This site is the archived OWASP Foundation Wiki and is no longer accepting Account Requests.
To view the new OWASP Foundation website, please visit https://owasp.org
Difference between revisions of "User:Wichers"
From OWASP
| Line 13: | Line 13: | ||
Dave has over 20 years of experience in the information security field, and has focused exclusively on application security since 1998. At Aspect, in addition to his COO duties, he is Aspect's application security courseware lead, one of their chief instructors, and provides a wide variety of application security consulting services to Aspect's clients. Prior to starting Aspect, he ran the Application Security Services Group at Exodus Communications. Dave has a Bachelors and Masters degree in Computer Science, is a CISSP, and a CISM. | Dave has over 20 years of experience in the information security field, and has focused exclusively on application security since 1998. At Aspect, in addition to his COO duties, he is Aspect's application security courseware lead, one of their chief instructors, and provides a wide variety of application security consulting services to Aspect's clients. Prior to starting Aspect, he ran the Application Security Services Group at Exodus Communications. Dave has a Bachelors and Masters degree in Computer Science, is a CISSP, and a CISM. | ||
| − | For more details than this short bio on what I've done at OWASP, listen to my [http://www.owasp.org/download/jmanico/owasp_podcast_82.mp3 OWASP podcast]. | + | For more details than this short bio on what I've done at OWASP, listen to my [http://www.owasp.org/download/jmanico/owasp_podcast_82.mp3 OWASP podcast]. |
| + | |||
| + | I've also done lots of OWASP conference presentations. Here are some of them: | ||
| + | |||
| + | * 2010 AppSec DC: [[The_Strengths_of_Combining_Code_Review_with_Application_Penetration_Testing | Strengths of Combining Code Review with Application Penetration Testing]] - [http://vimeo.com/groups/asdc10/videos/19104928 Video] | [[Media: 2010-DC_The_Power_of_Code_Review.pptx|Slides]] | ||
| + | * 2010 AppSec Europe: [[OWASP_AppSec_Research_2010_-_Stockholm,_Sweden#OWASP_Top_10_2010 | OWASP Top 10 for 2010 - Final]] - [http://owasp.blip.tv/file/3917942/ Video] |[[Media:OWASP_AppSec_Research_2010_OWASP_Top_10_by_Wichers.pdf | PDF]] | ||
| + | * 2009 AppSec DC: [[OWASP_Top_10_2010_AppSecDC | Debut of the OWASP Top 10 for 2010 Release Candidate]] - [http://www.vimeo.com/9006276 Video] | [[Media: AppSec DC 2009 - OWASP Top 10 - 2010 rc1.pptx | Slides]] | ||
| + | * 2009 Appsec Ireland: [[How_to_Avoid_Flaws_in_the_First_Place:_The_OWASP_Enterprise_Security_API_(ESAPI)_Project | How to Avoid Flaws in the First Place: The OWASP ESAPI Project]] | ||
| + | * 2009 AppSec Europe: [[ASVS | OWASP ASVS Project]] - [http://www.owasp.org/images/7/78/AppsecEU09_OWASP_ASVS_WebApp_Standard.ppt Slides] | ||
| + | * 2009 AppSec Europe: [[ESAPI | OWASP Enterprise Security API (ESAPI) Project]] - [http://blip.tv/file/2215191 Video] | [http://www.owasp.org/images/1/11/AppSecEU09Poland_ESAPI.pptx Slides] | ||
| + | * 2008 AppSec NY: Security in Agile Development - [http://video.google.com/videoplay?docid=-8287209466278543377&hl=en Video] | [http://www.owasp.org/images/a/a3/AppSecNYC08-Agile_and_Secure.ppt Slides] | ||
| + | * 2008 AppSec Europe: [[AppSecEU08_The_OWASP_ESAPI_project | Fundamental Application Security Building Blocks - The Benefits of Establishing an Enterprise Security API (ESAPI) for Your Organization]] - [http://www.owasp.org/images/c/cd/AppSecEU08-ESAPI.ppt Slides] | ||
| + | * 2008 AppSec Europe: [[AppSecEU08_Agile_Security_Breaking_the_Waterfall_Mindset | Agile Security - Breaking the Waterfall Mindset of the Security Industry]] - [http://www.owasp.org/images/b/b8/AppSecEU08-Agile_and_Secure.ppt Slides] | ||
| + | * 2007 AppSec Europe: OWASP WebGoat and WebScarab - [http://www.owasp.org/images/5/55/OWASPAppSec2007Milan_WebGoatv5.ppt WebGoat Slides] | [http://www.owasp.org/images/d/d7/OWASPAppSec2007Milan_WebScarabNG.ppt WebScarab Slides] | ||
| + | * 2006 AppSec Seattle: Why AJAX Applications are far more likely to be insecure, and What to do about it - [http://www.owasp.org/index.php/Image:OWASPAppSec2006Seattle_Why_AJAX_Applications_More_Likely_Insecure.ppt Slides] | ||
Dave can be reached at: dave.wichers (at) aspectsecurity.com or dave.wichers (at) owasp.org | Dave can be reached at: dave.wichers (at) aspectsecurity.com or dave.wichers (at) owasp.org | ||
Revision as of 19:09, 1 March 2011
BIO: Dave Wichers, COO, Aspect Security - To see my wiki contributions, click here.
Dave Wichers is a cofounder and the Chief Operating Officer (COO) of Aspect Security, a company that specializes in application security services.
As a volunteer to OWASP, Dave is:
- A member of the OWASP Board,
- The OWASP Conferences Chair,
- Project lead and coauthor of the OWASP Top 10,
- Coauthor of the OWASP Application Security Verification Standard, and
- Contributor to the OWASP Enterprise Security API (ESAPI) project.
Dave has over 20 years of experience in the information security field, and has focused exclusively on application security since 1998. At Aspect, in addition to his COO duties, he is Aspect's application security courseware lead, one of their chief instructors, and provides a wide variety of application security consulting services to Aspect's clients. Prior to starting Aspect, he ran the Application Security Services Group at Exodus Communications. Dave has a Bachelors and Masters degree in Computer Science, is a CISSP, and a CISM.
For more details than this short bio on what I've done at OWASP, listen to my OWASP podcast.
I've also done lots of OWASP conference presentations. Here are some of them:
- 2010 AppSec DC: Strengths of Combining Code Review with Application Penetration Testing - Video | Slides
- 2010 AppSec Europe: OWASP Top 10 for 2010 - Final - Video | PDF
- 2009 AppSec DC: Debut of the OWASP Top 10 for 2010 Release Candidate - Video | Slides
- 2009 Appsec Ireland: How to Avoid Flaws in the First Place: The OWASP ESAPI Project
- 2009 AppSec Europe: OWASP ASVS Project - Slides
- 2009 AppSec Europe: OWASP Enterprise Security API (ESAPI) Project - Video | Slides
- 2008 AppSec NY: Security in Agile Development - Video | Slides
- 2008 AppSec Europe: Fundamental Application Security Building Blocks - The Benefits of Establishing an Enterprise Security API (ESAPI) for Your Organization - Slides
- 2008 AppSec Europe: Agile Security - Breaking the Waterfall Mindset of the Security Industry - Slides
- 2007 AppSec Europe: OWASP WebGoat and WebScarab - WebGoat Slides | WebScarab Slides
- 2006 AppSec Seattle: Why AJAX Applications are far more likely to be insecure, and What to do about it - Slides
Dave can be reached at: dave.wichers (at) aspectsecurity.com or dave.wichers (at) owasp.org
