San Francisco, California
London, United Kingdom
OWASP MSP Presents
Top Ten Web Defenses
Date: Thursday, April 18, 2013
5:30 PM Room opens for networking
6:15 PM Welcome: OWASP chapter update
6:30 PM Jim Manico
7:45 PM Wrap-up
Thank You Regis for sponsoring our meeting location
Talk Title: Top Ten Web Defenses
We cannot “firewall” or “patch” our way to secure websites. In the past,
security professionals thought firewalls, Secure Sockets Layer (SSL),
patching, and privacy policies were enough. Today, however, these
methods are outdated and ineffective, as attacks on prominent,
well-protected websites are occurring every day. Citigroup, PBS, Sega,
Nintendo, Gawker, AT&T, the CIA, the US Senate, NASA, Nasdaq, the NYSE,
Zynga, and thousands of others have something in common – all have had
websites compromised in the last year. No company or industry is immune.
Programmers need to learn to build websites differently. This talk will
review the top coding techniques developers need to master in order to
build a low-risk, high-security web application.
Jim Manico is the VP of Security Architecture for WhiteHat
Security, a web security firm. He authors and delivers developer
security awareness training for WhiteHat Security and has a background
as a software developer and architect. Jim is also a global board member
for the OWASP foundation. He manages and participates in several OWASP
projects, including the OWASP cheat sheet series and the OWASP podcast
*You must be registered for the event to attend.
Please contact Alex at firstname.lastname@example.org or 651-587-4572 if you would like to sponsor a meeting or meeting location for an upcoming OWASP MSP meeting.
When & Where
The Open Web Application Security Project (OWASP) is an open community dedicated to enabling organizations to conceive, develop, acquire, operate, and maintain applications that can be trusted. All of the OWASP tools, documents, forums, and chapters are free and open to anyone interested in improving application security. We advocate approaching application security as a people, process, and technology problem because the most effective approaches to application security include improvements in all of these areas. The OWASP Minneapolis-St. Paul chapter was host to OWASP AppSec USA 2011 at the Minneapolis Convention Center September 20-23, 2011. Get the presentation material at http://www.appsecusa.org/.