This site is the archived OWASP Foundation Wiki and is no longer accepting Account Requests.
To view the new OWASP Foundation website, please visit https://owasp.org

Difference between revisions of "Newcastle"

From OWASP
Jump to: navigation, search
Line 12: Line 12:
 
* Ian Oxley on Content Security Policy
 
* Ian Oxley on Content Security Policy
 
* Mike Goodwin talking about his OWASP threat modelling tool project
 
* Mike Goodwin talking about his OWASP threat modelling tool project
 +
* Neil Dixley on 'OWASP Top 10 Mobile Risks'
  
 
If you would like to volunteer to speak at this or any future meetings, please get in contact with the chapter leaders - you would be very welcome!
 
If you would like to volunteer to speak at this or any future meetings, please get in contact with the chapter leaders - you would be very welcome!

Revision as of 14:24, 21 September 2015

OWASP Newcastle

Welcome to the Newcastle chapter homepage. The chapter leaders are Connor Carr and Mike Goodwin


Participation

OWASP Foundation (Overview Slides) is a professional association of global members and is open to anyone interested in learning more about software security. Local chapters are run independently and guided by the Chapter_Leader_Handbook. As a 501(c)(3) non-profit professional association your support and sponsorship of any meeting venue and/or refreshments is tax-deductible. Financial contributions should only be made online using the authorized online chapter donation button. To be a SPEAKER at ANY OWASP Chapter in the world simply review the speaker agreement and then contact the local chapter leader with details of what OWASP PROJECT, independent research or related software security topic you would like to present on.

Sponsorship/Membership

Btn donate SM.gif to this chapter or become a local chapter supporter. Or consider the value of Individual, Corporate, or Academic Supporter membership. Ready to become a member? Join Now BlueIcon.JPG


The next meeting will take place on 29/09/2015 from 18:00 to 21:00 at Northumbria University Ellison Building EBA002. We are changing the format this time and having 3 small 20 minute talks, a refreshment break and then a single 60 minute talk

We are still looking for a speaker for the long talk, but the short sessions are

  • John Beddard on Securing Real-Time Networks
  • Ian Oxley on Content Security Policy
  • Mike Goodwin talking about his OWASP threat modelling tool project
  • Neil Dixley on 'OWASP Top 10 Mobile Risks'

If you would like to volunteer to speak at this or any future meetings, please get in contact with the chapter leaders - you would be very welcome!

The next event will be run on 29/09/2015 from 18:00 to 21:00 at Northumbria University Ellison Building EBA002.

This is the Fourth Meeting of the Newcastle Chapter.

We are changing the format this time and having 3 small 20 minute talks, a refreshment break and then a single 60 minute talk.


The talks are as follows:

18:00 - 18:20 John Beddard on Securing Real-Time Networks which should prove extremely interesting given the amount of sysops we have!

18:20 - 18:40 Ian Oxley on Content Security Policy

18:40 - 19:00 Mike Goodwin talking about his OWASP threat modelling tool project.

19:00 - 20:00 Pizza!

20:00 - 21:00 Neil Dixley on 'OWASP Top 10 Mobile Risks': An introduction to using the OWASP top 10 for mobile risks for secure mobile development, including an overview of the OWASP Mobile Security Project and how you can participate.

Everyone is free to attend.

2015 Dates

28/07/2015 from 18:00 to 21:00 at Northumbria University Ellison Building EBA102B.

Speakers:

  • Andrew Waite: Honeypots; from research to the Enterprise.

Media: OWASP_Honeypots.odp

  • George Chlapoutakis: Security in the World of Containerisation.

Media: OWASP_Security_Containerisation.ppt

Speakers:

  • Robin Fewster: An introduction to basic application penetration testing.

An introduction to penetration testing, using several OWASP projects as well as other open source and free programs. Media: An_introduction_to_penetration_testing.pptx

  • Neil Dixley: The Elevation of Privilege Threat Modelling Tool.

An introduction to threat modelling and using the 'Elevation of Privilege' card game to facilitate and improve team threat modelling exercises. Media: Threat_Modeling_Presentation.pptx

24/03/2015 from 18:00 to 21:00 at Northumbria University Ellison Building EBA002.

Speakers:

  • Neil Dixley: Cognitive Bias and Security Vulnerabilities: The psychology of software engineering. An introduction to the psychology of cognitive bias and how human nature and cognitive biases are the key to user based security vulnerabilities. A look at how our brains trick us into feeling safe while giving our pin number to strangers on the phone plus a look at how we can use technology to disrupt cognitive bias and use these human traits to mitigate threats and strengthen application security. Media:Cognitive_Bias_and_Security_Vulnerabilities__Presentation.pptx
  • Andy Ward: Security Compliance for Developers - Are we Certified... or Certifiable?. Against a background of increasing threats and hacks, with more and more of our personal lives and business processes conducted online, it's never been more important to ensure our software is secure and robust. But how do you prove it? These days, reassuring your customers takes more than an SSL padlock, and some marketing spiel mentioning 'banking grade encryption'! After a quick reminder of "what's the worst that can happen...", Andy will introduce some of the security Compliance and Certification systems that help you 'walk the walk', and provide confidence that your system has its security in good hands, before looking at what it means for developers and engineering teams. Media: OWASP_Compliance_for_Devs.pptx

The chapter leaders are:

Once the group is up and running we will be looking for more leaders.

The Newcastle chapter is very grateful to Sage (platinum sponsor) for its generous support.

Sage-logo.jpg

Chapter sponsorship helps pay for venue hire, pizzas, speaker travel expenses, pizzas, giveaway swag for meetings and pizzas. Also, a proportion of the sponsorship goes to support the OWASP global mission. If you would like to sponsor the chapter, please contact one of the chapter leaders. The corporate sponsorship costs are:

  • Platinum sponsor (£1200)
  • Gold sponsor (£600)
  • Silver sponsor (£300)

Any other donation is also gratefully received.

Other related organisations in the Newcastle area:

  • (ISC)2 North East Chapter - for information, contact the chapter secretary, Robin Fewster, the chapter president Ken Walls, the chapter membership officer Scott Wakeling or the chapter treasurer Gordon Leishman. Their next meeting is on 22nd September at PricewaterhouseCoopers LLP, Central Square South, Orchard Street, Newcastle upon Tyne, NE1 3AZ

Please get in touch with one of the chapter leaders to get your organisation listed here.

And feel free to use the Newcastle mailing list to publicise related events.