User:Tony UcedaVelez - Revision history

Versprite: bio

2018-12-07T04:12:38Z

bio

Versprite at 18:07, 8 October 2017

2017-10-08T18:07:08Z

Versprite at 20:43, 22 September 2017

2017-09-22T20:43:45Z

Versprite: /* Tony UV */

2017-09-22T20:39:53Z

‎Tony UV

Versprite: /* Tony UV */

2015-12-19T15:10:17Z

‎Tony UV

Versprite: /* Tony UV */

2015-12-19T14:10:54Z

‎Tony UV

Versprite: /* Tony UV */

2014-03-22T22:51:05Z

‎Tony UV

Versprite at 06:31, 3 February 2011

2011-02-03T06:31:27Z

Versprite: moved User:Versprite to User:Tony UcedaVelez

2011-02-03T06:27:29Z

moved User:Versprite to User:Tony UcedaVelez

Versprite: /* Tony UcedaVelez (a.k.a Tony UV/ Username: versprite) */

2011-01-12T02:06:58Z

‎Tony UcedaVelez (a.k.a Tony UV/ Username: versprite)

@@ Line 1: / Line 1: @@
 == Tony UV ==
 <p>
-Tony is the founder and CEO of VerSprite - a global security consulting firm based in Atlanta, GA. He is also the author of Wiley's <i>Risk Centric Threat Modeling</i>, a book endorsed by the late Cyber Security Coordinator for the White House, Howard Schmidt.  The book has been used in universities and enterprises world wide as a means to apply a risk  centric approach to application threat modeling. Tony has spoken at numerous OWASP, ISACA, ASIS, ISC2, ISSA, BSides conferences across four continents on the topics of cloud security, risk management, threat modeling, secure-SDLC implementation.  He also has provided global training to both development groups and company executives who need to understand the impact of security programs to products and business services. Tony's 25 years of IT/IS experience began with hands-on operations in the areas of system administration, network engineering, software development.  Tony serves as interim CISO for various startups and global, mid-size organization and is responsible for the overall build out of these security programs.
+Tony is the founder and CEO of VerSprite - a global security consulting firm based in Atlanta, GA. He is also the author of Wiley's <i>Risk Centric Threat Modeling</i>, a book endorsed by the late Cyber Security Coordinator for the White House, Howard Schmidt.  The book has been used in universities and enterprises world wide as a means to apply a risk  centric approach to application threat modeling. Tony has spoken at numerous OWASP, ISACA, ASIS, ISC2, ISSA, BSides conferences across four continents on the topics of cloud security, risk management, threat modeling, secure-SDLC implementation.  He also has provided global training to both development groups and company executives who need to understand the impact of security programs to products and business services. Before starting VerSprite, Tony's worked at various large multi-national companies, some of which includes GE Capital, UBS, Morgan Stanley, SunTrust Bank, Equifax, Symantec and Secureworks.  Today, his organization performs varied security consulting services worldwide for both Fortune 50, global companies as well as technology startups .
 </p><p>
-Since late 2007, Tony leads the OWASP Atlanta Chapter, where he manages monthly workshops and events for the Atlanta web application security community.  He also organizes the yearly BSides Atlanta conference. </p>
+Tony is also well known for his leadership role in the Open Web Application Security Project (OWASP) where he runs the OWASP Atlanta Chapter and manages monthly workshops and events for Atlanta's AppSec community.   </p>

@@ Line 1: / Line 1: @@
 == Tony UV ==
 <p>
-Tony is the founder and CEO of VerSprite - a global security consulting firm based in Atlanta, GA. He is also the author of Wiley's <i>Risk Centric Threat Modeling</i>, a book endorsed by the late Cyber Security Coordinator for the White House, Howard Schmidt.  The book has been used in universities and enterprises world wide as a means to apply a risk  centric approach to application threat modeling. Tony has spoken at numerous OWASP, ISACA, ASIS, ISC2, ISSA, BSides conferences across four continents on the topics of cloud security, risk management, threat modeling, secure software development life cycles, and also conducted various training briefings to both development groups and company executives who need to understand the impact of security programs to business/ product objectives.  Tony's 20 years of IT/IS experience began with hands-on operations in the areas of system administration, network engineering, software development.  His IT formation, combined with his work in penetration testing, security engineering, security architecture, application security testing,  has served Tony well to speak on realistic challenges and solutions for IT groups and businesses alike in applying realistic security measures to enterprise processes.  Tony serves as interim CISO for various startups and mid-size organization and is responsible for the overall build out of these security programs.
+Tony is the founder and CEO of VerSprite - a global security consulting firm based in Atlanta, GA. He is also the author of Wiley's <i>Risk Centric Threat Modeling</i>, a book endorsed by the late Cyber Security Coordinator for the White House, Howard Schmidt.  The book has been used in universities and enterprises world wide as a means to apply a risk  centric approach to application threat modeling. Tony has spoken at numerous OWASP, ISACA, ASIS, ISC2, ISSA, BSides conferences across four continents on the topics of cloud security, risk management, threat modeling, secure-SDLC implementation.  He also has provided global training to both development groups and company executives who need to understand the impact of security programs to products and business services. Tony's 25 years of IT/IS experience began with hands-on operations in the areas of system administration, network engineering, software development.  Tony serves as interim CISO for various startups and global, mid-size organization and is responsible for the overall build out of these security programs.
 </p><p>
-Since late 2007, Tony leads the OWASP Atlanta Chapter, where he manages monthly workshops and events for the Atlanta web application security community.  He also organizes BSides Atlanta – an underground grassroots un-conference that takes place annually and aims at providing new ideas and real conversations/ solutions around common challenges in InfoSec today. </p>
+Since late 2007, Tony leads the OWASP Atlanta Chapter, where he manages monthly workshops and events for the Atlanta web application security community.  He also organizes the yearly BSides Atlanta conference. </p>

@@ Line 1: / Line 1: @@
 == Tony UV ==
 <p>
-Tony is the founder and CEO of VerSprite - a global security consulting firm based in Atlanta, GA. He is also the author of Wiley's <i>Risk Centric Threat Modeling</i>, a book based upon a patented methodology that applies a risk  centric approach to threat modeling. Tony has spoken at numerous OWASP, ISACA, ASIS, ISC2, ISSA, BSides conferences across four continents on the topics of cloud security, risk management, threat modeling, secure software development life cycles, and also conducted various training briefings to both development groups and company executives who need to understand the impact of security programs to business/ product objectives.  Tony's 20 years of IT/IS experience began with hands-on operations in the areas of system administration, network engineering, software development.  His IT formation, combined with his work in penetration testing, dynamic/ static application testing, security architecture, vulnerability and risk management,  has served Tony well to speak on realistic challenges and solutions for IT groups and businesses alike in applying realistic security measures to enterprise processes.  Tony serves as interim CISO for various startups and mid-size organization and is responsible for the overall build out of these security programs.
+Tony is the founder and CEO of VerSprite - a global security consulting firm based in Atlanta, GA. He is also the author of Wiley's <i>Risk Centric Threat Modeling</i>, a book endorsed by the late Cyber Security Coordinator for the White House, Howard Schmidt.  The book has been used in universities and enterprises world wide as a means to apply a risk  centric approach to application threat modeling. Tony has spoken at numerous OWASP, ISACA, ASIS, ISC2, ISSA, BSides conferences across four continents on the topics of cloud security, risk management, threat modeling, secure software development life cycles, and also conducted various training briefings to both development groups and company executives who need to understand the impact of security programs to business/ product objectives.  Tony's 20 years of IT/IS experience began with hands-on operations in the areas of system administration, network engineering, software development.  His IT formation, combined with his work in penetration testing, security engineering, security architecture, application security testing,  has served Tony well to speak on realistic challenges and solutions for IT groups and businesses alike in applying realistic security measures to enterprise processes.  Tony serves as interim CISO for various startups and mid-size organization and is responsible for the overall build out of these security programs.
 </p><p>
 Since late 2007, Tony leads the OWASP Atlanta Chapter, where he manages monthly workshops and events for the Atlanta web application security community.  He also organizes BSides Atlanta – an underground grassroots un-conference that takes place annually and aims at providing new ideas and real conversations/ solutions around common challenges in InfoSec today. </p>

@@ Line 1: / Line 1: @@
 == Tony UV ==
 <p>
-Tony is the founder and CEO of VerSprite - a global security consulting firm based in Atlanta, GA. He is also the author of Wiley's <i>Risk Centric Threat Modeling</i>, a book based upon a patented methodology that applies a risk or asset centric approach to threat modeling. Tony has spoken at numerous OWASP, ISACA, ASIS, ISC2, ISSA, BSides conferences across four continents on the topics of application security, risk management, threat modeling, secure software development life cycles, and also conducted various training briefings to both development groups and company executives who need to understand the impact of security programs to business/ product objectives.  Tony's 20 years of IT/IS experience began with hands-on operations in the areas of system administration, network engineering, software development.  His IT formation, combined with his work in penetration testing, dynamic/ static application testing, security architecture, vulnerability and risk management,  has served Tony well to speak on realistic challenges and solutions for IT groups and businesses alike in applying realistic security measures to enterprise processes.  Tony serves as interim CISO for various startups and mid-size organization and is responsible for the overall build out of these security programs.
+Tony is the founder and CEO of VerSprite - a global security consulting firm based in Atlanta, GA. He is also the author of Wiley's <i>Risk Centric Threat Modeling</i>, a book based upon a patented methodology that applies a risk  centric approach to threat modeling. Tony has spoken at numerous OWASP, ISACA, ASIS, ISC2, ISSA, BSides conferences across four continents on the topics of cloud security, risk management, threat modeling, secure software development life cycles, and also conducted various training briefings to both development groups and company executives who need to understand the impact of security programs to business/ product objectives.  Tony's 20 years of IT/IS experience began with hands-on operations in the areas of system administration, network engineering, software development.  His IT formation, combined with his work in penetration testing, dynamic/ static application testing, security architecture, vulnerability and risk management,  has served Tony well to speak on realistic challenges and solutions for IT groups and businesses alike in applying realistic security measures to enterprise processes.  Tony serves as interim CISO for various startups and mid-size organization and is responsible for the overall build out of these security programs.
-</p><br>
+</p><p>
-<p>
+Since late 2007, Tony leads the OWASP Atlanta Chapter, where he manages monthly workshops and events for the Atlanta web application security community.  He also organizes BSides Atlanta – an underground grassroots un-conference that takes place annually and aims at providing new ideas and real conversations/ solutions around common challenges in InfoSec today. </p>

@@ Line 1: / Line 1: @@
 == Tony UV ==
 <p>
-Tony is the founder and managing partner at VerSprite in Atlanta - a strategic, security pro service firm that is known for their hybrid approach to security service delivery and threat modeling approach to application security.  Prior to VerSprite, Tony served as Sr. Director of Security Risk Management to a Fortune 50 organization where he led security assessments against global application environments.  His work encompassed web application security testing, security architecture reviews, and analysis for business logic exploits.  Previous to this role, he spent more than 5 years in the field of application security across other Fortune 500 organizations within the banking, telecom, and information service industry segments. Tony's leadership roles experience in security includes companies such as Equifax, SunTrust Banks, Morgan Stanley, Symantec, and SecureWorks.
+Tony is the founder and CEO of VerSprite - a global security consulting firm based in Atlanta, GA. He is also the author of Wiley's <i>Risk Centric Threat Modeling</i>, a book based upon a patented methodology that applies a risk or asset centric approach to threat modeling. Tony has spoken at numerous OWASP, ISACA, ASIS, ISC2, ISSA, BSides conferences across four continents on the topics of application security, risk management, threat modeling, secure software development life cycles, and also conducted various training briefings to both development groups and company executives who need to understand the impact of security programs to business/ product objectives.  Tony's 20 years of IT/IS experience began with hands-on operations in the areas of system administration, network engineering, software development.  His IT formation, combined with his work in penetration testing, dynamic/ static application testing, security architecture, vulnerability and risk management,  has served Tony well to speak on realistic challenges and solutions for IT groups and businesses alike in applying realistic security measures to enterprise processes.  Tony serves as interim CISO for various startups and mid-size organization and is responsible for the overall build out of these security programs.
 </p><br>
 <p>
-Since late 2007, Tony leads the OWASP Atlanta Chapter, where he manages monthly workshops and events for the Atlanta web application security community.  He is also serves on the OWASP Global Membership Board and regularly provides talks to other chapters nationwide, primarily on the topic of application threat modeling. Aside from the OWASP organization, Tony has helped to organize BSides Atlanta – an underground grassroots effort aimed at providing 100%, unsolicited security content to Atlanta Information Security professionals – for free.
+Prior to starting VerSprite, Tony served as a professional security consultant at Dell-SecureWorks and Symantec, and also worked as a security leader across various Fortune 500 banking, financial, and information services organizations in the global Fortune 500 ranking. Tony's leadership roles experience in security includes companies such as Equifax, SunTrust Banks, Morgan Stanley, Symantec, and SecureWorks. </p>
 </p>

← Older revision	Revision as of 06:27, 3 February 2011
(No difference)

@@ Line 1: / Line 1: @@
 == Tony UcedaVelez (a.k.a Tony UV/ Username: versprite) ==
+<p>
-In the realm of application security, Tony is a threat modeling evangelist and has provided numerous talks domestically and globally on its many benefits and application.  He has served as a guest mentor to teams participating in Kennesaw State University’s annual Cybercrime capture the flag event as well as a Cybercrime speaker for Southern Polytechnic University in Atlanta (2009).  He has also served as a guest speaker on the subject of application threat modeling during ISACA’s annual Geek Week event and has also served as a keynote speaker on the subject for ISACA’s Global Symposium web cast series He frequently speaks at various ISACA and OWASP based events nationwide.  Additional publications include articles related to CoBIT and the ValIT model (ISACA’s Journal), application threat modeling within the SDLC (InSecureMagazine), and security process engineering for a ROSI (return on security investment) (Journal of Finance).  His book on Application Threat Modeling is due to be published in late 2011 along with his co-author and Cincinnati Chapter Lead, [User:Marco_Morana].
+In the realm of application security, Tony is a threat modeling evangelist and has provided numerous talks domestically and globally on its many benefits and application.  He has served as a guest mentor to teams participating in Kennesaw State University’s annual Cybercrime capture the flag event as well as a Cybercrime speaker for Southern Polytechnic University in Atlanta (2009).  He has also served as a guest speaker on the subject of application threat modeling during ISACA’s annual Geek Week event and has also served as a keynote speaker on the subject for ISACA’s Global Symposium web cast series He frequently speaks at various ISACA and OWASP based events nationwide.  Additional publications include articles related to CoBIT and the ValIT model (ISACA’s Journal), application threat modeling within the SDLC (InSecureMagazine), and security process engineering for a ROSI (return on security investment) (Journal of Finance).  His book on Application Threat Modeling is due to be published in late 2011 along with his co-author and Cincinnati Chapter Lead, [User:Marco_Morana].</p><br>
 <p>
 Tony is also well regarded in the field of FISMA compliance, having worked with various federal entities and their respective certification & accreditation groups in order to manage compliance requirements against both NIST and FIPS requirements for ensuring data and system level security. NIST has invited Tony to speak twice at their annual SCAP conference in Baltimore on the subject of sustaining compliance across large federal information enterprises.
-</p>
+</p><br>
 <p>
 Tony is the founder and managing partner at VerSprite in Atlanta - a strategic, security pro service firm that is known for their hybrid approach to security service delivery.  Prior to VerSprite, Tony served as Sr. Director of Security Risk Management to a Fortune 50 organization where he led security assessments against global application environments.  His work encompassed web application security testing, security architecture reviews, and analysis for business logic exploits.  Previous to this role, he spent more than 5 years in the field of application security across other Fortune 500 organizations within the banking, telecom, and information service industry segments.
-</p>
+</p><br>
 <p>
 Since late 2007, Tony leads the OWASP Atlanta Chapter, where he manages monthly workshops and events for the Atlanta web application security community.  He is also serves on the OWASP Global Membership Board and regularly provides talks to other chapters nationwide, primarily on the topic of application threat modeling. Aside from the OWASP organization, Tony has helped to organize BSides Atlanta – an underground grassroots effort aimed at providing 100%, unsolicited security content to Atlanta Information Security professionals – for free.
 </p>