This site is the archived OWASP Foundation Wiki and is no longer accepting Account Requests.
To view the new OWASP Foundation website, please visit https://owasp.org
Difference between revisions of "Los Angeles"
(→Main Presentation) |
|||
| Line 17: | Line 17: | ||
== Main Presentation == | == Main Presentation == | ||
<br> | <br> | ||
| − | * <b> | + | * <b>Building Security into the Test Organization</b><br><br> |
| − | + | The common approach to detecting web security issues is still the regular application of a post-release pen-test or tool based scan. These last minute examinations rarely live up to broader organizational goals; they can be difficult to repeat, measure, or optimize over time. Most of all they're expensive: they find bugs late in the lifecycle. This talk recommends moving security testing responsibility within the test team itself. The approach discussed will work with-or-without the existence of explicit security requirements. See how security testing has been applied at other organizations and how it might be customized for yours. | |
Please sign up to our [https://lists.owasp.org/mailman/listinfo/owasp-losangeles Los Angeles OWASP mailing list] to be notified of future talks and events. | Please sign up to our [https://lists.owasp.org/mailman/listinfo/owasp-losangeles Los Angeles OWASP mailing list] to be notified of future talks and events. | ||
| − | + | <br><br> | |
| − | < | + | <b>Ben Walther</b> firmly believes testers have a wonderfully devious mindset, and has been promoting the idea of "security testing" at Cigital's clients, at OWASP events, and to any friends and relatives who will listen. To this end, with the aid of O'Reilly media, Ben Walther and Paco Hope recently published a book entitled the "Web Security Testing Cookbook." |
Everyone is welcome to join us at our chapter meetings. Meeting agenda will be sent to the [https://lists.owasp.org/mailman/listinfo/owasp-losangeles Los Angeles OWASP mailing list] prior to the meeting. [https://lists.owasp.org/pipermail/owasp-losangeles/ List archives] are also available for members who want to take a look at the latest discussion topics prior to the event. | Everyone is welcome to join us at our chapter meetings. Meeting agenda will be sent to the [https://lists.owasp.org/mailman/listinfo/owasp-losangeles Los Angeles OWASP mailing list] prior to the meeting. [https://lists.owasp.org/pipermail/owasp-losangeles/ List archives] are also available for members who want to take a look at the latest discussion topics prior to the event. | ||
Revision as of 18:36, 12 January 2009
OWASP Los Angeles
Welcome to the Los Angeles chapter homepage. The chapter leader is Cassio Goldschmidt
Participation
OWASP Foundation (Overview Slides) is a professional association of global members and is open to anyone interested in learning more about software security. Local chapters are run independently and guided by the Chapter_Leader_Handbook. As a 501(c)(3) non-profit professional association your support and sponsorship of any meeting venue and/or refreshments is tax-deductible. Financial contributions should only be made online using the authorized online chapter donation button. To be a SPEAKER at ANY OWASP Chapter in the world simply review the speaker agreement and then contact the local chapter leader with details of what OWASP PROJECT, independent research or related software security topic you would like to present on.
Sponsorship/Membership
to this chapter or become a local chapter supporter.
Or consider the value of Individual, Corporate, or Academic Supporter membership. Ready to become a member? 
<paypal>LosAngeles</paypal>
Local News
Upcoming Chapter Meeting
- Date: To be announced.
Meeting Location Symantec Corporation 900 Corporate Pointe Culver City, CA 90230 Laguna Conference Room
Main Presentation
- Building Security into the Test Organization
The common approach to detecting web security issues is still the regular application of a post-release pen-test or tool based scan. These last minute examinations rarely live up to broader organizational goals; they can be difficult to repeat, measure, or optimize over time. Most of all they're expensive: they find bugs late in the lifecycle. This talk recommends moving security testing responsibility within the test team itself. The approach discussed will work with-or-without the existence of explicit security requirements. See how security testing has been applied at other organizations and how it might be customized for yours.
Please sign up to our Los Angeles OWASP mailing list to be notified of future talks and events.
Ben Walther firmly believes testers have a wonderfully devious mindset, and has been promoting the idea of "security testing" at Cigital's clients, at OWASP events, and to any friends and relatives who will listen. To this end, with the aid of O'Reilly media, Ben Walther and Paco Hope recently published a book entitled the "Web Security Testing Cookbook."
Everyone is welcome to join us at our chapter meetings. Meeting agenda will be sent to the Los Angeles OWASP mailing list prior to the meeting. List archives are also available for members who want to take a look at the latest discussion topics prior to the event.
Would you like to speak at an OWASP Los Angeles Meeting?
Call for Papers (CFP) is NOW OPEN ~ to submit educational topic for upcoming meeting please submit your BIO and talk abstract via email to Cassio Goldschmidt. When accepted it will be required to use the following powerpoint OWASP Template
This page provides a list of previous presentations conducted at the Los Angeles Chapter.
