This site is the archived OWASP Foundation Wiki and is no longer accepting Account Requests.
To view the new OWASP Foundation website, please visit https://owasp.org

Difference between revisions of "User:Mchalmers"

From OWASP

Jump to: navigation, search

Latest revision as of 19:34, 25 October 2019

Matthew Chalmers has been involved with OWASP since about 2002 and can be reached at matthew dot chalmers at owasp dot org.

1 OWASP Involvement
2 LinkedIn

OWASP Involvement

OWASP Wiki

My wiki contributions

OWASP Projects

Local Chapter Resources
Certification Project (content owner/reviewer)
Application Security Requirements Project (interim project manager)
OWASP EU Summit 2008
- OWASP PR Project
Global Chapter Committee
OWASP Global Summit 2011
OWASP Governance Task Force
OWASP Codes of Conduct
- Certifying Bodies

OWASP Chapters

Founding member of the original DC Local Chapter (which became the DC-Maryland chapter, then the Washington DC and Baltimore chapters)
Founder and former chapter leader of the original Milwaukee chapter
Member
- Chicago chapter (2005-2012)
- Milwaukee chapter (2005-2016)
- Madison chapter (2012-2016)
- Minneapolis-St. Paul chapter (2016-Present)

Retrieved from "https://wiki.owasp.org/index.php?title=User:Mchalmers&oldid=255748"

@@ Line 1: / Line 1: @@
-<div align="left" style="float: left; margin: 0 4px 0 0; padding: 4px; border: 1px solid #aaa">https://www.owasp.org/images/thumb/8/8e/Chalmers%2C_Matthew.jpg/150px-Chalmers%2C_Matthew.jpg</div><div style="text-align: justify;">I've been doing information assurance related work my entire professional career, since earning my bachelor's degrees from the [http://www.mst.edu/ Missouri University of Science & Technology]. I've worked for public, private, government and non-profit organizations in the defense, finance, manufacturing and healthcare industries including the National Security Agency, JPMorgan Chase and Rockwell Automation.
+<div align="left" style="float: left; margin: 0 4px 0 0; padding: 1px; border: 1px solid #aaa;">[[File:Chalmers,_Matthew.jpg|174px]]</div>Matthew Chalmers has been involved with OWASP since about 2002 and can be reached at matthew ''dot'' chalmers ''at'' owasp ''dot'' org.
-Currently I'm the Chief IT Auditor for [http://www.marshfieldclinic.org/patients/?page=about_legacy Marshfield Clinic Health System]. I hold the [http://www.isaca.org/cism CISM], [http://www.isaca.org/cisa CISA], [http://www.theiia.org/recent-iia-news/index.cfm?i=16487 CRMA], [http://www.giac.org/certifications/audit/gsna.php GSNA], [http://www.giac.org/certifications/forensics/gcfa.php GCFA], [http://cloudsecurityalliance.org/education/ccsk/ CCSK], [http://www.eccouncil.org/ciso/ CCISO], [http://www.eccouncil.org/certification/certified_ethical_hacker.aspx CEH], [http://www.abchs.com/about/ CHS], CFR-D and other certifications.
+<br style="clear: both;">
-I specialize in information technology assessment, audit, compliance, control, governance, management and security.
-I've been involved with OWASP since about 2002. I can be reached at '''matthew''' ''dot'' '''chalmers''' ''at'' '''owasp''' ''dot'' '''org'''.</div><br clear="all"><br>
 ==OWASP Involvement==
@@ Line 16: / Line 12: @@
 * [[:Category:OWASP Application Security Requirements Project|Application Security Requirements Project]] (interim project manager)
 * [[OWASP EU Summit 2008]]
-** [https://lists.owasp.org/mailman/listinfo/owasp_pr_project OWASP PR Project]
+** [http://lists.owasp.org/mailman/listinfo/owasp_pr_project OWASP PR Project]
 * [[Global Chapter Committee]]
-* [[Summit 2011]]
+* [[Summit 2011|OWASP Global Summit 2011]]
 ** [[Summit_2011_Working_Sessions/Session082|Audit Working Session Chair]]
 ** [[Summit_2011_Working_Sessions/Session080|PCI Working Session Co-Chair]]
 ** [[Summit_2011/Funding/Matt_Chalmers|Fundraising Appeal]]
-* [https://lists.owasp.org/mailman/listinfo/governance OWASP Governance Task Force]
+** [[Summit_2011_Attendee_Bios#Chalmers.2C_Matthew|Attendee bio]]
+* [http://lists.owasp.org/mailman/listinfo/governance OWASP Governance Task Force]
+* [[OWASP Codes of Conduct]]
+** [https://www.owasp.org/index.php/OWASP_Codes_of_Conduct#tab=Certifying_Bodies Certifying Bodies]
 ===OWASP Chapters===
-* Founding member of the original DC Local Chapter (which became the DC-Maryland chapter, then the [[Washington_DC|Washington DC]] chapter)
+* Founding member of the original DC Local Chapter (which became the DC-Maryland chapter, then the [[Washington_DC|Washington DC]] and [[Baltimore]] chapters)
-** Active member 2004-2005
+* Founder and former chapter leader of the original [[Milwaukee]] chapter
-** Recorded meeting minutes and maintained chapter web pages (pre-wiki)
+* Member
-* "Member-at-Large"
+** [[Chicago]] chapter (2005-2012)
-** [[Chicago]] chapter (2005-2011)
+** [[Milwaukee]] chapter (2005-2016)
-** [[Madison]] chapter (2005-Present)
+** [[Madison]] chapter (2012-2016)
-* Founder and former chapter leader of the mailing list-only [[Milwaukee]] chapter
+** [[Minneapolis_St_Paul|Minneapolis-St. Paul]] chapter (2016-Present)
+<!--
 ==Non-OWASP Involvement==
-<!-- * [http://www.acfei.com/ ACFEI] (American College of Forensic Examiners Institute)
+* [http://www.acm.org/ ACM] (Association for Computing Machinery)
-* [http://www.eccouncil.org/ EC-Council] (International Council of Electronic Commerce Consultants)
+** [http://www.sigact.org/ SIGACT] (Special Interest Group on Algorithms and Computation Theory)
-* [http://www.graftonarealivearts.us/ GALA] (Grafton Area Live Arts) webmaster
+** [http://www.sigcas.org/ SIGCAS] (Special Interest Group on Computers and Society)
-* [http://www.phrases.org.uk/meanings/nautical-phrases.html CANOE] (Committee to Ascribe a Nautical Origin to Everything) -->
+** [http://www.sigchi.org/ SIGCHI] (Special Interest Group on Computer-Human Interaction)
+** [http://www.sigsac.org/ SIGSAC] (Special Interest Group on Security, Audit, and Control)
+* [http://www.word-detective.com/2013/03/scuttlebutt/ CANOE] (Committee to Ascribe a Nautical Origin to Everything)
+* [http://www.cloudsecurityalliance.org/ CSA] (Cloud Security Alliance)
+* [http://www.eff.org/ EFF] (Electronic Frontier Foundation)
+** [https://www.eff.org/about/opportunities/volunteer Cooperating Tech]
+* [https://www.fsisac.com/ FS-ISAC] (Financial Services Information Sharing and Analysis Center)
+** [https://www.fsisac.com/about/committees Research Survey Committee]
+* [http://www.iacr.org/ IACR] (International Association for Cryptologic Research)
 * [http://csrc.nist.gov/nissc/1999/program/isso/sld077.htm IATFF] (Information Assurance Technical Framework Forum)
-* [http://www.computer.org/ IEEE Computer Society] [http://www.ieee-security.org/ Technical Committee on Security & Privacy]
+* [http://www.ieee.org/ IEEE] (Institute of Electrical & Electronics Engineers)
-* [http://www.theiia.org/ IIA] (Institute of Internal Auditors) [http://www.theiia.org/chapters/milwaukee Milwaukee Chapter]
+** [http://www.comsoc.org/ Communications Society]
-** Secretary & Webmaster, 2011-2012
+*** [http://cms.comsoc.org/eprise/main/SiteGen/TC_CIS/Content/Home.html Communications and Information Security Technical Committee]
-** Board of governors, 2009-2011
+** [http://www.computer.org/ Computer Society]
-* [http://www.isaca.org/ ISACA] (Information Systems Audit and Control Association) [http://www.isaca-km.org/ Kettle Moraine Chapter]
+*** [http://cybersecurity.ieee.org/ Cybersecurity Community]
-* [http://www.isoc.org/ ISoc] (Internet Society) [http://tools.ietf.org/area/sec/trac/wiki IETF SAAG] (Internet Engineering Task Force Security Area Advisory Group)
+*** [http://www.ieee-security.org/ Technical Committee on Security & Privacy]
-<!-- * [http://www.niap-ccevs.org/ NIAP] (National Information Assurance Partnership) -->
+** [http://www.itsoc.org/ Information Theory Society]
-* [http://www.nist.gov/ NIST] (National Institute of Standards and Technology) [http://www.nist.gov/itl/ ITL] [http://www.nist.gov/itl/csd/ CSD] [http://www.nist.gov/itl/csd/ct/ CTG] Cryptographic Key Management Workshop delegate
+** [http://www.signalprocessingsociety.org/technical-committees/list/ifs-tc/ Signal Processing Society Information Forensics and Security Technical Committee]
-* [http://corp.getoutsidecounsel.com/ Outside Counsel] Mentor
+* [http://www.theiia.org/ IIA] (Institute of Internal Auditors)
-* [http://www.pikapp.org/ Pi Kappa Phi], [http://www.pikapps-mst.org/ Gamma Lambda Chapter]
+** [https://chapters.theiia.org/milwaukee/Pages/default.aspx Milwaukee Chapter] Member, 2006-2012 & 2015-2016; Secretary of the Board, 2009-2011
-** Alumni Housing Corp Historian, 2010-Present
+** [https://chapters.theiia.org/madison/Pages/default.aspx Madison Chapter] Member, 2012-2015; Invited Speaker, 2016
-** Webmaster, 2007-Present
+* [http://www.identitymanagementinstitute.org/ IMI] (Identity Management Institute)
+* [http://www.isaca.org/ ISACA] (Information Systems Audit and Control Association)
+** [http://isaca-km.org/ Kettle Moraine Chapter] Member, 2006-2016; Invited Speaker, 2014
+* [http://www.isoc.org/ ISoc] (Internet Society)
+** [http://www.ietf.org/ IETF] (Internet Engineering Task Force)
+*** [http://tools.ietf.org/area/sec/trac/wiki SAAG] (Security Area Advisory Group)
+** [https://irtf.org/ IRTF] (Internet Research Task Force)
+*** [https://irtf.org/cfrg CFRG] (Crypto Forum Research Group)
+* [http://www.nist.gov/ NIST] (National Institute of Standards and Technology)
+** [http://www.nist.gov/itl/ ITL] (Information Technology Laboratory)
+*** [http://www.nist.gov/itl/csd/ CSD] (Computer Security Division)
+**** [http://www.nist.gov/itl/csd/ct/ CTG] (Cryptographic Technology Group)
+***** [http://csrc.nist.gov/groups/ST/key_mgmt/ Cryptographic Key Management Project]
 * [http://www.sans.org/ SANS Institute] (System administration, Audit, Networking and Security Institute)
-** [http://www.sans.org/mentor/ Mentor] for courses [http://www.sans.org/training/description.php?mid=98 SEC-508]: Computer Forensics, Investigation, and Response; and [http://www.sans.org/training/description.php?mid=6 AUD-507]: Auditing Networks, Perimeters & Systems
+** [http://www.sans.org/mentor/ Mentor] Program
-<!-- * [http://www.upaf.org/ UPAF] [http://events.upaf.org/ride/ Ride for the Arts]
+* [http://www.webappsec.org/ WASC] (Web Application Security Consortium)
-** 75-mile route, 2010-2011
+** [http://projects.webappsec.org/w/page/13246984/WASC-Community Articles Peer Review Team]
-*** Highest individual fundraiser on Rockwell Automation team, both years -->
-* [http://www.village.grafton.wi.us/ Village of Grafton, Wisconsin]
-** [http://www.village.grafton.wi.us/index.aspx?nid=290 Board of Review], 2010-2012
-** [http://www.village.grafton.wi.us/index.aspx?NID=289 Board of Appeals], 2011-2012
-* [http://www.webappsec.org/ WASC] (Web Application Security Consortium) [http://projects.webappsec.org/w/page/13246984/WASC-Community Articles Peer Review Team] member
 =="Credentials"==
 ===Certifications===
-* CISM - Certified Information Security Manager
+* [http://www.identitymanagementinstitute.org/cdp/ CDP] - Certified in Data Protection
-* CISA - Certified Information Systems Auditor
+* [http://www.identitymanagementinstitute.org/ciam/ CIAM] - Certified Identity and Access Manager
-* CRMA - Certified in Risk Management Assurance
+* [http://www.identitymanagementinstitute.org/cirm/ CIRM] - Certified Identity Risk Manager
-* GSNA - GIAC-certified Systems and Network Auditor
+* [http://www.accessdata.com/training/certifications  ACE] - AccessData Certified Examiner
-* GCFA - GIAC Certified Forensic Analyst
+* [http://www.eccouncil.org/ciso/ CCISO] - Certified Chief Information Security Officer
-* CCSK - Certified in Cloud Security Knowledge
+* [http://www.isaca.org/cism CISM] - Certified Information Security Manager
-* CCISO - Certified Chief Information Security Officer
+* [http://cloudsecurityalliance.org/education/ccsk/ CCSK] - Certified in Cloud Security Knowledge
-* CEH - Certified Ethical Hacker
+* [http://na.theiia.org/certification/crma-certification CRMA] - Certified in Risk Management Assurance
-* CHS - Certified in Homeland Security (Level III)
+* [http://www.giac.org/certifications/forensics/gcfa.php GCFA] - GIAC Certified Forensic Analyst
-* CFR-D - Certified First Responder with Defibrillation
+* [http://www.itil-officialsite.com/Qualifications/ITILQualificationLevels/ITILFoundation.aspx ITIL] Foundation Certified
-* ITIL v3 Foundation Certified
+* [http://www.isaca.org/cisa CISA] - Certified Information Systems Auditor
+* [http://www.abchs.com/certification/chsiii.php CHS] - Certified in Homeland Security
+* [http://www.eccouncil.org/certification/certified_ethical_hacker.aspx CEH] - Certified Ethical Hacker
+* [http://www.giac.org/certifications/audit/gsna.php GSNA] - GIAC-certified Systems and Network Auditor
+* [https://www.microsoft.com/en-us/learning/microsoft-certified-professional.aspx MCP] - Microsoft Certified Professional
-===Education & Training===
+===Training===
-* Capitol College (8/2012 - 5/2014, expected)
+* CoalFire - Adaptive Penetration Testing (5/2018)
-** Master of Science in Information Assurance
+* CITI - Human Subjects Research (10/2014)
-* IIA/Audimation - Antifraud Controls using Data Mining and Continuous Monitoring Techniques (8/2011)
+* IIA - Risk-Based, Process-Oriented & Performance-Driven Operational Auditing (6/2013)
-* MISTI/ISACA - Auditing & Securing Cloud-Based Services (1/2011)
+* IIA - Antifraud Controls using Data Mining and Continuous Monitoring Techniques (8/2011)
+* ISACA - Auditing & Securing Cloud-Based Services (1/2011)
 * ISACA - Information Security Management & Strategies for Implementing IT Governance (12/2010)
 * PDS/SOScorp - ITIL v3 Foundation Course (9/2008)
-* SANS – Computer Forensics, Investigation, and Response (4/2008)
+* SANS - Computer Forensics, Investigation, and Response (4/2008)
-* Entellus Technology Group – SAP ERP Basis Auditing & Security Risks (12/2007)
+* Entellus Technology Group - SAP ERP Basis Auditing & Security Risks (12/2007)
-* SAP America – Virsa Compliance Calibrator Training (10/2006)
+* SAP America - Virsa Compliance Calibrator Training (10/2006)
-* IIA/Deloitte – SAP ERP Technical Audit (8/2006)
+* IIA - SAP ERP Technical Audit (8/2006)
-* SPI Dynamics – Web Application Security Assessment with WebInspect (11/2005)
+* SPI Dynamics - Web Application Security Assessment with WebInspect (11/2005)
-* SANS – Hacker Techniques, Exploits and Incident Handling (10/2005)
+* SANS - Hacker Techniques, Exploits and Incident Handling (10/2005)
-* Infosec Institute – Advanced Ethical Hacking: Expert Penetration Testing (1/2005)
+* Infosec Institute - Advanced Ethical Hacking: Expert Penetration Testing (1/2005)
-* EC-Council/Mile2 – Certified Ethical Hacker Training (7/2004)
+* Mile2 - Certified Ethical Hacker Training (7/2004)
-* Foundstone – Ultimate Web Hacking (9/2003)
+* Foundstone - Ultimate Web Hacking (9/2003)
-* Siegeworks – Advanced AppAuditor Training (12/2002)
+* Siegeworks - Advanced AppAuditor Training (12/2002)
-* SANS – Auditing Networks, Perimeters, and Systems (4/2002)
+* SANS - Auditing Networks, Perimeters, and Systems (4/2002)
-* Sanctum – AppScan AppAuditor Training (5/2001)
+* Sanctum - AppScan AppAuditor Training (5/2001)
-* Bank One University (1/2001 – 1/2005)
+* National Cryptologic School - Information Systems Security Engineering (2/2000)
-** Numerous business/management courses including Planning and Executing Projects, Understanding Personality Styles, Incident Management, Presentation Skills, SMART Goals, and Using the Gallup Q12
+* National Cryptologic School - Operational Information Systems Security (11/1998)
-* National Cryptologic School (1/1997 – 1/2001)
-** Numerous classified & unclassified courses including Information Systems Security Engineering, Technical Writing & Documentation, Encryption Key Management, Operational Information Systems Security, Computer Network Exploitation, and Operations Security
+===Education===
-* Naval Technical Training Center Detachment/Naval Center for Information Dominance Detachment at Goodfellow AFB (7/1996 - 12/1996)
+* Doctor of Science (Candidate for the Degree), Cybersecurity, [http://capitol.technology.university/ Capitol Technology University]
-** Course X3ABR1N333A 011/014 (classified)
+** Dissertation (WIP): User Perception of Utility Constraints in End-to-End Email Encryption Solutions
-* American Red Cross - Emergency Medical Response (5/1995)
+* Master of Science, Information Assurance, [http://capitol.technology.university/ Capitol Technology University]
-* Naval Security Group Detachment/Naval Center for Information Dominance Detachment at Presidio of Monterey (4/1995 - 7/1996)
+* Bachelor of Arts, Psychology & Philosophy, [http://www.mst.edu/ Missouri University of Science & Technology]
-** Course A-232-0021 (classified)
+* Associate of Arts, Russian, [http://www.dliflc.edu/ Defense Language Institute]
-* Missouri University of Science & Technology (8/1990 - 12/1994)
+-->
-** Bachelors of Arts in Psychology and Philosophy
-==Miscellany==
+==LinkedIn==
-[https://www.facebook.com/mdchalmers http://icons.iconarchive.com/icons/danleech/simple/48/facebook-icon.png][https://www.linkedin.com/in/mdchalmers http://icons.iconarchive.com/icons/danleech/simple/48/linkedin-icon.png][https://plus.google.com/111498867553953764439/about http://icons.iconarchive.com/icons/danleech/simple/48/google-plus-icon.png][https://www.amazon.com/gp/pdp/profile/A1TS7LUEDD6B03 http://icons.iconarchive.com/icons/danleech/simple/48/amazon-icon.png][http://mystatus.skype.com/bigclassic/mdchalmers http://icons.iconarchive.com/icons/danleech/simple/48/skype-icon.png][https://sourceforge.net/users/mchalmers http://s3.coder.io/sourceforge.net.png]
+[http://linkedin.com/in/mdc http://instructor.mstc.edu/instructor/mchalmers/linkedin-find-me-button.gif]
-[https://www.xing.com/profile/Matthew_Chalmers http://files.softicons.com/download/social-media-icons/simple-icons-by-dan-leech/png/48x48/xing.png]
-<!-- [https://www.ohloh.net/accounts/mchalmers http://a0.twimg.com/profile_images/1875443436/icon_normal.png] -->

Difference between revisions of "User:Mchalmers"

Latest revision as of 19:34, 25 October 2019

OWASP Involvement

OWASP Wiki

OWASP Projects

OWASP Chapters

LinkedIn

Navigation menu

Personal tools

Namespaces

Variants

Views

More

Search

Navigation

Reference

Tools