Come be a part of codebreaking history!
ISSA-UK and OWASP are partnering for the first time to bring you a joint application security training conference. This unique event will attact attendees from both ISSA-UK's information security membership base, and OWASP's web application specialists, bringing new thoughts and perspectives to both groups.
The theme of the day is, no surprise, application security. We expect to focus on both methodologies and frameworks - such as OWASP's Top 10 - and a variety of custom tools and frameworks, from open-source to proprietary. The goal is to deliver much needed guidance to attendees, to help tackle our ever increasing workloads and bridge the gap between CISOs and applicaiton security specialists.
Join us for a full day of application security education, tools and methodologies at the historic Bletchley Park. After the day's talks are over, please join us for a tour of the famous WWII codebreaking facility! The event is free for both ISSA and OWASP members.
|9.30||Registration, tea & coffee, biscuits|
|9:50||Introduction||Gabe Chomic, VP of Alliances ISSA-UK, & Justin Clarke, OWASP-London|
|10.00||Software Assurance Frameworks and Standards: ISO/IEC 27034-1 and OpenSAMM||Matt Bartoldus, Director, Gotham Digital Science|
|10.40||Best Practices and Lessons Learned around 3rd-Party Application Analysis||Chad Holmes, Solutions Architect, Veracode|
|11.20||Securing 3rd Party Software||Paco Hope, Principal Consultant, Cigital|
|1.00||Graveyards & Zombies: How HTML5 Improves Web Security. Mostly.||Mike Shema, Director of Engineering, Qualys|
|1.30||App (In)Security||Anthony Zboralski, Managing Consultant, IOactive|
|2.20||Stealing Things at the Application Layer||Ken Munro, Partner, Pen Test Partners|
|2.50||Building a Cost-Benefit Model for Application Security Testing||Pawel Krawczyk, Application Security Manager|
|3.20||Closing Thoughts and Questions|
|3.30||Tour of Bletchley Park|
*Please note - Membership for ISSA-UK, OWASP and the Charity Security Forum (CSF) will be verified against our respective databases. Trial membership of ISSA is available via firstname.lastname@example.org.
When & Where
With active participation from individuals and chapters all over the world, the Information Systems Security Association ( ISSA ) is the largest international, not-for-profit association specifically for information security professionals.
It provides educational forums, publications and peer interaction opportunities that enhance the knowledge, skill and professional growth of its members. It is also the ‘preferred partner’ of (ISC)2 for CISSPs & SSCPs.
To join, either sign up here or sign-up online at http://www.issa.org/page/?p=Join_Online_8
The Open Web Application Security Project (OWASP) is a 501(c)(3) not-for-profit worldwide charitable organization focused on improving the security of application software. Our mission is to make application security visible, so that people and organizations can make informed decisions about true software security risks.
The OWASP London homepage can be found at https://www.owasp.org/index.php/London