This site is the archived OWASP Foundation Wiki and is no longer accepting Account Requests.
To view the new OWASP Foundation website, please visit https://owasp.org

Difference between revisions of "Minneapolis St Paul"

From OWASP
Jump to: navigation, search
Line 1: Line 1:
 
__NOTOC__ {{Chapter Template|chaptername=Minneapolis-St. Paul (OWASP MSP)|extra=The chapter leadership team includes  [mailto:[email protected] Alex Bauert] - President, [mailto:[email protected] Todd Dahl], and  [mailto:[email protected] Lorna Alamri].<br>
 
__NOTOC__ {{Chapter Template|chaptername=Minneapolis-St. Paul (OWASP MSP)|extra=The chapter leadership team includes  [mailto:[email protected] Alex Bauert] - President, [mailto:[email protected] Todd Dahl], and  [mailto:[email protected] Lorna Alamri].<br>
  
  We now use [http://www.meetup.com/OWASP-MSP-Meetup/?scroll=true Meetup.com] for RSVP's and to organize meetings.
+
  We use [http://www.meetup.com/OWASP-MSP-Meetup/?scroll=true Meetup.com] for announcements and [https://www.eventbrite.com/e/sept-2015-twin-cities-owasp-chapter-meeting-tickets-18457373501 Eventbrite.com] for RSVP's to organize events and meetings.  
  
 
|mailinglistsite=https://lists.owasp.org/mailman/listinfo/owasp-twincities|emailarchives=https://lists.owasp.org/pipermail/owasp-twincities}}
 
|mailinglistsite=https://lists.owasp.org/mailman/listinfo/owasp-twincities|emailarchives=https://lists.owasp.org/pipermail/owasp-twincities}}
Line 26: Line 26:
  
  
'''When:''' Thursday, June 18th @ 6:00 - 7:45 PM
+
'''When:''' Monday, September 28th @ 6:00 - 7:45 PM
  
'''Title:''' Put Down the Megaphone: Effective Security Advocacy Without All The Shouting
+
'''Title:''' Why Security Needs DevOps
  
The Information Security community understands the importance of advocacy. We know we need to change people’s ways of thinking and working if we’re to make real progress. But the tool we seem to reach for is the megaphone: when breaches happen or serious bugs get found, we get (understandably) shouty. The thing is, that hasn’t been so effective, but what else can we do? Put Down The Megaphone explores this problem and offers a framework for effective advocacy based on research and backed by hard-won experience.
+
I might be the only security guy who thinks DevOps is a good idea. I hear all too often about how insecure it is to push code changes directly into production.  Wrong!  This presentation will first present some foundational concepts: How Vulnerabilities Get Introduced and The Foundational Objectives of DevOps. From there, I will walk through how to build security into a DevOps Environment. The examples used in this presentation will be from Chef but they are very applicable to most DevOps automation tools.
  
'''Speaker:''' Darren Meyer, Senior Security Researcher with Veracode
+
'''Speaker:''' Jay Schulman
  
Darren P Meyer is an Application Security advocate and researcher, technology hobbyist, and maker. He loves to learn, teach, nerd out, and inflict terrible puns on people. His professional background includes logistics, software development, and various aspects of Information Security in organizations ranging from small businesses to Fortune 50 retailers. Darren is currently a Senior Security Researcher with Veracode, where he’s focused on static testing and cloud security.
+
I'm currently writing at JaySchulman.com about growing your security career and am a Managing Principal at Cigital, Inc and lead our Midwest Practice. I focus at Cigital on application security initiatives.  
  
'''Location:''' Cargill, 9350 Excelsior Blvd., Hopkins, MN -- Meeting Room: Hopkins 2
+
I help security teams develop their information security programs and capabilities. I help CISOs, CIOs and CFOs understand and react to enterprise security risks and protect against attacks. I want to build information security organizations which enable the business. Information Security shouldn't be about saying 'no' but about finding a way to get to 'yes.'
 +
 
 +
'''Location:''' Target Northern Campus, 7000 Target Parkway North, Brooklyn Park, 55445
  
 
'''RSVP:'''  
 
'''RSVP:'''  
  
[http://www.meetup.com/OWASP-MSP-Meetup/?scroll=true Meetup.com]
+
[https://www.eventbrite.com/e/sept-2015-twin-cities-owasp-chapter-meeting-tickets-18457373501 Eventbrite.com]
  
 
'''Agenda:''' <br/>
 
'''Agenda:''' <br/>
Line 47: Line 49:
 
7:45 PM Wrap-up<br/>  
 
7:45 PM Wrap-up<br/>  
  
Thank You Cargill for sponsoring our meeting location.
+
Thank You Target for sponsoring our meeting location.
  
 
<!-- '''Follow''' OWASP MSP on your favorite social media sites:  
 
<!-- '''Follow''' OWASP MSP on your favorite social media sites:  

Revision as of 16:57, 3 September 2015

OWASP Minneapolis-St. Paul (OWASP MSP)

Welcome to the Minneapolis-St. Paul (OWASP MSP) chapter homepage. The chapter leadership team includes Alex Bauert - President, Todd Dahl, and Lorna Alamri.

We use Meetup.com for announcements and Eventbrite.com for RSVP's to organize events and meetings. 


Participation

OWASP Foundation (Overview Slides) is a professional association of global members and is open to anyone interested in learning more about software security. Local chapters are run independently and guided by the Chapter_Leader_Handbook. As a 501(c)(3) non-profit professional association your support and sponsorship of any meeting venue and/or refreshments is tax-deductible. Financial contributions should only be made online using the authorized online chapter donation button. To be a SPEAKER at ANY OWASP Chapter in the world simply review the speaker agreement and then contact the local chapter leader with details of what OWASP PROJECT, independent research or related software security topic you would like to present on.

Sponsorship/Membership

Btn donate SM.gif to this chapter or become a local chapter supporter. Or consider the value of Individual, Corporate, or Academic Supporter membership. Ready to become a member? Join Now BlueIcon.JPG



Corporate Sponsors

      Advance it minnesota logo.png
      Best Buy logo.jpg
      FICO

OWASP-MSP Upcoming Chapter meeting

When: Monday, September 28th @ 6:00 - 7:45 PM

Title: Why Security Needs DevOps

I might be the only security guy who thinks DevOps is a good idea. I hear all too often about how insecure it is to push code changes directly into production. Wrong! This presentation will first present some foundational concepts: How Vulnerabilities Get Introduced and The Foundational Objectives of DevOps. From there, I will walk through how to build security into a DevOps Environment. The examples used in this presentation will be from Chef but they are very applicable to most DevOps automation tools.

Speaker: Jay Schulman

I'm currently writing at JaySchulman.com about growing your security career and am a Managing Principal at Cigital, Inc and lead our Midwest Practice. I focus at Cigital on application security initiatives.

I help security teams develop their information security programs and capabilities. I help CISOs, CIOs and CFOs understand and react to enterprise security risks and protect against attacks. I want to build information security organizations which enable the business. Information Security shouldn't be about saying 'no' but about finding a way to get to 'yes.'

Location: Target Northern Campus, 7000 Target Parkway North, Brooklyn Park, 55445

RSVP:

Eventbrite.com

Agenda:
5:30 PM Room opens for networking and CPE signup
6:00 PM Welcome: OWASP chapter update and Chapter Presentation
7:45 PM Wrap-up

Thank You Target for sponsoring our meeting location.



Content

Igor Matlin - Warning: Security Storms are Brewing in Your JavaScript - OWASP (MSP) - May 2015


Secure360

Secure360 is an annual conference providing high quality educational sessions and networking opportunities while working to identify developing trends in risk management, physical security, governance, audit, information security, contingency planning and human capital.

DC612 Meetings

DC612 meets the 2nd Thursday of the month.
http://www.dc612.org/

President: Alex Bauert

Leadership Team: Todd Dahl

Leadership Team: Lorna Alamri

Board Oversight: David Bryan

Content and Social Media: [Eric]

Secure360 Representative: Alex Crittenden