This site is the archived OWASP Foundation Wiki and is no longer accepting Account Requests.
To view the new OWASP Foundation website, please visit https://owasp.org
Difference between revisions of "User:Mchalmers"
From OWASP
m (→Social Media Profiles) |
m (→OWASP Chapters) |
||
(101 intermediate revisions by the same user not shown) | |||
Line 1: | Line 1: | ||
− | < | + | <div align="left" style="float: left; margin: 0 4px 0 0; padding: 1px; border: 1px solid #aaa;">[[File:Chalmers,_Matthew.jpg|174px]]</div>Matthew Chalmers has been involved with OWASP since about 2002 and can be reached at matthew ''dot'' chalmers ''at'' owasp ''dot'' org. |
+ | |||
+ | <br style="clear: both;"> | ||
+ | |||
==OWASP Involvement== | ==OWASP Involvement== | ||
===OWASP Wiki=== | ===OWASP Wiki=== | ||
Line 15: | Line 18: | ||
** [[Summit_2011_Working_Sessions/Session080|PCI Working Session Co-Chair]] | ** [[Summit_2011_Working_Sessions/Session080|PCI Working Session Co-Chair]] | ||
** [[Summit_2011/Funding/Matt_Chalmers|Fundraising Appeal]] | ** [[Summit_2011/Funding/Matt_Chalmers|Fundraising Appeal]] | ||
+ | ** [[Summit_2011_Attendee_Bios#Chalmers.2C_Matthew|Attendee bio]] | ||
* [http://lists.owasp.org/mailman/listinfo/governance OWASP Governance Task Force] | * [http://lists.owasp.org/mailman/listinfo/governance OWASP Governance Task Force] | ||
* [[OWASP Codes of Conduct]] | * [[OWASP Codes of Conduct]] | ||
− | ** [https://owasp.org/index.php/OWASP_Codes_of_Conduct#tab=Certifying_Bodies Certifying Bodies] | + | ** [https://www.owasp.org/index.php/OWASP_Codes_of_Conduct#tab=Certifying_Bodies Certifying Bodies] |
===OWASP Chapters=== | ===OWASP Chapters=== | ||
− | * Founding member of the original DC Local Chapter (which became the DC-Maryland chapter, then the [[Washington_DC|Washington DC]] | + | * Founding member of the original DC Local Chapter (which became the DC-Maryland chapter, then the [[Washington_DC|Washington DC]] and [[Baltimore]] chapters) |
− | |||
− | |||
* Founder and former chapter leader of the original [[Milwaukee]] chapter | * Founder and former chapter leader of the original [[Milwaukee]] chapter | ||
− | * | + | * Member |
− | ** [[Chicago]] chapter (2005- | + | ** [[Chicago]] chapter (2005-2012) |
− | ** [[ | + | ** [[Milwaukee]] chapter (2005-2016) |
− | ** [[ | + | ** [[Madison]] chapter (2012-2016) |
− | + | ** [[Minneapolis_St_Paul|Minneapolis-St. Paul]] chapter (2016-Present) | |
+ | <!-- | ||
==Non-OWASP Involvement== | ==Non-OWASP Involvement== | ||
* [http://www.acm.org/ ACM] (Association for Computing Machinery) | * [http://www.acm.org/ ACM] (Association for Computing Machinery) | ||
Line 35: | Line 38: | ||
** [http://www.sigchi.org/ SIGCHI] (Special Interest Group on Computer-Human Interaction) | ** [http://www.sigchi.org/ SIGCHI] (Special Interest Group on Computer-Human Interaction) | ||
** [http://www.sigsac.org/ SIGSAC] (Special Interest Group on Security, Audit, and Control) | ** [http://www.sigsac.org/ SIGSAC] (Special Interest Group on Security, Audit, and Control) | ||
− | * [http://www. | + | * [http://www.word-detective.com/2013/03/scuttlebutt/ CANOE] (Committee to Ascribe a Nautical Origin to Everything) |
* [http://www.cloudsecurityalliance.org/ CSA] (Cloud Security Alliance) | * [http://www.cloudsecurityalliance.org/ CSA] (Cloud Security Alliance) | ||
* [http://www.eff.org/ EFF] (Electronic Frontier Foundation) | * [http://www.eff.org/ EFF] (Electronic Frontier Foundation) | ||
+ | ** [https://www.eff.org/about/opportunities/volunteer Cooperating Tech] | ||
+ | * [https://www.fsisac.com/ FS-ISAC] (Financial Services Information Sharing and Analysis Center) | ||
+ | ** [https://www.fsisac.com/about/committees Research Survey Committee] | ||
* [http://www.iacr.org/ IACR] (International Association for Cryptologic Research) | * [http://www.iacr.org/ IACR] (International Association for Cryptologic Research) | ||
* [http://csrc.nist.gov/nissc/1999/program/isso/sld077.htm IATFF] (Information Assurance Technical Framework Forum) | * [http://csrc.nist.gov/nissc/1999/program/isso/sld077.htm IATFF] (Information Assurance Technical Framework Forum) | ||
Line 43: | Line 49: | ||
** [http://www.comsoc.org/ Communications Society] | ** [http://www.comsoc.org/ Communications Society] | ||
*** [http://cms.comsoc.org/eprise/main/SiteGen/TC_CIS/Content/Home.html Communications and Information Security Technical Committee] | *** [http://cms.comsoc.org/eprise/main/SiteGen/TC_CIS/Content/Home.html Communications and Information Security Technical Committee] | ||
− | |||
** [http://www.computer.org/ Computer Society] | ** [http://www.computer.org/ Computer Society] | ||
+ | *** [http://cybersecurity.ieee.org/ Cybersecurity Community] | ||
*** [http://www.ieee-security.org/ Technical Committee on Security & Privacy] | *** [http://www.ieee-security.org/ Technical Committee on Security & Privacy] | ||
** [http://www.itsoc.org/ Information Theory Society] | ** [http://www.itsoc.org/ Information Theory Society] | ||
− | |||
** [http://www.signalprocessingsociety.org/technical-committees/list/ifs-tc/ Signal Processing Society Information Forensics and Security Technical Committee] | ** [http://www.signalprocessingsociety.org/technical-committees/list/ifs-tc/ Signal Processing Society Information Forensics and Security Technical Committee] | ||
− | + | * [http://www.theiia.org/ IIA] (Institute of Internal Auditors) | |
− | * [ | + | ** [https://chapters.theiia.org/milwaukee/Pages/default.aspx Milwaukee Chapter] Member, 2006-2012 & 2015-2016; Secretary of the Board, 2009-2011 |
− | + | ** [https://chapters.theiia.org/madison/Pages/default.aspx Madison Chapter] Member, 2012-2015; Invited Speaker, 2016 | |
* [http://www.identitymanagementinstitute.org/ IMI] (Identity Management Institute) | * [http://www.identitymanagementinstitute.org/ IMI] (Identity Management Institute) | ||
− | * [http://www.isaca.org/ ISACA] (Information Systems Audit and Control Association) | + | * [http://www.isaca.org/ ISACA] (Information Systems Audit and Control Association) |
+ | ** [http://isaca-km.org/ Kettle Moraine Chapter] Member, 2006-2016; Invited Speaker, 2014 | ||
* [http://www.isoc.org/ ISoc] (Internet Society) | * [http://www.isoc.org/ ISoc] (Internet Society) | ||
** [http://www.ietf.org/ IETF] (Internet Engineering Task Force) | ** [http://www.ietf.org/ IETF] (Internet Engineering Task Force) | ||
*** [http://tools.ietf.org/area/sec/trac/wiki SAAG] (Security Area Advisory Group) | *** [http://tools.ietf.org/area/sec/trac/wiki SAAG] (Security Area Advisory Group) | ||
− | * [http://www.nist.gov/ NIST] (National Institute of Standards and Technology) [http://www.nist.gov/itl/ ITL] (Information Technology Laboratory) [http://www.nist.gov/itl/csd/ CSD] (Computer Security Division) [http://www.nist.gov/itl/csd/ct/ CTG] (Cryptographic Technology Group) [http://csrc.nist.gov/groups/ST/key_mgmt/ Cryptographic Key Management Project] | + | ** [https://irtf.org/ IRTF] (Internet Research Task Force) |
− | * [http://www.sans.org/ SANS Institute] (System administration, Audit, Networking and Security Institute) [http://www.sans.org/mentor/ Mentor] Program | + | *** [https://irtf.org/cfrg CFRG] (Crypto Forum Research Group) |
+ | * [http://www.nist.gov/ NIST] (National Institute of Standards and Technology) | ||
+ | ** [http://www.nist.gov/itl/ ITL] (Information Technology Laboratory) | ||
+ | *** [http://www.nist.gov/itl/csd/ CSD] (Computer Security Division) | ||
+ | **** [http://www.nist.gov/itl/csd/ct/ CTG] (Cryptographic Technology Group) | ||
+ | ***** [http://csrc.nist.gov/groups/ST/key_mgmt/ Cryptographic Key Management Project] | ||
+ | * [http://www.sans.org/ SANS Institute] (System administration, Audit, Networking and Security Institute) | ||
+ | ** [http://www.sans.org/mentor/ Mentor] Program | ||
* [http://www.webappsec.org/ WASC] (Web Application Security Consortium) | * [http://www.webappsec.org/ WASC] (Web Application Security Consortium) | ||
** [http://projects.webappsec.org/w/page/13246984/WASC-Community Articles Peer Review Team] | ** [http://projects.webappsec.org/w/page/13246984/WASC-Community Articles Peer Review Team] | ||
Line 64: | Line 77: | ||
=="Credentials"== | =="Credentials"== | ||
===Certifications=== | ===Certifications=== | ||
+ | * [http://www.identitymanagementinstitute.org/cdp/ CDP] - Certified in Data Protection | ||
+ | * [http://www.identitymanagementinstitute.org/ciam/ CIAM] - Certified Identity and Access Manager | ||
* [http://www.identitymanagementinstitute.org/cirm/ CIRM] - Certified Identity Risk Manager | * [http://www.identitymanagementinstitute.org/cirm/ CIRM] - Certified Identity Risk Manager | ||
* [http://www.accessdata.com/training/certifications ACE] - AccessData Certified Examiner | * [http://www.accessdata.com/training/certifications ACE] - AccessData Certified Examiner | ||
Line 71: | Line 86: | ||
* [http://na.theiia.org/certification/crma-certification CRMA] - Certified in Risk Management Assurance | * [http://na.theiia.org/certification/crma-certification CRMA] - Certified in Risk Management Assurance | ||
* [http://www.giac.org/certifications/forensics/gcfa.php GCFA] - GIAC Certified Forensic Analyst | * [http://www.giac.org/certifications/forensics/gcfa.php GCFA] - GIAC Certified Forensic Analyst | ||
− | * [http://www.itil-officialsite.com/Qualifications/ITILQualificationLevels/ITILFoundation.aspx ITIL] | + | * [http://www.itil-officialsite.com/Qualifications/ITILQualificationLevels/ITILFoundation.aspx ITIL] Foundation Certified |
* [http://www.isaca.org/cisa CISA] - Certified Information Systems Auditor | * [http://www.isaca.org/cisa CISA] - Certified Information Systems Auditor | ||
+ | * [http://www.abchs.com/certification/chsiii.php CHS] - Certified in Homeland Security | ||
* [http://www.eccouncil.org/certification/certified_ethical_hacker.aspx CEH] - Certified Ethical Hacker | * [http://www.eccouncil.org/certification/certified_ethical_hacker.aspx CEH] - Certified Ethical Hacker | ||
− | |||
* [http://www.giac.org/certifications/audit/gsna.php GSNA] - GIAC-certified Systems and Network Auditor | * [http://www.giac.org/certifications/audit/gsna.php GSNA] - GIAC-certified Systems and Network Auditor | ||
− | * [ | + | * [https://www.microsoft.com/en-us/learning/microsoft-certified-professional.aspx MCP] - Microsoft Certified Professional |
− | |||
− | |||
− | |||
− | |||
− | |||
− | |||
− | |||
− | |||
− | |||
===Training=== | ===Training=== | ||
+ | * CoalFire - Adaptive Penetration Testing (5/2018) | ||
* CITI - Human Subjects Research (10/2014) | * CITI - Human Subjects Research (10/2014) | ||
* IIA - Risk-Based, Process-Oriented & Performance-Driven Operational Auditing (6/2013) | * IIA - Risk-Based, Process-Oriented & Performance-Driven Operational Auditing (6/2013) | ||
− | * IIA | + | * IIA - Antifraud Controls using Data Mining and Continuous Monitoring Techniques (8/2011) |
− | * | + | * ISACA - Auditing & Securing Cloud-Based Services (1/2011) |
* ISACA - Information Security Management & Strategies for Implementing IT Governance (12/2010) | * ISACA - Information Security Management & Strategies for Implementing IT Governance (12/2010) | ||
* PDS/SOScorp - ITIL v3 Foundation Course (9/2008) | * PDS/SOScorp - ITIL v3 Foundation Course (9/2008) | ||
− | * SANS | + | * SANS - Computer Forensics, Investigation, and Response (4/2008) |
− | * Entellus Technology Group | + | * Entellus Technology Group - SAP ERP Basis Auditing & Security Risks (12/2007) |
− | * SAP America | + | * SAP America - Virsa Compliance Calibrator Training (10/2006) |
− | * IIA | + | * IIA - SAP ERP Technical Audit (8/2006) |
− | * SPI Dynamics | + | * SPI Dynamics - Web Application Security Assessment with WebInspect (11/2005) |
− | * SANS | + | * SANS - Hacker Techniques, Exploits and Incident Handling (10/2005) |
− | * Infosec Institute | + | * Infosec Institute - Advanced Ethical Hacking: Expert Penetration Testing (1/2005) |
− | * Mile2 | + | * Mile2 - Certified Ethical Hacker Training (7/2004) |
− | * Foundstone | + | * Foundstone - Ultimate Web Hacking (9/2003) |
− | * Siegeworks | + | * Siegeworks - Advanced AppAuditor Training (12/2002) |
− | * SANS | + | * SANS - Auditing Networks, Perimeters, and Systems (4/2002) |
− | * Sanctum | + | * Sanctum - AppScan AppAuditor Training (5/2001) |
* National Cryptologic School - Information Systems Security Engineering (2/2000) | * National Cryptologic School - Information Systems Security Engineering (2/2000) | ||
* National Cryptologic School - Operational Information Systems Security (11/1998) | * National Cryptologic School - Operational Information Systems Security (11/1998) | ||
− | |||
− | == | + | ===Education=== |
− | + | * Doctor of Science (Candidate for the Degree), Cybersecurity, [http://capitol.technology.university/ Capitol Technology University] | |
− | [http:// | + | ** Dissertation (WIP): User Perception of Utility Constraints in End-to-End Email Encryption Solutions |
− | [http:// | + | * Master of Science, Information Assurance, [http://capitol.technology.university/ Capitol Technology University] |
− | [ | + | * Bachelor of Arts, Psychology & Philosophy, [http://www.mst.edu/ Missouri University of Science & Technology] |
+ | * Associate of Arts, Russian, [http://www.dliflc.edu/ Defense Language Institute] | ||
--> | --> | ||
− | [ | + | |
+ | ==LinkedIn== | ||
+ | [http://linkedin.com/in/mdc http://instructor.mstc.edu/instructor/mchalmers/linkedin-find-me-button.gif] |
Latest revision as of 19:34, 25 October 2019
Matthew Chalmers has been involved with OWASP since about 2002 and can be reached at matthew dot chalmers at owasp dot org.
OWASP Involvement
OWASP Wiki
OWASP Projects
- Local Chapter Resources
- Certification Project (content owner/reviewer)
- Application Security Requirements Project (interim project manager)
- OWASP EU Summit 2008
- Global Chapter Committee
- OWASP Global Summit 2011
- OWASP Governance Task Force
- OWASP Codes of Conduct
OWASP Chapters
- Founding member of the original DC Local Chapter (which became the DC-Maryland chapter, then the Washington DC and Baltimore chapters)
- Founder and former chapter leader of the original Milwaukee chapter
- Member
- Chicago chapter (2005-2012)
- Milwaukee chapter (2005-2016)
- Madison chapter (2012-2016)
- Minneapolis-St. Paul chapter (2016-Present)