This site is the archived OWASP Foundation Wiki and is no longer accepting Account Requests.
To view the new OWASP Foundation website, please visit https://owasp.org

Houston

From OWASP
Revision as of 16:23, 31 January 2017 by Joseph.Konieczka (talk | contribs)

Jump to: navigation, search

OWASP Houston

Welcome to the Houston chapter homepage. The chapter Leaders are; Joseph Konieczka, Landon Mayo, Patrick Snyder, Paul Scott, Tyler Borland, Tom Cline, Johnathan Kuskos


Participation

OWASP Foundation (Overview Slides) is a professional association of global members and is open to anyone interested in learning more about software security. Local chapters are run independently and guided by the Chapter_Leader_Handbook. As a 501(c)(3) non-profit professional association your support and sponsorship of any meeting venue and/or refreshments is tax-deductible. Financial contributions should only be made online using the authorized online chapter donation button. To be a SPEAKER at ANY OWASP Chapter in the world simply review the speaker agreement and then contact the local chapter leader with details of what OWASP PROJECT, independent research or related software security topic you would like to present on.

Sponsorship/Membership

Btn donate SM.gif to this chapter or become a local chapter supporter. Or consider the value of Individual, Corporate, or Academic Supporter membership. Ready to become a member? Join Now BlueIcon.JPG


OWASP Houston February Chapter Meeting
Wednesday February 22, 2017 at 6:00PM

NOTE: This is a joint event with the Houston Java Users Group and we will be meeting at their location.


Please use the following EventBrite Link to register: https://hjug02222016.eventbrite.com/?aff=owasp


Date and Time: Wednesday, February 22, 2017 6:00 PM – 9:00 PM

Location: PROS 3100 Main Street, Houston 2nd Floor Houston, TX 77002


Title: Effective Application Security Testing at High Velocity: Keeping up with Agile and DevOps

Speaker:

James "Jimmy" Rabon


Description:

In a world of competing requirements, how can application security keep up with the rapid pace of development and still remain effective?


Agile and DevOps put pressure on development for more rapid deployments while at the same time producing higher quality / more secure code.


Security is important (avoid the headlines!) but definitely not easy and competes for resources.


Remediation of security vulnerabilities can be costly and cumbersome, especially once the application is in production.


In this presentation, James Rabon will share lessons learned by working with some of the most advanced and innovative application security customers / programs. Learn how static and dynamic analysis of applications can be made efficient and effective in some of the most dynamic development organizations. See how app sec leaders integrate application security throughout their software development lifecycle and include it in the DevOps tool chain of automation to move security testing at high velocity. Automation is your friend and we will examine where modern security tools are being included in the “treat infrastructure as code” mantra. We’ll also take a look beyond security tools and automation to the people and processes that effective application security programs use to run at high speed. A brief demo will follow for those interested.


Agenda:

6:00-6:30pm: Check-in, food, networking

6:30pm: Meeting start

6:45pm: Announcements, intros

7:00pm: Presentation - Vendor neutral “Best practices” presentation (7pm to 8:30pm)

8:30pm: Door prizes: Raffle, giveaways, books, etc. followed by Vendor spotlight (15 to 20 mins) post-presentation: Fortify Demo, Q&A – collect business cards

9:00pm: Meeting end


Speaker Bio:


Jimmy Rabon began his career as a software developer for the Computer Sciences Corp before deciding to specialize in application security over seven years ago with Fortify. He began his career in application security by serving as an on-site subject matter expert for software security and has performed countless security audits of applications (both static and dynamic testing reviews) for several large commercial and government entities. He has enabled organizations that utilized his or his team’s services, to find and fix exploitable vulnerabilities in critical systems.


Having worked as a software engineer for many years prior to specializing in application security, he understands the unique challenges that developers face when attempting to deliver secure code and can help deliver effective technology and processes to enable information assurance and development teams to work together to make software as secure as possible.


He leads a team of highly skilled application security consultants as the head of HPE Fortify professional services responsible for designing effective software assurance solutions in the Americas.


He is currently a Senior Product Manager with Fortify with a passion for building security products that solve real world problems in the most effective and efficient way possible.