital One

'''Materials''': [[Media:Microservice_Security.pdf]]

== January Meeting ==
'''When:''' January 17 - 6:00 PM

'''Topic: ''' Helping Developers Embrace Security with OWASP Tools

'''Who:''' Joseph Konieczka is a Lead Technology Solutions Specialist on the Remedy on Demand infrastructure team at BMC Software.

'''Where:''' 6011 Connection Drive, Irving, TX 75039, Dallas, TX - Goldman Sachs

== November Meeting ==
'''When:''' Tuesday, November 8, 2016 - 5:30 PM

'''Topic: ''' Privacy Preserving Big Data Analytics

'''Who:''' Hassan Takabi is Assistant Professor of Computer Science and Engineering at the University of North Texas, Denton, TX, USA.

'''Where:''' Epsilon - 6021 Connection Drive, Irving, TX

== October Meeting ==
'''When:''' Monday, October 17, 2016 - 5:30 PM

'''Topic: ''' NoSQL: "No Injections" or "No Security"?

'''Who:''' Stark Riedesel is a Security Consultant for Cigital, an industry leader in application security.

'''Where:''' Akamai - 15950 Dallas Parkway, Dallas, TX

== September Meeting ==
'''When:''' Monday, September 19, 2016 - 5:30 PM

'''Topic: ''' Web Attacker’s Toolkit: An in depth analysis of RFI in the wild

'''Who:''' Tony Lauro is a Lead Sr. Enterprise Security Architect for Akamai's Web Security division.

'''Where:''' Akamai - 15950 Dallas Parkway, Dallas, TX

== August Meeting ==
'''When:''' Tuesday, August 16, 2016 - 5:30 PM

'''Topic: ''' OWASP Dallas August Social

'''Who:''' Dallas OWASP Community

'''Where:''' Braindead Brewing - 2625 Main St, Dallas, TX

== July Meeting ==
'''When:''' Tuesday, July 19, 2016 - 5:30 PM

'''Topic: ''' Pen Testing with Powershell

'''Who:''' Rajganesh Pandurangan is a Lead Managing Consultant at US Bank and the creator of Web Application Exploitation Distro (http://www.waed.info)

'''Where:''' 6011 Connection Drive, Irving, TX 75039, Dallas, TX - Goldman Sachs

'''Materials''': [[Media:OWASP-pentest-with-powershell.pptx]]

== June Meeting ==
'''When:''' Tuesday, June 21, 2016 - 5:30 PM

'''Topic: ''' Web App Testing Stats Compared to The OWASP Top 10

'''Who:''' Joel Scambray is a Principal at Cigital.

'''Where:''' 8000 Dominion Pkwy, Plano, TX - Capital One

'''Materials''': [[Media:Cigital_Top10_DallasOWASP-062116.pdf]]

== May Meeting ==
'''When:''' Tuesday, May 17, 2016 - 5:30 PM

'''Topic: ''' Can we do better than Passwords?

'''Who:''' Dr. Girish Chiruvolu, CISSP, CISM is Director, Information security and Risk Management at Thomson Reuters, Carrollton TX.

'''Where:''' 6011 Connection Drive, Irving, TX 75039 - Goldman Sachs.

'''Materials''': [[Media:OWASP_May17th_Password-less-logins.pdf]]

== April Meeting ==
'''When:''' Tuesday, April 19, 2016 - 5:30 PM

'''Topic: ''' OWASP Happy Hour

'''Who:''' OWASP Dallas Members

'''Where:''' Humperdinks NW Highway - 2208 W Northwest Hwy, Dallas, TX

== March Meeting ==
'''When:''' Tuesday, March 15, 2016 - 5:30 PM

'''Topic: ''' Integrating Security into the Software/System Development Life Cycle (SDLC) Process—Myths and Facts

'''Who:''' Rick Brunner is an Assistant Faculty member at Collin College and is an active member of Collin’s Cyber Security Advisory Board.

'''Where:''' Epsilon - 6021 Connection Drive, Irving, TX.

'''Materials''': [[Media:March_2016_OWASP_-_Secure_SDLC_Presentation_and_Related_Material.zip]]

== February Meeting ==
'''When:''' Wednesday, February 17, 2016 - 5:30 PM

'''Topic: ''' DNS Attack Vectors

'''Who:''' John Devasia is a Senior Product Manager in the Cloud Security BU at Akamai Technologies.

'''Where:''' 6011 Connection Drive, Irving, TX 75039 - Goldman Sachs.

== January Meeting ==
'''When:''' Tuesday, January 19, 2016 - 5:30 PM

'''Topic: ''' Bountiful Bugs and DRM Breakage

'''Who:''' Dave Ferguson is a Solution Architect at Qualys and has been a specialist in Application Security since 2006.

'''Where:''' 6011 Connection Drive, Irving, TX 75039 - Goldman Sachs.

== November Meeting ==
'''When:''' Tuesday, November 17th, 2015 from 5:30 PM – ?:?? PM

'''Topic: ''' OWASP Dallas Happy Hour

'''Where:''' Mexican Sugar at Shops at Legacy - 7501 Lone Star Drive, Suite 8150, Plano, TX

== October Meeting ==
'''When:''' Wednesday October 7th, 2015 from 11:30 AM – 1:00 PM

'''Topic: ''' Anatomy of a Logic Flaw

'''Who:''' Charles Henderson is the Vice President of Managed Security Testing at Trustwave.

'''Where:''' 6011 Connection Drive, Irving, TX 75039.

== September Meeting ==
'''When:''' Thursday September 17th, 2015 from 5:30PM – 6:30 PM

'''Topic: ''' Application Security Trends

'''Who:''' Stephen Pasco is a Vice President of Application Risk at Goldman Sachs

'''Where:''' 6011 Connection Drive, Irving, TX 75039.

== May Meeting ==
'''When:''' Wednesday May 6, 2015 from 11:30 AM – 1:00 PM

'''Topic: ''' The Future of Mobile Payments: Secure Mobile Architecture

'''Who:''' Denis M. Sheridan is a Managing Consultant at Cigital.

'''Where:''' North Lake College Central Campus, 5001 North MacArthur Boulevard, Irving, Texas 75038, Room: A-215

== October Meeting ==
'''When:''' Wednesday October 1, 2014 from 11:30 AM – 1:00 PM

'''Topic: '''Succeeding with Enterprise Software Security Key Performance Indicators

'''Who:''' Rafal Los, Director, Office of the CISO

'''Where:''' Richland College, 12800 Abrams Road, Dallas, TX 75243, Room: Sabine Hall: SH117

== March Meeting ==
'''When:''' Wednesday March 5, 2014 from 11:30 AM – 1:00 PM

'''Topic: ''' OWASP Dallas basic Python tutorial

'''Who:''' Matt Parsons, CISSP MSM

'''Where:''' Richland College, 12800 Abrams Road, Dallas, TX 75243, Room: Sabine Hall: SH117

== September Meeting ==
'''When:''' Wednesday September 11, 2013 from 11:30 AM – 1:00 PM

'''Topic: ''' PCI Mobile Payment Acceptance Security Guidelines for Developers

'''Who:''' Ralph Spencer Poore, Director, Emerging Standards at PCI Security Standards Council

'''Where:''' Richland College, 12800 Abrams Road, Dallas, TX 75243, Room: Sabine Hall: SH117

'''Slides''': [[Media:Dallas OWASP 9-11-2013.pdf]]

== May Meeting ==
'''When:''' Wednesday May 8, 2013 from 11:30 AM – 1:00 PM

'''Topic: ''' Implementation Patterns for Software Security Programs

'''Who:''' Dan Cornell, Principal, Denim Group

'''Where:''' Richland College, 12800 Abrams Road, Dallas, TX 75243, Room: Sabine Hall: SH117

[http://www.richlandcollege.edu/map/ Map]

== February Meeting ==
'''When:''' Wednesday February 6, 2013 from 11:30 AM – 1:00 PM

'''Topic: ''' Using Webappsec Vulns to Break Censorship

'''Who:''' Robert Hansen, a.k.a. rsnake

'''Where:''' Richland College, 12800 Abrams Road, Dallas, TX 75243, Room: Sabine Hall: SH117

[http://www.richlandcollege.edu/map/ Map]

__NOTOC__
<headertabs></headertabs>

[[Category:Texas]]

2019-03-15T20:39:11Z

Jeromme Lawler:

Dallas

2019-02-13T22:56:57Z

Jeromme Lawler:

{{Chapter Template|chaptername=Dallas|extra=The chapter leaders are

Chapter Lead- [mailto:dsheridan@cigital.com Denis Sheridan]

Board Member- [mailto:jeromme.lawler@guggenheimpartners.com Jeromme Lawler]
 
|mailinglistsite=http://lists.owasp.org/mailman/listinfo/owasp-dallas|emailarchives=http://lists.owasp.org/pipermail/owasp-dallas}}

== Get Connected and Stay Connected ==

In addition to our [http://bit.ly/fWT3pN Mailing List] we also have a [http://bit.ly/eHEW6O Dallas OWASP Twitter Feed] a [http://on.fb.me/fHr5XY Dallas OWASP Facebook Page] and a [http://linkd.in/g3WxGG Dallas OWASP Linkedin Group]. We invite you to join or follow whichever groups suit you, get involved with your fellow Dallas OWASP Chapter members, and we'll keep them all up to date with the latest official news and announcements from the chapter leadership.

'''Click any of the links below to visit the corresponding Dallas OWASP social networking groups:'''

{| cellspacing="15"
|-
| [[Image:Join the list.png|150px|link=http://bit.ly/fWT3pN]]
| [[Image:Follow-us-on-twitter.png|175px|link=http://bit.ly/eHEW6O]]
| [[Image:Join-us-on-Facebook.jpg|175px|link=http://on.fb.me/fHr5XY]]
| [[Image:Linkedin-button.gif|135px|link=http://linkd.in/g3WxGG]]
| [[Image:meetup-button.png|108px|link=https://www.meetup.com/Dallas-The-Open-Web-Application-Security-Project-Meetup/]]
|}

=== Announcements ===

== February Meeting ==

'''When:''' Tuesday, February 19, 2019 - 6:00 PM

'''Topic: ''' Threat-modeling legacy Cloud Applications

Even the most conservative enterprises are looking towards cloud computing platforms to reduce cost of ownership in their data-centers.
* The good news: most never got good at patching or writing firewall rules so hopefully they can offload that overhead to their cloud service provider.
* The bad news: very little refactoring of these applications is going to happen during the life-and-shift phase.
* The really bad news: this is going to be easy compared to when we get buried in cloud-to-cloud or multi-cloud security issues.

To support this effort, the most critical skill is Architecture Risk Analysis (ARA) sometimes referred to as Threat Modeling or simply secure design review. This talk will provide a quick primer on ARA methodology and add context on how to focus efforts on the risks inherent to these migrations.

'''Who:'''

Kevin Nassery is a Senior Principal Consultant at Synopsys where he leads the Software Security Initiatives (SSI) practice, and acts as the operations director for the BSIMM project. With 20+ years of experience building and breaking information systems, he currently specializes in software security program design, infrastructure security, and security architecture. Kevin holds a MS from Depaul University where his focus was on telecommunications security and network protocol design.

'''Where:''' Epsilon - 6021 Connection Drive - Irving, TX

Please sign in at the lobby.

The meeting food & drinks will be sponsored by OWASP Dallas.

IMPORTANT Meeting Notes:

This office is a gun-free zone. Please do not attempt to bring in any guns, holsters, ammo, etc. into their office space.

=== Previous Meetings ===

== January Meeting ==

'''When:''' Tuesday, January 15, 2019 - 6:00 PM

'''Topic: ''' Container and Container-Aware Security

'''Who:'''

Travis Stanfield, Senior Director of Software Engineering at Capital One

Liam Randall, President and Co-Founder of Critical Stack

'''Where:''' Capital One - 8000 Dominion Pkwy - Plano, TX

[[Media:OWASP_dallas_Jan_2019.zip]]

== November Meeting ==

'''When:''' Tuesday, November 13, 2018 - 6:00 PM

'''Topic: ''' Securing Containers on the High Seas

'''Who:''' Jack Mannino is the CEO of nVisium.

'''Where:''' Capital One - 8000 Dominion Pkwy - Plano, TX

== September Meeting ==

'''When:''' Tuesday, September 18, 2018 - 6:00 PM

'''Topic: ''' Security Shift Left! Enable, Protect, and Execute.

'''Who:''' Teddi Poehls, currently working as a Senior Sales Engineer for Signal Sciences

'''Where:''' Epsilon - 6021 Connection Drive, Irving, TX

== August Meeting ==

'''When:''' Tuesday, August 21, 2018 - 6:00 PM

'''Topic: ''' Tangled Web

'''Who:''' Herb has worked for State Farm for over 26 years. He is currently a member of the Security Analytics/Threat hunting team.

'''Where:''' State Farm Insurance - 3661 N. Plano Rd. Suite 1000, Richardson, TX

== July Meeting ==

'''When:''' Tuesday, July 17, 2018 - 6:00 PM

'''Topic: ''' Interactive Capture the Flag (CTF) Introduction

'''Who:''' Gabriel Lawrence is the General Manager of Cyber-Protection at Toyota

'''Where:''' Toyota Motor North America, Inc. - 6565 Headquarters Drive, Plano, TX

== June Meeting ==

'''When:''' Tuesday, June 19, 2018 - 6:00 PM

'''Topic: ''' Cloud Jacking

'''Who:''' Bryan McAninch is a cybersecurity professional with over twenty years experience in various disciplines including digital forensics, penetration testing, and security architecture.

'''Where:''' Toyota Motor North America, Inc. - 6565 Headquarters Drive, Plano, TX

== April Meeting ==

'''When:''' Tuesday, April 17, 2018 - 6:00 PM

'''Topic: ''' Viewing the Nodes in the Noise: Leveraging Data Science to Discover Persistent Threats

'''Who:''' David Evenden is an experienced offensive security operator/analyst with over 10 years of active work experience inside the Intelligence Community (IC).

'''Where:''' Allstate - 8711 N. Freeport Parkway - Irving, TX

== March Meeting ==

'''When:''' Tuesday, March 20, 2018 - 6:00 PM

'''Topic: ''' DevSecOps Unplugged

'''Who:''' Vishal Asthana, CISSP has been with Security Compass for over 4 years

'''Where:''' Akamai - 15950 Dallas Parkway - Dallas, TX

== February Meeting ==

'''When:''' Tuesday, February 20, 2018 - 6:00 PM

'''Topic: ''' Bugs in the Blockchain and “Contractual” Vulnerability

'''Who:''' Stark Riedesel is a software security consultant working for Synopsys here in the Dallas area.

'''Where:''' Alliance Data Systems - 7500 Dallas Parkway 7th Floor, Plano, TX

'''Materials''': [[Media:Bugs_in_the_Blockchain.pptx]]

== January Meeting ==

'''When:''' Tuesday, January 16, 2018 - 6:00 PM

'''Topic: ''' OWASP Top 10 2017

'''Who:''' Andrew van der Stock is a Senior Principal Consultant with Synopsys.

'''Where:''' Toyota Motor North America, Inc. - 6565 Headquarters Drive · Plano

== October Meeting ==
'''When:''' Tuesday, October 10, 2017 - 6:00 PM

'''Topic: ''' Application Security in the DevOps World

'''Who:''' Apoorva Phadke is a Senior Security Consultant at Synopsys.

'''Where:''' Akamai - 15950 Dallas Parkway, Dallas, TX

== September Meeting ==
'''When:''' Wednesday, September 13, 2017 - 6:00 PM

'''Topic: ''' Automate All The Things

'''Who:''' Matt Konda, CEO of Jemurai. Jemurai is a consulting firm specializing in application security.

'''Where:''' Epsilon - 6021 Connection Drive, Irving, TX

== August Meeting ==
'''When:''' Wednesday, August 15, 2017 - 6:00 PM

'''Topic: ''' Making Vulnerability Management Less Painful with OWASP DefectDojo

'''Who:''' Greg Anderson is a security professional and creator of DefectDojo

'''Where:''' Intuit

'''Materials:''' https://docs.google.com/presentation/d/1DnV-e6TWoH0YexZJpPQeRTD0eeHwWpmsSu-MRjMczwQ/edit?usp=sharing

== July Meeting ==
'''When:''' Wednesday, July 19, 2017 - 6:00 PM

'''Topic: ''' IoT Security Landscape: Survey & Analysis

'''Who:''' Mark Szewczul, CISSP, is an IoT Security Architect at Zimperium

'''Where:''' Goldman Sachs - 6011 Connection Drive, Irving, TX 75039, Dallas, TX

== June Meeting ==
'''When:''' Tuesday, June 20, 2017 - 6:00 PM

'''Topic: ''' From Hot Rodding to Hacking, Securing the Modern Automobile

'''Who:''' Art Dahnert is a Managing Consultant who has over 19 years of experience in the software industry with over 8 years Application Security experience.

'''Where:''' Toyota - 5360 Legacy Drive, Building 1, 2nd Floor, Plano, TX

'''Materials''': [[media:Hot_Rodding_and_Hacking_v3.pdf]]

== May Meeting ==
'''When:''' Tuesday, May 16, 2017 - 6:00 PM

'''Topic: ''' OWASP Dallas Social

'''Who:''' OWASP Dallas

'''Where:''' Dots Hop House & Cocktail Courtyard - 2645 Commerce Street , Dallas, TX (map)

== April Meeting ==
'''When:''' Monday, April 17, 2017 - 6:00 PM

'''Topic: ''' AWS Security: Staying on Top of the Cloud

'''Who:''' Kurtis Miller is a Principal Security Consultant for NCC Group, North America.

'''Where:''' Goldman Sachs - 6011 Connection Drive, Irving, TX 75039, Dallas, TX

'''Materials''': [[media:AWS_Security_-_Staying_on_Top_of_the_Cloud.pdf]]

== March Meeting ==
'''When:''' Tuesday, March 21, 2017 - 6:00 PM

'''Topic: ''' Secrets Revealed: How Your Competitors are Scaling Application Security

'''Who:''' Nishchal Bhalla, is a noted expert, speaker and a published author who has been in the information security field for two decades.

'''Where:''' Intuit, Inc. - 5601 Headquarters Dr, Plano, TX

'''Materials''': [[media:2017.03_OWASP_Dallas_Presentation_v5.pdf ]] [https://www.securitycompass.com/managingapplicationsecurity2017/ (More Info)]

== February Meeting ==
'''When:''' Tuesday, February 21, 2017 - 6:00 PM

'''Topic: ''' Secure Architecture In The Land of Microservices

'''Who:''' Jack is the CEO at nVisium and focuses on building solutions to make security and education scale in fast-paced software development organizations.

'''Where:''' 8000 Dominion Pkwy, Plano, TX - Capital One

'''Materials''': [[Media:Microservice_Security.pdf]]

== January Meeting ==
'''When:''' January 17 - 6:00 PM

'''Topic: ''' Helping Developers Embrace Security with OWASP Tools

'''Who:''' Joseph Konieczka is a Lead Technology Solutions Specialist on the Remedy on Demand infrastructure team at BMC Software.

'''Where:''' 6011 Connection Drive, Irving, TX 75039, Dallas, TX - Goldman Sachs

== November Meeting ==
'''When:''' Tuesday, November 8, 2016 - 5:30 PM

'''Topic: ''' Privacy Preserving Big Data Analytics

'''Who:''' Hassan Takabi is Assistant Professor of Computer Science and Engineering at the University of North Texas, Denton, TX, USA.

'''Where:''' Epsilon - 6021 Connection Drive, Irving, TX

== October Meeting ==
'''When:''' Monday, October 17, 2016 - 5:30 PM

'''Topic: ''' NoSQL: "No Injections" or "No Security"?

'''Who:''' Stark Riedesel is a Security Consultant for Cigital, an industry leader in application security.

'''Where:''' Akamai - 15950 Dallas Parkway, Dallas, TX

== September Meeting ==
'''When:''' Monday, September 19, 2016 - 5:30 PM

'''Topic: ''' Web Attacker’s Toolkit: An in depth analysis of RFI in the wild

'''Who:''' Tony Lauro is a Lead Sr. Enterprise Security Architect for Akamai's Web Security division.

'''Where:''' Akamai - 15950 Dallas Parkway, Dallas, TX

== August Meeting ==
'''When:''' Tuesday, August 16, 2016 - 5:30 PM

'''Topic: ''' OWASP Dallas August Social

'''Who:''' Dallas OWASP Community

'''Where:''' Braindead Brewing - 2625 Main St, Dallas, TX

== July Meeting ==
'''When:''' Tuesday, July 19, 2016 - 5:30 PM

'''Topic: ''' Pen Testing with Powershell

'''Who:''' Rajganesh Pandurangan is a Lead Managing Consultant at US Bank and the creator of Web Application Exploitation Distro (http://www.waed.info)

'''Where:''' 6011 Connection Drive, Irving, TX 75039, Dallas, TX - Goldman Sachs

'''Materials''': [[Media:OWASP-pentest-with-powershell.pptx]]

== June Meeting ==
'''When:''' Tuesday, June 21, 2016 - 5:30 PM

'''Topic: ''' Web App Testing Stats Compared to The OWASP Top 10

'''Who:''' Joel Scambray is a Principal at Cigital.

'''Where:''' 8000 Dominion Pkwy, Plano, TX - Capital One

'''Materials''': [[Media:Cigital_Top10_DallasOWASP-062116.pdf]]

== May Meeting ==
'''When:''' Tuesday, May 17, 2016 - 5:30 PM

'''Topic: ''' Can we do better than Passwords?

'''Who:''' Dr. Girish Chiruvolu, CISSP, CISM is Director, Information security and Risk Management at Thomson Reuters, Carrollton TX.

'''Where:''' 6011 Connection Drive, Irving, TX 75039 - Goldman Sachs.

'''Materials''': [[Media:OWASP_May17th_Password-less-logins.pdf]]

== April Meeting ==
'''When:''' Tuesday, April 19, 2016 - 5:30 PM

'''Topic: ''' OWASP Happy Hour

'''Who:''' OWASP Dallas Members

'''Where:''' Humperdinks NW Highway - 2208 W Northwest Hwy, Dallas, TX

== March Meeting ==
'''When:''' Tuesday, March 15, 2016 - 5:30 PM

'''Topic: ''' Integrating Security into the Software/System Development Life Cycle (SDLC) Process—Myths and Facts

'''Who:''' Rick Brunner is an Assistant Faculty member at Collin College and is an active member of Collin’s Cyber Security Advisory Board.

'''Where:''' Epsilon - 6021 Connection Drive, Irving, TX.

'''Materials''': [[Media:March_2016_OWASP_-_Secure_SDLC_Presentation_and_Related_Material.zip]]

== February Meeting ==
'''When:''' Wednesday, February 17, 2016 - 5:30 PM

'''Topic: ''' DNS Attack Vectors

'''Who:''' John Devasia is a Senior Product Manager in the Cloud Security BU at Akamai Technologies.

'''Where:''' 6011 Connection Drive, Irving, TX 75039 - Goldman Sachs.

== January Meeting ==
'''When:''' Tuesday, January 19, 2016 - 5:30 PM

'''Topic: ''' Bountiful Bugs and DRM Breakage

'''Who:''' Dave Ferguson is a Solution Architect at Qualys and has been a specialist in Application Security since 2006.

'''Where:''' 6011 Connection Drive, Irving, TX 75039 - Goldman Sachs.

== November Meeting ==
'''When:''' Tuesday, November 17th, 2015 from 5:30 PM – ?:?? PM

'''Topic: ''' OWASP Dallas Happy Hour

'''Where:''' Mexican Sugar at Shops at Legacy - 7501 Lone Star Drive, Suite 8150, Plano, TX

== October Meeting ==
'''When:''' Wednesday October 7th, 2015 from 11:30 AM – 1:00 PM

'''Topic: ''' Anatomy of a Logic Flaw

'''Who:''' Charles Henderson is the Vice President of Managed Security Testing at Trustwave.

'''Where:''' 6011 Connection Drive, Irving, TX 75039.

== September Meeting ==
'''When:''' Thursday September 17th, 2015 from 5:30PM – 6:30 PM

'''Topic: ''' Application Security Trends

'''Who:''' Stephen Pasco is a Vice President of Application Risk at Goldman Sachs

'''Where:''' 6011 Connection Drive, Irving, TX 75039.

== May Meeting ==
'''When:''' Wednesday May 6, 2015 from 11:30 AM – 1:00 PM

'''Topic: ''' The Future of Mobile Payments: Secure Mobile Architecture

'''Who:''' Denis M. Sheridan is a Managing Consultant at Cigital.

'''Where:''' North Lake College Central Campus, 5001 North MacArthur Boulevard, Irving, Texas 75038, Room: A-215

== October Meeting ==
'''When:''' Wednesday October 1, 2014 from 11:30 AM – 1:00 PM

'''Topic: '''Succeeding with Enterprise Software Security Key Performance Indicators

'''Who:''' Rafal Los, Director, Office of the CISO

'''Where:''' Richland College, 12800 Abrams Road, Dallas, TX 75243, Room: Sabine Hall: SH117

== March Meeting ==
'''When:''' Wednesday March 5, 2014 from 11:30 AM – 1:00 PM

'''Topic: ''' OWASP Dallas basic Python tutorial

'''Who:''' Matt Parsons, CISSP MSM

'''Where:''' Richland College, 12800 Abrams Road, Dallas, TX 75243, Room: Sabine Hall: SH117

== September Meeting ==
'''When:''' Wednesday September 11, 2013 from 11:30 AM – 1:00 PM

'''Topic: ''' PCI Mobile Payment Acceptance Security Guidelines for Developers

'''Who:''' Ralph Spencer Poore, Director, Emerging Standards at PCI Security Standards Council

'''Where:''' Richland College, 12800 Abrams Road, Dallas, TX 75243, Room: Sabine Hall: SH117

'''Slides''': [[Media:Dallas OWASP 9-11-2013.pdf]]

== May Meeting ==
'''When:''' Wednesday May 8, 2013 from 11:30 AM – 1:00 PM

'''Topic: ''' Implementation Patterns for Software Security Programs

'''Who:''' Dan Cornell, Principal, Denim Group

'''Where:''' Richland College, 12800 Abrams Road, Dallas, TX 75243, Room: Sabine Hall: SH117

[http://www.richlandcollege.edu/map/ Map]

== February Meeting ==
'''When:''' Wednesday February 6, 2013 from 11:30 AM – 1:00 PM

'''Topic: ''' Using Webappsec Vulns to Break Censorship

'''Who:''' Robert Hansen, a.k.a. rsnake

'''Where:''' Richland College, 12800 Abrams Road, Dallas, TX 75243, Room: Sabine Hall: SH117

[http://www.richlandcollege.edu/map/ Map]

__NOTOC__
<headertabs></headertabs>

[[Category:Texas]]

Dallas

2019-02-05T03:49:13Z

Jeromme Lawler:

{{Chapter Template|chaptername=Dallas|extra=The chapter leaders are

Chapter Lead- [mailto:dsheridan@cigital.com Denis Sheridan]

Board Member- [mailto:jeromme.lawler@guggenheimpartners.com Jeromme Lawler]
 
|mailinglistsite=http://lists.owasp.org/mailman/listinfo/owasp-dallas|emailarchives=http://lists.owasp.org/pipermail/owasp-dallas}}

== Get Connected and Stay Connected ==

In addition to our [http://bit.ly/fWT3pN Mailing List] we also have a [http://bit.ly/eHEW6O Dallas OWASP Twitter Feed] a [http://on.fb.me/fHr5XY Dallas OWASP Facebook Page] and a [http://linkd.in/g3WxGG Dallas OWASP Linkedin Group]. We invite you to join or follow whichever groups suit you, get involved with your fellow Dallas OWASP Chapter members, and we'll keep them all up to date with the latest official news and announcements from the chapter leadership.

'''Click any of the links below to visit the corresponding Dallas OWASP social networking groups:'''

{| cellspacing="15"
|-
| [[Image:Join the list.png|150px|link=http://bit.ly/fWT3pN]]
| [[Image:Follow-us-on-twitter.png|175px|link=http://bit.ly/eHEW6O]]
| [[Image:Join-us-on-Facebook.jpg|175px|link=http://on.fb.me/fHr5XY]]
| [[Image:Linkedin-button.gif|135px|link=http://linkd.in/g3WxGG]]
| [[Image:meetup-button.png|108px|link=https://www.meetup.com/Dallas-The-Open-Web-Application-Security-Project-Meetup/]]
|}

=== Announcements ===

== February Meeting ==

'''When:''' Tuesday, February 19, 2019 - 6:00 PM

'''Topic: ''' Threat-modeling legacy Cloud Applications

Even the most conservative enterprises are looking towards cloud computing platforms to reduce cost of ownership in their data-centers.
* The good news: most never got good at patching or writing firewall rules so hopefully they can offload that overhead to their cloud service provider.
* The bad news: very little refactoring of these applications is going to happen during the life-and-shift phase.
* The really bad news: this is going to be easy compared to when we get buried in cloud-to-cloud or multi-cloud security issues.

To support this effort, the most critical skill is Architecture Risk Analysis (ARA) sometimes referred to as Threat Modeling or simply secure design review. This talk will provide a quick primer on ARA methodology and add context on how to focus efforts on the risks inherent to these migrations.

'''Who:'''

Kevin Nassery is a Senior Principal Consultant at Synopsys where he leads the Software Security Initiatives (SSI) practice, and acts as the operations director for the BSIMM project. With 20+ years of experience building and breaking information systems, he currently specializes in software security program design, infrastructure security, and security architecture. Kevin holds a MS from Depaul University where his focus was on telecommunications security and network protocol design.

'''Where:''' Venue location TBD

The meeting food & drinks will be sponsored by TBD.

IMPORTANT Meeting Notes:

This office is a gun-free zone. Please do not attempt to bring in any guns, holsters, ammo, etc. into their office space.

=== Previous Meetings ===

== January Meeting ==

'''When:''' Tuesday, January 15, 2019 - 6:00 PM

'''Topic: ''' Container and Container-Aware Security

'''Who:'''

Travis Stanfield, Senior Director of Software Engineering at Capital One

Liam Randall, President and Co-Founder of Critical Stack

'''Where:''' Capital One - 8000 Dominion Pkwy - Plano, TX

[[Media:OWASP_dallas_Jan_2019.zip]]

== November Meeting ==

'''When:''' Tuesday, November 13, 2018 - 6:00 PM

'''Topic: ''' Securing Containers on the High Seas

'''Who:''' Jack Mannino is the CEO of nVisium.

'''Where:''' Capital One - 8000 Dominion Pkwy - Plano, TX

== September Meeting ==

'''When:''' Tuesday, September 18, 2018 - 6:00 PM

'''Topic: ''' Security Shift Left! Enable, Protect, and Execute.

'''Who:''' Teddi Poehls, currently working as a Senior Sales Engineer for Signal Sciences

'''Where:''' Epsilon - 6021 Connection Drive, Irving, TX

== August Meeting ==

'''When:''' Tuesday, August 21, 2018 - 6:00 PM

'''Topic: ''' Tangled Web

'''Who:''' Herb has worked for State Farm for over 26 years. He is currently a member of the Security Analytics/Threat hunting team.

'''Where:''' State Farm Insurance - 3661 N. Plano Rd. Suite 1000, Richardson, TX

== July Meeting ==

'''When:''' Tuesday, July 17, 2018 - 6:00 PM

'''Topic: ''' Interactive Capture the Flag (CTF) Introduction

'''Who:''' Gabriel Lawrence is the General Manager of Cyber-Protection at Toyota

'''Where:''' Toyota Motor North America, Inc. - 6565 Headquarters Drive, Plano, TX

== June Meeting ==

'''When:''' Tuesday, June 19, 2018 - 6:00 PM

'''Topic: ''' Cloud Jacking

'''Who:''' Bryan McAninch is a cybersecurity professional with over twenty years experience in various disciplines including digital forensics, penetration testing, and security architecture.

'''Where:''' Toyota Motor North America, Inc. - 6565 Headquarters Drive, Plano, TX

== April Meeting ==

'''When:''' Tuesday, April 17, 2018 - 6:00 PM

'''Topic: ''' Viewing the Nodes in the Noise: Leveraging Data Science to Discover Persistent Threats

'''Who:''' David Evenden is an experienced offensive security operator/analyst with over 10 years of active work experience inside the Intelligence Community (IC).

'''Where:''' Allstate - 8711 N. Freeport Parkway - Irving, TX

== March Meeting ==

'''When:''' Tuesday, March 20, 2018 - 6:00 PM

'''Topic: ''' DevSecOps Unplugged

'''Who:''' Vishal Asthana, CISSP has been with Security Compass for over 4 years

'''Where:''' Akamai - 15950 Dallas Parkway - Dallas, TX

== February Meeting ==

'''When:''' Tuesday, February 20, 2018 - 6:00 PM

'''Topic: ''' Bugs in the Blockchain and “Contractual” Vulnerability

'''Who:''' Stark Riedesel is a software security consultant working for Synopsys here in the Dallas area.

'''Where:''' Alliance Data Systems - 7500 Dallas Parkway 7th Floor, Plano, TX

'''Materials''': [[Media:Bugs_in_the_Blockchain.pptx]]

== January Meeting ==

'''When:''' Tuesday, January 16, 2018 - 6:00 PM

'''Topic: ''' OWASP Top 10 2017

'''Who:''' Andrew van der Stock is a Senior Principal Consultant with Synopsys.

'''Where:''' Toyota Motor North America, Inc. - 6565 Headquarters Drive · Plano

== October Meeting ==
'''When:''' Tuesday, October 10, 2017 - 6:00 PM

'''Topic: ''' Application Security in the DevOps World

'''Who:''' Apoorva Phadke is a Senior Security Consultant at Synopsys.

'''Where:''' Akamai - 15950 Dallas Parkway, Dallas, TX

== September Meeting ==
'''When:''' Wednesday, September 13, 2017 - 6:00 PM

'''Topic: ''' Automate All The Things

'''Who:''' Matt Konda, CEO of Jemurai. Jemurai is a consulting firm specializing in application security.

'''Where:''' Epsilon - 6021 Connection Drive, Irving, TX

== August Meeting ==
'''When:''' Wednesday, August 15, 2017 - 6:00 PM

'''Topic: ''' Making Vulnerability Management Less Painful with OWASP DefectDojo

'''Who:''' Greg Anderson is a security professional and creator of DefectDojo

'''Where:''' Intuit

'''Materials:''' https://docs.google.com/presentation/d/1DnV-e6TWoH0YexZJpPQeRTD0eeHwWpmsSu-MRjMczwQ/edit?usp=sharing

== July Meeting ==
'''When:''' Wednesday, July 19, 2017 - 6:00 PM

'''Topic: ''' IoT Security Landscape: Survey & Analysis

'''Who:''' Mark Szewczul, CISSP, is an IoT Security Architect at Zimperium

'''Where:''' Goldman Sachs - 6011 Connection Drive, Irving, TX 75039, Dallas, TX

== June Meeting ==
'''When:''' Tuesday, June 20, 2017 - 6:00 PM

'''Topic: ''' From Hot Rodding to Hacking, Securing the Modern Automobile

'''Who:''' Art Dahnert is a Managing Consultant who has over 19 years of experience in the software industry with over 8 years Application Security experience.

'''Where:''' Toyota - 5360 Legacy Drive, Building 1, 2nd Floor, Plano, TX

'''Materials''': [[media:Hot_Rodding_and_Hacking_v3.pdf]]

== May Meeting ==
'''When:''' Tuesday, May 16, 2017 - 6:00 PM

'''Topic: ''' OWASP Dallas Social

'''Who:''' OWASP Dallas

'''Where:''' Dots Hop House & Cocktail Courtyard - 2645 Commerce Street , Dallas, TX (map)

== April Meeting ==
'''When:''' Monday, April 17, 2017 - 6:00 PM

'''Topic: ''' AWS Security: Staying on Top of the Cloud

'''Who:''' Kurtis Miller is a Principal Security Consultant for NCC Group, North America.

'''Where:''' Goldman Sachs - 6011 Connection Drive, Irving, TX 75039, Dallas, TX

'''Materials''': [[media:AWS_Security_-_Staying_on_Top_of_the_Cloud.pdf]]

== March Meeting ==
'''When:''' Tuesday, March 21, 2017 - 6:00 PM

'''Topic: ''' Secrets Revealed: How Your Competitors are Scaling Application Security

'''Who:''' Nishchal Bhalla, is a noted expert, speaker and a published author who has been in the information security field for two decades.

'''Where:''' Intuit, Inc. - 5601 Headquarters Dr, Plano, TX

'''Materials''': [[media:2017.03_OWASP_Dallas_Presentation_v5.pdf ]] [https://www.securitycompass.com/managingapplicationsecurity2017/ (More Info)]

== February Meeting ==
'''When:''' Tuesday, February 21, 2017 - 6:00 PM

'''Topic: ''' Secure Architecture In The Land of Microservices

'''Who:''' Jack is the CEO at nVisium and focuses on building solutions to make security and education scale in fast-paced software development organizations.

'''Where:''' 8000 Dominion Pkwy, Plano, TX - Capital One

'''Materials''': [[Media:Microservice_Security.pdf]]

== January Meeting ==
'''When:''' January 17 - 6:00 PM

'''Topic: ''' Helping Developers Embrace Security with OWASP Tools

'''Who:''' Joseph Konieczka is a Lead Technology Solutions Specialist on the Remedy on Demand infrastructure team at BMC Software.

'''Where:''' 6011 Connection Drive, Irving, TX 75039, Dallas, TX - Goldman Sachs

== November Meeting ==
'''When:''' Tuesday, November 8, 2016 - 5:30 PM

'''Topic: ''' Privacy Preserving Big Data Analytics

'''Who:''' Hassan Takabi is Assistant Professor of Computer Science and Engineering at the University of North Texas, Denton, TX, USA.

'''Where:''' Epsilon - 6021 Connection Drive, Irving, TX

== October Meeting ==
'''When:''' Monday, October 17, 2016 - 5:30 PM

'''Topic: ''' NoSQL: "No Injections" or "No Security"?

'''Who:''' Stark Riedesel is a Security Consultant for Cigital, an industry leader in application security.

'''Where:''' Akamai - 15950 Dallas Parkway, Dallas, TX

== September Meeting ==
'''When:''' Monday, September 19, 2016 - 5:30 PM

'''Topic: ''' Web Attacker’s Toolkit: An in depth analysis of RFI in the wild

'''Who:''' Tony Lauro is a Lead Sr. Enterprise Security Architect for Akamai's Web Security division.

'''Where:''' Akamai - 15950 Dallas Parkway, Dallas, TX

== August Meeting ==
'''When:''' Tuesday, August 16, 2016 - 5:30 PM

'''Topic: ''' OWASP Dallas August Social

'''Who:''' Dallas OWASP Community

'''Where:''' Braindead Brewing - 2625 Main St, Dallas, TX

== July Meeting ==
'''When:''' Tuesday, July 19, 2016 - 5:30 PM

'''Topic: ''' Pen Testing with Powershell

'''Who:''' Rajganesh Pandurangan is a Lead Managing Consultant at US Bank and the creator of Web Application Exploitation Distro (http://www.waed.info)

'''Where:''' 6011 Connection Drive, Irving, TX 75039, Dallas, TX - Goldman Sachs

'''Materials''': [[Media:OWASP-pentest-with-powershell.pptx]]

== June Meeting ==
'''When:''' Tuesday, June 21, 2016 - 5:30 PM

'''Topic: ''' Web App Testing Stats Compared to The OWASP Top 10

'''Who:''' Joel Scambray is a Principal at Cigital.

'''Where:''' 8000 Dominion Pkwy, Plano, TX - Capital One

'''Materials''': [[Media:Cigital_Top10_DallasOWASP-062116.pdf]]

== May Meeting ==
'''When:''' Tuesday, May 17, 2016 - 5:30 PM

'''Topic: ''' Can we do better than Passwords?

'''Who:''' Dr. Girish Chiruvolu, CISSP, CISM is Director, Information security and Risk Management at Thomson Reuters, Carrollton TX.

'''Where:''' 6011 Connection Drive, Irving, TX 75039 - Goldman Sachs.

'''Materials''': [[Media:OWASP_May17th_Password-less-logins.pdf]]

== April Meeting ==
'''When:''' Tuesday, April 19, 2016 - 5:30 PM

'''Topic: ''' OWASP Happy Hour

'''Who:''' OWASP Dallas Members

'''Where:''' Humperdinks NW Highway - 2208 W Northwest Hwy, Dallas, TX

== March Meeting ==
'''When:''' Tuesday, March 15, 2016 - 5:30 PM

'''Topic: ''' Integrating Security into the Software/System Development Life Cycle (SDLC) Process—Myths and Facts

'''Who:''' Rick Brunner is an Assistant Faculty member at Collin College and is an active member of Collin’s Cyber Security Advisory Board.

'''Where:''' Epsilon - 6021 Connection Drive, Irving, TX.

'''Materials''': [[Media:March_2016_OWASP_-_Secure_SDLC_Presentation_and_Related_Material.zip]]

== February Meeting ==
'''When:''' Wednesday, February 17, 2016 - 5:30 PM

'''Topic: ''' DNS Attack Vectors

'''Who:''' John Devasia is a Senior Product Manager in the Cloud Security BU at Akamai Technologies.

'''Where:''' 6011 Connection Drive, Irving, TX 75039 - Goldman Sachs.

== January Meeting ==
'''When:''' Tuesday, January 19, 2016 - 5:30 PM

'''Topic: ''' Bountiful Bugs and DRM Breakage

'''Who:''' Dave Ferguson is a Solution Architect at Qualys and has been a specialist in Application Security since 2006.

'''Where:''' 6011 Connection Drive, Irving, TX 75039 - Goldman Sachs.

== November Meeting ==
'''When:''' Tuesday, November 17th, 2015 from 5:30 PM – ?:?? PM

'''Topic: ''' OWASP Dallas Happy Hour

'''Where:''' Mexican Sugar at Shops at Legacy - 7501 Lone Star Drive, Suite 8150, Plano, TX

== October Meeting ==
'''When:''' Wednesday October 7th, 2015 from 11:30 AM – 1:00 PM

'''Topic: ''' Anatomy of a Logic Flaw

'''Who:''' Charles Henderson is the Vice President of Managed Security Testing at Trustwave.

'''Where:''' 6011 Connection Drive, Irving, TX 75039.

== September Meeting ==
'''When:''' Thursday September 17th, 2015 from 5:30PM – 6:30 PM

'''Topic: ''' Application Security Trends

'''Who:''' Stephen Pasco is a Vice President of Application Risk at Goldman Sachs

'''Where:''' 6011 Connection Drive, Irving, TX 75039.

== May Meeting ==
'''When:''' Wednesday May 6, 2015 from 11:30 AM – 1:00 PM

'''Topic: ''' The Future of Mobile Payments: Secure Mobile Architecture

'''Who:''' Denis M. Sheridan is a Managing Consultant at Cigital.

'''Where:''' North Lake College Central Campus, 5001 North MacArthur Boulevard, Irving, Texas 75038, Room: A-215

== October Meeting ==
'''When:''' Wednesday October 1, 2014 from 11:30 AM – 1:00 PM

'''Topic: '''Succeeding with Enterprise Software Security Key Performance Indicators

'''Who:''' Rafal Los, Director, Office of the CISO

'''Where:''' Richland College, 12800 Abrams Road, Dallas, TX 75243, Room: Sabine Hall: SH117

== March Meeting ==
'''When:''' Wednesday March 5, 2014 from 11:30 AM – 1:00 PM

'''Topic: ''' OWASP Dallas basic Python tutorial

'''Who:''' Matt Parsons, CISSP MSM

'''Where:''' Richland College, 12800 Abrams Road, Dallas, TX 75243, Room: Sabine Hall: SH117

== September Meeting ==
'''When:''' Wednesday September 11, 2013 from 11:30 AM – 1:00 PM

'''Topic: ''' PCI Mobile Payment Acceptance Security Guidelines for Developers

'''Who:''' Ralph Spencer Poore, Director, Emerging Standards at PCI Security Standards Council

'''Where:''' Richland College, 12800 Abrams Road, Dallas, TX 75243, Room: Sabine Hall: SH117

'''Slides''': [[Media:Dallas OWASP 9-11-2013.pdf]]

== May Meeting ==
'''When:''' Wednesday May 8, 2013 from 11:30 AM – 1:00 PM

'''Topic: ''' Implementation Patterns for Software Security Programs

'''Who:''' Dan Cornell, Principal, Denim Group

'''Where:''' Richland College, 12800 Abrams Road, Dallas, TX 75243, Room: Sabine Hall: SH117

[http://www.richlandcollege.edu/map/ Map]

== February Meeting ==
'''When:''' Wednesday February 6, 2013 from 11:30 AM – 1:00 PM

'''Topic: ''' Using Webappsec Vulns to Break Censorship

'''Who:''' Robert Hansen, a.k.a. rsnake

'''Where:''' Richland College, 12800 Abrams Road, Dallas, TX 75243, Room: Sabine Hall: SH117

[http://www.richlandcollege.edu/map/ Map]

__NOTOC__
<headertabs></headertabs>

[[Category:Texas]]

Dallas

2019-01-18T19:46:53Z

Jeromme Lawler:

{{Chapter Template|chaptername=Dallas|extra=The chapter leaders are

Chapter Lead- [mailto:dsheridan@cigital.com Denis Sheridan]

Board Member- [mailto:jeromme.lawler@guggenheimpartners.com Jeromme Lawler]
 
|mailinglistsite=http://lists.owasp.org/mailman/listinfo/owasp-dallas|emailarchives=http://lists.owasp.org/pipermail/owasp-dallas}}

== Get Connected and Stay Connected ==

In addition to our [http://bit.ly/fWT3pN Mailing List] we also have a [http://bit.ly/eHEW6O Dallas OWASP Twitter Feed] a [http://on.fb.me/fHr5XY Dallas OWASP Facebook Page] and a [http://linkd.in/g3WxGG Dallas OWASP Linkedin Group]. We invite you to join or follow whichever groups suit you, get involved with your fellow Dallas OWASP Chapter members, and we'll keep them all up to date with the latest official news and announcements from the chapter leadership.

'''Click any of the links below to visit the corresponding Dallas OWASP social networking groups:'''

{| cellspacing="15"
|-
| [[Image:Join the list.png|150px|link=http://bit.ly/fWT3pN]]
| [[Image:Follow-us-on-twitter.png|175px|link=http://bit.ly/eHEW6O]]
| [[Image:Join-us-on-Facebook.jpg|175px|link=http://on.fb.me/fHr5XY]]
| [[Image:Linkedin-button.gif|135px|link=http://linkd.in/g3WxGG]]
| [[Image:meetup-button.png|108px|link=https://www.meetup.com/Dallas-The-Open-Web-Application-Security-Project-Meetup/]]
|}

=== Announcements ===

== January Meeting ==

'''When:''' Tuesday, January 15, 2019 - 6:00 PM

'''Topic: ''' Container and Container-Aware Security

This talk will briefly introduce containerization and container orchestration. The main focus will be on security as a key value proposition for containerization and container-aware security.

'''Who:'''

Travis Stanfield, Senior Director of Software Engineering at Capital One

Travis is a seasoned technology executive, with 20 years of experience in technology design and development along with more than 10 years successfully leading teams. Travis was an award-winning engineer at Microsoft Corp and he was a Senior Software Architect for a successful start-up venture that ultimately grew to nearly $4 billion in valuation. In addition to his work with start-ups, Travis has experience with enterprise technology operating at-scale while consulting for Merrill Lynch, Fidelity Investments, Nasdaq and many others. Travis holds a MS in Computational Mathematics from Texas A&M at College Station.

Liam Randall, President and Co-Founder of Critical Stack

With a career spanning 20 years, Liam Randall has worked at every level of the information systems pipeline. In 2014, Liam, along with Dustin Webber, started Critical Stack. In just the first couple of years, Critical Stack has revolutionized the delivery of security capabilities through the creation of the Sensor Delivery Network, making Critical Stack into an internationally recognized brand with clients in 60+ countries. With Liam at the helm, Critical Stack will soon launch a product that brings secure containerized infrastructure to the modern enterprise.

'''Where:''' Capital One - 8000 Dominion Pkwy - Plano, TX

Building with TC out front.

The meeting food & drinks will be sponsored by Capital One.

IMPORTANT Meeting Notes:

This office is a gun-free zone. Please do not attempt to bring in any guns, holsters, ammo, etc. into their office space.

[[Media:OWASP_dallas_Jan_2019.zip]]

=== Previous Meetings ===

== November Meeting ==

'''When:''' Tuesday, November 13, 2018 - 6:00 PM

'''Topic: ''' Securing Containers on the High Seas

'''Who:''' Jack Mannino is the CEO of nVisium.

'''Where:''' Capital One - 8000 Dominion Pkwy - Plano, TX

== September Meeting ==

'''When:''' Tuesday, September 18, 2018 - 6:00 PM

'''Topic: ''' Security Shift Left! Enable, Protect, and Execute.

'''Who:''' Teddi Poehls, currently working as a Senior Sales Engineer for Signal Sciences

'''Where:''' Epsilon - 6021 Connection Drive, Irving, TX

== August Meeting ==

'''When:''' Tuesday, August 21, 2018 - 6:00 PM

'''Topic: ''' Tangled Web

'''Who:''' Herb has worked for State Farm for over 26 years. He is currently a member of the Security Analytics/Threat hunting team.

'''Where:''' State Farm Insurance - 3661 N. Plano Rd. Suite 1000, Richardson, TX

== July Meeting ==

'''When:''' Tuesday, July 17, 2018 - 6:00 PM

'''Topic: ''' Interactive Capture the Flag (CTF) Introduction

'''Who:''' Gabriel Lawrence is the General Manager of Cyber-Protection at Toyota

'''Where:''' Toyota Motor North America, Inc. - 6565 Headquarters Drive, Plano, TX

== June Meeting ==

'''When:''' Tuesday, June 19, 2018 - 6:00 PM

'''Topic: ''' Cloud Jacking

'''Who:''' Bryan McAninch is a cybersecurity professional with over twenty years experience in various disciplines including digital forensics, penetration testing, and security architecture.

'''Where:''' Toyota Motor North America, Inc. - 6565 Headquarters Drive, Plano, TX

== April Meeting ==

'''When:''' Tuesday, April 17, 2018 - 6:00 PM

'''Topic: ''' Viewing the Nodes in the Noise: Leveraging Data Science to Discover Persistent Threats

'''Who:''' David Evenden is an experienced offensive security operator/analyst with over 10 years of active work experience inside the Intelligence Community (IC).

'''Where:''' Allstate - 8711 N. Freeport Parkway - Irving, TX

== March Meeting ==

'''When:''' Tuesday, March 20, 2018 - 6:00 PM

'''Topic: ''' DevSecOps Unplugged

'''Who:''' Vishal Asthana, CISSP has been with Security Compass for over 4 years

'''Where:''' Akamai - 15950 Dallas Parkway - Dallas, TX

== February Meeting ==

'''When:''' Tuesday, February 20, 2018 - 6:00 PM

'''Topic: ''' Bugs in the Blockchain and “Contractual” Vulnerability

'''Who:''' Stark Riedesel is a software security consultant working for Synopsys here in the Dallas area.

'''Where:''' Alliance Data Systems - 7500 Dallas Parkway 7th Floor, Plano, TX

'''Materials''': [[Media:Bugs_in_the_Blockchain.pptx]]

== January Meeting ==

'''When:''' Tuesday, January 16, 2018 - 6:00 PM

'''Topic: ''' OWASP Top 10 2017

'''Who:''' Andrew van der Stock is a Senior Principal Consultant with Synopsys.

'''Where:''' Toyota Motor North America, Inc. - 6565 Headquarters Drive · Plano

== October Meeting ==
'''When:''' Tuesday, October 10, 2017 - 6:00 PM

'''Topic: ''' Application Security in the DevOps World

'''Who:''' Apoorva Phadke is a Senior Security Consultant at Synopsys.

'''Where:''' Akamai - 15950 Dallas Parkway, Dallas, TX

== September Meeting ==
'''When:''' Wednesday, September 13, 2017 - 6:00 PM

'''Topic: ''' Automate All The Things

'''Who:''' Matt Konda, CEO of Jemurai. Jemurai is a consulting firm specializing in application security.

'''Where:''' Epsilon - 6021 Connection Drive, Irving, TX

== August Meeting ==
'''When:''' Wednesday, August 15, 2017 - 6:00 PM

'''Topic: ''' Making Vulnerability Management Less Painful with OWASP DefectDojo

'''Who:''' Greg Anderson is a security professional and creator of DefectDojo

'''Where:''' Intuit

'''Materials:''' https://docs.google.com/presentation/d/1DnV-e6TWoH0YexZJpPQeRTD0eeHwWpmsSu-MRjMczwQ/edit?usp=sharing

== July Meeting ==
'''When:''' Wednesday, July 19, 2017 - 6:00 PM

'''Topic: ''' IoT Security Landscape: Survey & Analysis

'''Who:''' Mark Szewczul, CISSP, is an IoT Security Architect at Zimperium

'''Where:''' Goldman Sachs - 6011 Connection Drive, Irving, TX 75039, Dallas, TX

== June Meeting ==
'''When:''' Tuesday, June 20, 2017 - 6:00 PM

'''Topic: ''' From Hot Rodding to Hacking, Securing the Modern Automobile

'''Who:''' Art Dahnert is a Managing Consultant who has over 19 years of experience in the software industry with over 8 years Application Security experience.

'''Where:''' Toyota - 5360 Legacy Drive, Building 1, 2nd Floor, Plano, TX

'''Materials''': [[media:Hot_Rodding_and_Hacking_v3.pdf]]

== May Meeting ==
'''When:''' Tuesday, May 16, 2017 - 6:00 PM

'''Topic: ''' OWASP Dallas Social

'''Who:''' OWASP Dallas

'''Where:''' Dots Hop House & Cocktail Courtyard - 2645 Commerce Street , Dallas, TX (map)

== April Meeting ==
'''When:''' Monday, April 17, 2017 - 6:00 PM

'''Topic: ''' AWS Security: Staying on Top of the Cloud

'''Who:''' Kurtis Miller is a Principal Security Consultant for NCC Group, North America.

'''Where:''' Goldman Sachs - 6011 Connection Drive, Irving, TX 75039, Dallas, TX

'''Materials''': [[media:AWS_Security_-_Staying_on_Top_of_the_Cloud.pdf]]

== March Meeting ==
'''When:''' Tuesday, March 21, 2017 - 6:00 PM

'''Topic: ''' Secrets Revealed: How Your Competitors are Scaling Application Security

'''Who:''' Nishchal Bhalla, is a noted expert, speaker and a published author who has been in the information security field for two decades.

'''Where:''' Intuit, Inc. - 5601 Headquarters Dr, Plano, TX

'''Materials''': [[media:2017.03_OWASP_Dallas_Presentation_v5.pdf ]] [https://www.securitycompass.com/managingapplicationsecurity2017/ (More Info)]

== February Meeting ==
'''When:''' Tuesday, February 21, 2017 - 6:00 PM

'''Topic: ''' Secure Architecture In The Land of Microservices

'''Who:''' Jack is the CEO at nVisium and focuses on building solutions to make security and education scale in fast-paced software development organizations.

'''Where:''' 8000 Dominion Pkwy, Plano, TX - Capital One

'''Materials''': [[Media:Microservice_Security.pdf]]

== January Meeting ==
'''When:''' January 17 - 6:00 PM

'''Topic: ''' Helping Developers Embrace Security with OWASP Tools

'''Who:''' Joseph Konieczka is a Lead Technology Solutions Specialist on the Remedy on Demand infrastructure team at BMC Software.

'''Where:''' 6011 Connection Drive, Irving, TX 75039, Dallas, TX - Goldman Sachs

== November Meeting ==
'''When:''' Tuesday, November 8, 2016 - 5:30 PM

'''Topic: ''' Privacy Preserving Big Data Analytics

'''Who:''' Hassan Takabi is Assistant Professor of Computer Science and Engineering at the University of North Texas, Denton, TX, USA.

'''Where:''' Epsilon - 6021 Connection Drive, Irving, TX

== October Meeting ==
'''When:''' Monday, October 17, 2016 - 5:30 PM

'''Topic: ''' NoSQL: "No Injections" or "No Security"?

'''Who:''' Stark Riedesel is a Security Consultant for Cigital, an industry leader in application security.

'''Where:''' Akamai - 15950 Dallas Parkway, Dallas, TX

== September Meeting ==
'''When:''' Monday, September 19, 2016 - 5:30 PM

'''Topic: ''' Web Attacker’s Toolkit: An in depth analysis of RFI in the wild

'''Who:''' Tony Lauro is a Lead Sr. Enterprise Security Architect for Akamai's Web Security division.

'''Where:''' Akamai - 15950 Dallas Parkway, Dallas, TX

== August Meeting ==
'''When:''' Tuesday, August 16, 2016 - 5:30 PM

'''Topic: ''' OWASP Dallas August Social

'''Who:''' Dallas OWASP Community

'''Where:''' Braindead Brewing - 2625 Main St, Dallas, TX

== July Meeting ==
'''When:''' Tuesday, July 19, 2016 - 5:30 PM

'''Topic: ''' Pen Testing with Powershell

'''Who:''' Rajganesh Pandurangan is a Lead Managing Consultant at US Bank and the creator of Web Application Exploitation Distro (http://www.waed.info)

'''Where:''' 6011 Connection Drive, Irving, TX 75039, Dallas, TX - Goldman Sachs

'''Materials''': [[Media:OWASP-pentest-with-powershell.pptx]]

== June Meeting ==
'''When:''' Tuesday, June 21, 2016 - 5:30 PM

'''Topic: ''' Web App Testing Stats Compared to The OWASP Top 10

'''Who:''' Joel Scambray is a Principal at Cigital.

'''Where:''' 8000 Dominion Pkwy, Plano, TX - Capital One

'''Materials''': [[Media:Cigital_Top10_DallasOWASP-062116.pdf]]

== May Meeting ==
'''When:''' Tuesday, May 17, 2016 - 5:30 PM

'''Topic: ''' Can we do better than Passwords?

'''Who:''' Dr. Girish Chiruvolu, CISSP, CISM is Director, Information security and Risk Management at Thomson Reuters, Carrollton TX.

'''Where:''' 6011 Connection Drive, Irving, TX 75039 - Goldman Sachs.

'''Materials''': [[Media:OWASP_May17th_Password-less-logins.pdf]]

== April Meeting ==
'''When:''' Tuesday, April 19, 2016 - 5:30 PM

'''Topic: ''' OWASP Happy Hour

'''Who:''' OWASP Dallas Members

'''Where:''' Humperdinks NW Highway - 2208 W Northwest Hwy, Dallas, TX

== March Meeting ==
'''When:''' Tuesday, March 15, 2016 - 5:30 PM

'''Topic: ''' Integrating Security into the Software/System Development Life Cycle (SDLC) Process—Myths and Facts

'''Who:''' Rick Brunner is an Assistant Faculty member at Collin College and is an active member of Collin’s Cyber Security Advisory Board.

'''Where:''' Epsilon - 6021 Connection Drive, Irving, TX.

'''Materials''': [[Media:March_2016_OWASP_-_Secure_SDLC_Presentation_and_Related_Material.zip]]

== February Meeting ==
'''When:''' Wednesday, February 17, 2016 - 5:30 PM

'''Topic: ''' DNS Attack Vectors

'''Who:''' John Devasia is a Senior Product Manager in the Cloud Security BU at Akamai Technologies.

'''Where:''' 6011 Connection Drive, Irving, TX 75039 - Goldman Sachs.

== January Meeting ==
'''When:''' Tuesday, January 19, 2016 - 5:30 PM

'''Topic: ''' Bountiful Bugs and DRM Breakage

'''Who:''' Dave Ferguson is a Solution Architect at Qualys and has been a specialist in Application Security since 2006.

'''Where:''' 6011 Connection Drive, Irving, TX 75039 - Goldman Sachs.

== November Meeting ==
'''When:''' Tuesday, November 17th, 2015 from 5:30 PM – ?:?? PM

'''Topic: ''' OWASP Dallas Happy Hour

'''Where:''' Mexican Sugar at Shops at Legacy - 7501 Lone Star Drive, Suite 8150, Plano, TX

== October Meeting ==
'''When:''' Wednesday October 7th, 2015 from 11:30 AM – 1:00 PM

'''Topic: ''' Anatomy of a Logic Flaw

'''Who:''' Charles Henderson is the Vice President of Managed Security Testing at Trustwave.

'''Where:''' 6011 Connection Drive, Irving, TX 75039.

== September Meeting ==
'''When:''' Thursday September 17th, 2015 from 5:30PM – 6:30 PM

'''Topic: ''' Application Security Trends

'''Who:''' Stephen Pasco is a Vice President of Application Risk at Goldman Sachs

'''Where:''' 6011 Connection Drive, Irving, TX 75039.

== May Meeting ==
'''When:''' Wednesday May 6, 2015 from 11:30 AM – 1:00 PM

'''Topic: ''' The Future of Mobile Payments: Secure Mobile Architecture

'''Who:''' Denis M. Sheridan is a Managing Consultant at Cigital.

'''Where:''' North Lake College Central Campus, 5001 North MacArthur Boulevard, Irving, Texas 75038, Room: A-215

== October Meeting ==
'''When:''' Wednesday October 1, 2014 from 11:30 AM – 1:00 PM

'''Topic: '''Succeeding with Enterprise Software Security Key Performance Indicators

'''Who:''' Rafal Los, Director, Office of the CISO

'''Where:''' Richland College, 12800 Abrams Road, Dallas, TX 75243, Room: Sabine Hall: SH117

== March Meeting ==
'''When:''' Wednesday March 5, 2014 from 11:30 AM – 1:00 PM

'''Topic: ''' OWASP Dallas basic Python tutorial

'''Who:''' Matt Parsons, CISSP MSM

'''Where:''' Richland College, 12800 Abrams Road, Dallas, TX 75243, Room: Sabine Hall: SH117

== September Meeting ==
'''When:''' Wednesday September 11, 2013 from 11:30 AM – 1:00 PM

'''Topic: ''' PCI Mobile Payment Acceptance Security Guidelines for Developers

'''Who:''' Ralph Spencer Poore, Director, Emerging Standards at PCI Security Standards Council

'''Where:''' Richland College, 12800 Abrams Road, Dallas, TX 75243, Room: Sabine Hall: SH117

'''Slides''': [[Media:Dallas OWASP 9-11-2013.pdf]]

== May Meeting ==
'''When:''' Wednesday May 8, 2013 from 11:30 AM – 1:00 PM

'''Topic: ''' Implementation Patterns for Software Security Programs

'''Who:''' Dan Cornell, Principal, Denim Group

'''Where:''' Richland College, 12800 Abrams Road, Dallas, TX 75243, Room: Sabine Hall: SH117

[http://www.richlandcollege.edu/map/ Map]

== February Meeting ==
'''When:''' Wednesday February 6, 2013 from 11:30 AM – 1:00 PM

'''Topic: ''' Using Webappsec Vulns to Break Censorship

'''Who:''' Robert Hansen, a.k.a. rsnake

'''Where:''' Richland College, 12800 Abrams Road, Dallas, TX 75243, Room: Sabine Hall: SH117

[http://www.richlandcollege.edu/map/ Map]

__NOTOC__
<headertabs></headertabs>

[[Category:Texas]]

2018-03-22T16:13:29Z

Jeromme Lawler:

Dallas

2018-03-19T17:22:57Z

Jeromme Lawler:

{{Chapter Template|chaptername=Dallas|extra=The chapter leaders are

Chapter Lead- [mailto:dsheridan@cigital.com Denis Sheridan]

Board Member- [mailto:mparsons@parsonsisconsulting.com Matt Parsons]

Board Member- [mailto:jeromme.lawler@guggenheimpartners.com Jeromme Lawler]
 
|mailinglistsite=http://lists.owasp.org/mailman/listinfo/owasp-dallas|emailarchives=http://lists.owasp.org/pipermail/owasp-dallas}}

== Get Connected and Stay Connected ==

In addition to our [http://bit.ly/fWT3pN Mailing List] we also have a [http://bit.ly/eHEW6O Dallas OWASP Twitter Feed] a [http://on.fb.me/fHr5XY Dallas OWASP Facebook Page] and a [http://linkd.in/g3WxGG Dallas OWASP Linkedin Group]. We invite you to join or follow whichever groups suit you, get involved with your fellow Dallas OWASP Chapter members, and we'll keep them all up to date with the latest official news and announcements from the chapter leadership.

'''Click any of the links below to visit the corresponding Dallas OWASP social networking groups:'''

{| cellspacing="15"
|-
| [[Image:Join the list.png|150px|link=http://bit.ly/fWT3pN]]
| [[Image:Follow-us-on-twitter.png|175px|link=http://bit.ly/eHEW6O]]
| [[Image:Join-us-on-Facebook.jpg|175px|link=http://on.fb.me/fHr5XY]]
| [[Image:Linkedin-button.gif|135px|link=http://linkd.in/g3WxGG]]
| [[Image:meetup-button.png|108px|link=https://www.meetup.com/Dallas-The-Open-Web-Application-Security-Project-Meetup/]]
|}

=== Announcements ===

== March Meeting ==

'''When:''' Tuesday, March 20, 2018 - 6:00 PM

'''Topic: ''' DevSecOps Unplugged

There is a confluence of forces that disrupt the ability for organizations to implement DevSecOps effectively. We continue to increase our dependence on software but teams are still relatively immature in developing securely. Our systems continue to grow exponentially complex. With IoT starting to take off, there is no clear industry vision for security these devices. Cybersecurity threats continue to rise. Even the most diligent teams find themselves subtly gaining technical debt because they are unable to do the job right.

This impact is felt across industries: telecommunications, financial, software development, transportation, and medical just to name a few. So what is our response as security professionals? We have software tools and databases like OWASP Top 10, CWE/CVE, SANS Top 25 and so on. But what we need is a set of patterns and anti-patterns on implementing DevSecOps.

Our talk will highlight what we’ve observed in conducting research from Tier 1 peer reviewed articles from 2016 to the present. We will present what seems to be emerging as a set of best practices as well as anti-patterns in DevSecOps.

'''Who:''' Vishal Asthana, CISSP has been with Security Compass for over 4 years, as a Regional Director for the company’s India Operations until mid-2017, and now our Director of Customer Solutions. He designed and co-presented SecureMe Droid app at OWASP’s flagship AppSec USA (2015). He was also OWASP Delhi Chapter’s lead for nearly 2 years. He continues to represent Security Compass in SAFECode as a member of the Technical Leadership Team. Prior to joining Security Compass, he was a part of Symantec’s central product security team as a Senior Principal Security Engineer. He possesses over 15 years of work experience in various Information Security domains, of which the past 10 years have been in Application Security.

'''Where:''' Akamai - 15950 Dallas Parkway, Dallas, TX

The Conference Center for Tollway Plaza is located on the western side of the South Tower lobby, directly across from suite 100 (Stewart Title North Texas).

https://www.meetup.com/Dallas-The-Open-Web-Application-Security-Project-Meetup/events/247992160/

The meeting food & drinks will be sponsored by Akamai.

IMPORTANT Meeting Notes:

The location is a gun-free zone. Please do not attempt to bring in any guns, holsters, ammo, etc. into their office space.

=== Previous Meetings ===

== February Meeting ==

'''When:''' Tuesday, February 20, 2018 - 6:00 PM

'''Topic: ''' Bugs in the Blockchain and “Contractual” Vulnerability

'''Who:''' Stark Riedesel is a software security consultant working for Synopsys here in the Dallas area.

'''Where:''' Alliance Data Systems - 7500 Dallas Parkway 7th Floor, Plano, TX

'''Materials''': [[Media:Bugs_in_the_Blockchain.pptx]]

== January Meeting ==

'''When:''' Tuesday, January 16, 2018 - 6:00 PM

'''Topic: ''' OWASP Top 10 2017

'''Who:''' Andrew van der Stock is a Senior Principal Consultant with Synopsys.

'''Where:''' Toyota Motor North America, Inc. - 6565 Headquarters Drive · Plano

== October Meeting ==
'''When:''' Tuesday, October 10, 2017 - 6:00 PM

'''Topic: ''' Application Security in the DevOps World

'''Who:''' Apoorva Phadke is a Senior Security Consultant at Synopsys.

'''Where:''' Akamai - 15950 Dallas Parkway, Dallas, TX

== September Meeting ==
'''When:''' Wednesday, September 13, 2017 - 6:00 PM

'''Topic: ''' Automate All The Things

'''Who:''' Matt Konda, CEO of Jemurai. Jemurai is a consulting firm specializing in application security.

'''Where:''' Epsilon - 6021 Connection Drive, Irving, TX

== August Meeting ==
'''When:''' Wednesday, August 15, 2017 - 6:00 PM

'''Topic: ''' Making Vulnerability Management Less Painful with OWASP DefectDojo

'''Who:''' Greg Anderson is a security professional and creator of DefectDojo

'''Where:''' Intuit

'''Materials:''' https://docs.google.com/presentation/d/1DnV-e6TWoH0YexZJpPQeRTD0eeHwWpmsSu-MRjMczwQ/edit?usp=sharing

== July Meeting ==
'''When:''' Wednesday, July 19, 2017 - 6:00 PM

'''Topic: ''' IoT Security Landscape: Survey & Analysis

'''Who:''' Mark Szewczul, CISSP, is an IoT Security Architect at Zimperium

'''Where:''' Goldman Sachs - 6011 Connection Drive, Irving, TX 75039, Dallas, TX

== June Meeting ==
'''When:''' Tuesday, June 20, 2017 - 6:00 PM

'''Topic: ''' From Hot Rodding to Hacking, Securing the Modern Automobile

'''Who:''' Art Dahnert is a Managing Consultant who has over 19 years of experience in the software industry with over 8 years Application Security experience.

'''Where:''' Toyota - 5360 Legacy Drive, Building 1, 2nd Floor, Plano, TX

'''Materials''': [[media:Hot_Rodding_and_Hacking_v3.pdf]]

== May Meeting ==
'''When:''' Tuesday, May 16, 2017 - 6:00 PM

'''Topic: ''' OWASP Dallas Social

'''Who:''' OWASP Dallas

'''Where:''' Dots Hop House & Cocktail Courtyard - 2645 Commerce Street , Dallas, TX (map)

== April Meeting ==
'''When:''' Monday, April 17, 2017 - 6:00 PM

'''Topic: ''' AWS Security: Staying on Top of the Cloud

'''Who:''' Kurtis Miller is a Principal Security Consultant for NCC Group, North America.

'''Where:''' Goldman Sachs - 6011 Connection Drive, Irving, TX 75039, Dallas, TX

'''Materials''': [[media:AWS_Security_-_Staying_on_Top_of_the_Cloud.pdf]]

== March Meeting ==
'''When:''' Tuesday, March 21, 2017 - 6:00 PM

'''Topic: ''' Secrets Revealed: How Your Competitors are Scaling Application Security

'''Who:''' Nishchal Bhalla, is a noted expert, speaker and a published author who has been in the information security field for two decades.

'''Where:''' Intuit, Inc. - 5601 Headquarters Dr, Plano, TX

'''Materials''': [[media:2017.03_OWASP_Dallas_Presentation_v5.pdf ]] [https://www.securitycompass.com/managingapplicationsecurity2017/ (More Info)]

== February Meeting ==
'''When:''' Tuesday, February 21, 2017 - 6:00 PM

'''Topic: ''' Secure Architecture In The Land of Microservices

'''Who:''' Jack is the CEO at nVisium and focuses on building solutions to make security and education scale in fast-paced software development organizations.

'''Where:''' 8000 Dominion Pkwy, Plano, TX - Capital One

'''Materials''': [[Media:Microservice_Security.pdf]]

== January Meeting ==
'''When:''' January 17 - 6:00 PM

'''Topic: ''' Helping Developers Embrace Security with OWASP Tools

'''Who:''' Joseph Konieczka is a Lead Technology Solutions Specialist on the Remedy on Demand infrastructure team at BMC Software.

'''Where:''' 6011 Connection Drive, Irving, TX 75039, Dallas, TX - Goldman Sachs

== November Meeting ==
'''When:''' Tuesday, November 8, 2016 - 5:30 PM

'''Topic: ''' Privacy Preserving Big Data Analytics

'''Who:''' Hassan Takabi is Assistant Professor of Computer Science and Engineering at the University of North Texas, Denton, TX, USA.

'''Where:''' Epsilon - 6021 Connection Drive, Irving, TX

== October Meeting ==
'''When:''' Monday, October 17, 2016 - 5:30 PM

'''Topic: ''' NoSQL: "No Injections" or "No Security"?

'''Who:''' Stark Riedesel is a Security Consultant for Cigital, an industry leader in application security.

'''Where:''' Akamai - 15950 Dallas Parkway, Dallas, TX

== September Meeting ==
'''When:''' Monday, September 19, 2016 - 5:30 PM

'''Topic: ''' Web Attacker’s Toolkit: An in depth analysis of RFI in the wild

'''Who:''' Tony Lauro is a Lead Sr. Enterprise Security Architect for Akamai's Web Security division.

'''Where:''' Akamai - 15950 Dallas Parkway, Dallas, TX

== August Meeting ==
'''When:''' Tuesday, August 16, 2016 - 5:30 PM

'''Topic: ''' OWASP Dallas August Social

'''Who:''' Dallas OWASP Community

'''Where:''' Braindead Brewing - 2625 Main St, Dallas, TX

== July Meeting ==
'''When:''' Tuesday, July 19, 2016 - 5:30 PM

'''Topic: ''' Pen Testing with Powershell

'''Who:''' Rajganesh Pandurangan is a Lead Managing Consultant at US Bank and the creator of Web Application Exploitation Distro (http://www.waed.info)

'''Where:''' 6011 Connection Drive, Irving, TX 75039, Dallas, TX - Goldman Sachs

'''Materials''': [[Media:OWASP-pentest-with-powershell.pptx]]

== June Meeting ==
'''When:''' Tuesday, June 21, 2016 - 5:30 PM

'''Topic: ''' Web App Testing Stats Compared to The OWASP Top 10

'''Who:''' Joel Scambray is a Principal at Cigital.

'''Where:''' 8000 Dominion Pkwy, Plano, TX - Capital One

'''Materials''': [[Media:Cigital_Top10_DallasOWASP-062116.pdf]]

== May Meeting ==
'''When:''' Tuesday, May 17, 2016 - 5:30 PM

'''Topic: ''' Can we do better than Passwords?

'''Who:''' Dr. Girish Chiruvolu, CISSP, CISM is Director, Information security and Risk Management at Thomson Reuters, Carrollton TX.

'''Where:''' 6011 Connection Drive, Irving, TX 75039 - Goldman Sachs.

'''Materials''': [[Media:OWASP_May17th_Password-less-logins.pdf]]

== April Meeting ==
'''When:''' Tuesday, April 19, 2016 - 5:30 PM

'''Topic: ''' OWASP Happy Hour

'''Who:''' OWASP Dallas Members

'''Where:''' Humperdinks NW Highway - 2208 W Northwest Hwy, Dallas, TX

== March Meeting ==
'''When:''' Tuesday, March 15, 2016 - 5:30 PM

'''Topic: ''' Integrating Security into the Software/System Development Life Cycle (SDLC) Process—Myths and Facts

'''Who:''' Rick Brunner is an Assistant Faculty member at Collin College and is an active member of Collin’s Cyber Security Advisory Board.

'''Where:''' Epsilon - 6021 Connection Drive, Irving, TX.

'''Materials''': [[Media:March_2016_OWASP_-_Secure_SDLC_Presentation_and_Related_Material.zip]]

== February Meeting ==
'''When:''' Wednesday, February 17, 2016 - 5:30 PM

'''Topic: ''' DNS Attack Vectors

'''Who:''' John Devasia is a Senior Product Manager in the Cloud Security BU at Akamai Technologies.

'''Where:''' 6011 Connection Drive, Irving, TX 75039 - Goldman Sachs.

== January Meeting ==
'''When:''' Tuesday, January 19, 2016 - 5:30 PM

'''Topic: ''' Bountiful Bugs and DRM Breakage

'''Who:''' Dave Ferguson is a Solution Architect at Qualys and has been a specialist in Application Security since 2006.

'''Where:''' 6011 Connection Drive, Irving, TX 75039 - Goldman Sachs.

== November Meeting ==
'''When:''' Tuesday, November 17th, 2015 from 5:30 PM – ?:?? PM

'''Topic: ''' OWASP Dallas Happy Hour

'''Where:''' Mexican Sugar at Shops at Legacy - 7501 Lone Star Drive, Suite 8150, Plano, TX

== October Meeting ==
'''When:''' Wednesday October 7th, 2015 from 11:30 AM – 1:00 PM

'''Topic: ''' Anatomy of a Logic Flaw

'''Who:''' Charles Henderson is the Vice President of Managed Security Testing at Trustwave.

'''Where:''' 6011 Connection Drive, Irving, TX 75039.

== September Meeting ==
'''When:''' Thursday September 17th, 2015 from 5:30PM – 6:30 PM

'''Topic: ''' Application Security Trends

'''Who:''' Stephen Pasco is a Vice President of Application Risk at Goldman Sachs

'''Where:''' 6011 Connection Drive, Irving, TX 75039.

== May Meeting ==
'''When:''' Wednesday May 6, 2015 from 11:30 AM – 1:00 PM

'''Topic: ''' The Future of Mobile Payments: Secure Mobile Architecture

'''Who:''' Denis M. Sheridan is a Managing Consultant at Cigital.

'''Where:''' North Lake College Central Campus, 5001 North MacArthur Boulevard, Irving, Texas 75038, Room: A-215

== October Meeting ==
'''When:''' Wednesday October 1, 2014 from 11:30 AM – 1:00 PM

'''Topic: '''Succeeding with Enterprise Software Security Key Performance Indicators

'''Who:''' Rafal Los, Director, Office of the CISO

'''Where:''' Richland College, 12800 Abrams Road, Dallas, TX 75243, Room: Sabine Hall: SH117

== March Meeting ==
'''When:''' Wednesday March 5, 2014 from 11:30 AM – 1:00 PM

'''Topic: ''' OWASP Dallas basic Python tutorial

'''Who:''' Matt Parsons, CISSP MSM

'''Where:''' Richland College, 12800 Abrams Road, Dallas, TX 75243, Room: Sabine Hall: SH117

== September Meeting ==
'''When:''' Wednesday September 11, 2013 from 11:30 AM – 1:00 PM

'''Topic: ''' PCI Mobile Payment Acceptance Security Guidelines for Developers

'''Who:''' Ralph Spencer Poore, Director, Emerging Standards at PCI Security Standards Council

'''Where:''' Richland College, 12800 Abrams Road, Dallas, TX 75243, Room: Sabine Hall: SH117

'''Slides''': [[Media:Dallas OWASP 9-11-2013.pdf]]

== May Meeting ==
'''When:''' Wednesday May 8, 2013 from 11:30 AM – 1:00 PM

'''Topic: ''' Implementation Patterns for Software Security Programs

'''Who:''' Dan Cornell, Principal, Denim Group

'''Where:''' Richland College, 12800 Abrams Road, Dallas, TX 75243, Room: Sabine Hall: SH117

[http://www.richlandcollege.edu/map/ Map]

== February Meeting ==
'''When:''' Wednesday February 6, 2013 from 11:30 AM – 1:00 PM

'''Topic: ''' Using Webappsec Vulns to Break Censorship

'''Who:''' Robert Hansen, a.k.a. rsnake

'''Where:''' Richland College, 12800 Abrams Road, Dallas, TX 75243, Room: Sabine Hall: SH117

[http://www.richlandcollege.edu/map/ Map]

__NOTOC__
<headertabs></headertabs>

[[Category:Texas]]