Difference between revisions of "Summit 2013 Attendee Bios"

Simon Bennetts (a.k.a. Psiinon) has been developing web applications since 1997, and strongly believes that you cannot build secure web applications without knowing how to attack them. He works for Mozilla as part of their Security Team.

Some of the projects Simon works on:

   OWASP Zed Attack Proxy project lead
   Mozilla Zest poject lead
   Bodge It Store project lead
   OWASP Web Application Security Testing Cheat Sheet joint author
   OWASP AppSensor contributor
   wavsep contributor
   OWASP Data Exchange Format project lead (currently inactive) 

He is also started an co-leads the OWASP Manchester chapter. Simon has a B.Sc in Computing and Information Systems from Manchester University.

Dinis Cruz is a Security Consultant based in London (UK) and specialized in: ASP.NET/J2EE Application Security, Application Security audits and .NET Security Curriculum Development.

For the past couple years Dinis has focused on the field of Static Source Code Analysis and Dynamic Website Assessments (aka penetration testing), and is the main developer of the OWASP O2 Platform which is an Open Source project that is focused on 'Automating Security Consultants Knowledge/Workflows' and 'Allowing non-security experts to access and consume Security Knowledge'. Dinis is currently focused on making the O2 Platform the industry standard for consuming, instrumenting and data-sharing between: the multiple WebAppSec tools, the Security consultants and the final users (from management to developers). Past industry experience include: running a small Software/Consultancy business, acting as CTO for a Portuguese University, being part of a Security Assessment team (Pentesting and Source Code Assessment) for a global Bank (ABN AMRO), taking the role of Directory of Advanced Technologies at Ounce Labs (acquired by IBM) performing Web Application security assessments on a large number of languages/technologies/frameworks and being a very active participant and enabler at OWASP.

Johanna has mainly worked in the area of C# and ASP.NET development, Testing and Quality Control. She is an experienced developer and understands different types of programming languages such as Java and PHP and different types of scripting languages. Johanna has ample experience in Microsoft Technologies and Security Engineering.

EDUCATION

   MSc. Information Technology with specialization in Security Engineering, University of Liverpool
   BSc. Civil Engineering, University of the Netherlands Antilles 

As the french leader, my goal is to develop the knowledge of application security in the french community (france, canada, ...).

For this I'm : - spending time to share OWASP and Application Security in public and private conferences. - spending time to translate some docs (Top10, Newsletters, ...)

Dennis Groves is a well known thought leader in application security who's work focuses on multidisciplinary approaches to information security risk management. He holds an MSc in Information Security from the University of Royal Holloway, University of London. He is currently a UK expert for the UK mirror of ISO subcommittee 27, WG4. I was also the first author and editor of the OWASP Guide.

Samantha Groves is the Project Manager at OWASP. Samantha has led many projects in her career, some of which include website development, brand development, sustainability and socio-behavioural research projects, competitor analysis, event organisation and management, volunteer engagement projects, staff recruitment and training, and marketing department organisation and strategy implementation projects for a variety of commercial and not-for-profit organisations. She is eager to begin her work at OWASP and help the organisation reach its project completion goals.

Samantha earned her MBA in International Management with a concentration in sustainability from Royal Holloway, University of London. She earned her Bachelor's degree majoring in Multimedia from The University of Advancing Technology in Mesa, Arizona, and she earned her Associate's degree from Scottsdale Community College in Scottsdale, Arizona. Additionally, Samantha recently attained her Prince2 (Foundation) project management certification.

Jason Haddix is a security researcher and consultant at www.securityaegis.com. Jason is also the Director of Penetration Testing at Hewlett Packard and Fortify Software. Jason performs and trains internal candidates on mobile penetration testing, black box web application auditing, network/infrastructural security assessments, cursory mainframe security analysis, cloud architecture reviews, wireless network assessment, binary reverse engineering, and static analysis. He is also a semi-regular player on the capture the flag team Shellphish, an academic hacking group based out of the University of California, Santa Barbara.

Michael is a Software Developer Engineer based on San José, Costa Rica.He has been working in the banking area for the last 5 years and during that time, he was involved in different banking areas including investments and online systems. Michael is a researcher in Web technologies including JSON,Atom,RSS,Web Services, Rest, Jquery and Security. At OWASP Michael is the chapter leader in Costa Rica and he is a recurrent collaborator in the OWASP O2 Platfom lead by Dinis Cruz.

Dutch Chapter Leader. Security Consultant and owner of PervaSec.

Jack Mannino is a managing partner at nVisium Security, a leading provider of mobile application and web application security services. At nVisium he is responsible for ensuring that all services are delivered at the highest levels of quality and with keen attention to detail. He focuses on mobile application security research (especially Android), and is the co-leader of the OWASP Mobile Security Project. In addition to the Mobile Security Project, Jack is also heavily involved with the OWASP Northern Virginia Chapter where he serves as the chapter leader.

Jack is the lead developer for the OWASP GoatDroid Project, and is a contributor to the OWASP RailsGoat Project.

Greek Chapter Leader and Senior Information Security Consultant/Team Leader at Voice@Net.

Chris is currently the Project Leader for the OWASP ESAPI Projects and also serves on the OWASP Global Projects Committee. He has been involved with OWASP for 4 years and has spoken at many OWASP events about the benefits of the Enterprise Security API as well as participated in Leadership discussions amongst the organization.

During the day, Chris is an Application Security Engineer and Senior Software Engineer for Aspect Security where he has been since fall 2010. Prior to joining the team at Aspect Security he spent 5 years as 'Black Ops Beef' for ServiceMagic Inc with the official title of Software Engineer. Before getting involved in software professionally, Chris worked in hardware as a Senior Field Service Engineer providing hardware and software support for PC’s, Servers, Midrange Systems and Peripherals for 9 years.

Experienced Application Security developer, OWASP ESAPI co-owner / committer, secure code reviews