addressalign-toparrow-leftarrow-rightbackbellblockcalendarcameraccwcheckchevron-downchevron-leftchevron-rightchevron-small-downchevron-small-leftchevron-small-rightchevron-small-upchevron-upcircle-with-checkcircle-with-crosscircle-with-pluscrossdots-three-verticaleditemptyheartexporteye-with-lineeyefacebookfolderfullheartglobegmailgooglegroupsimageimagesinstagramlinklocation-pinm-swarmSearchmailmessagesminusmoremuplabelShape 3 + Rectangle 1outlookpersonJoin Group on CardStartprice-ribbonImported LayersImported LayersImported Layersshieldstartickettrashtriangle-downtriangle-uptwitteruseryahoo

OWASP Monthly Meeting - January 2013

  • Top Ten Web Defenses

We cannot “firewall” or “patch” our way to secure websites. In the past, security professionals thought firewalls, Secure Sockets Layer (SSL), patching, and privacy policies were enough. Today, however, these methods are outdated and ineffective, as attacks on prominent, well-protected websites are occurring every day. Website developers must learn to code in a secure fashion to have any chance of providing organizations with proper defenses in the current threat-scape. The session will provide specific tips and guidelines to make website code both low risk and less vulnerable.

  • Bio: Jim Manico

Jim is the VP of Security Architecture for WhiteHat Security. Jim is also the host of the OWASP Podcast Series, is the committee chair of the OWASP Connections Committee, is the project manager of the OWASP Cheatsheet series, and is a significant contributor to several additional OWASP projects. Jim provides secure coding and developer awareness training for WhiteHat Security using his 8+ years of experience delivering developer-training courses for SANS, Aspect Security and others. He brings 16 years of database-driven Web software development and analysis experience to WhiteHat and OWASP as well. Jim works on the beautiful island of Kauai, Hawaii where he lives with his wife Tracey.

  • Sponsor: WhiteHat Security

Founded in 2001 and headquartered in Santa Clara, California, WhiteHat Security provides end-to-end solutions for Web security. The company's cloud technology platform and leading security engineers turn verified security intelligence into actionable insights for customers. Through a combination of core products and strategic partnerships, WhiteHat Security provides complete Web security at a scale unmatched in the industry. WhiteHat Sentinel, the company's flagship product line, manages thousands of websites -- including sites in the most regulated industries as well as top ecommerce, finance and healthcare companies.

Join or login to comment.

  • Jim M.

    OWASP LA : Thank you for your hospitality as always. If I can be of service, please never hesitate to drop me a line at [masked]

    Aloha A Hui Ho!

    1 · January 25, 2013

    • Sunil

      Hi Jim, you are the best..!! Enjoyed your talk at OWASP LA this week. Do you have the presentation you gave online ? Many thanks ! Have a wonderful weekend.

      January 25, 2013

    • Jim M.

      Send me and email at [masked] and I'll send you my presentation and send you marketing spam every day! Just kidding, I'll send the file and respect your privacy. :) Aloha!

      January 25, 2013

  • Paul

    What is the link to the OWASP Podcast Series?


    January 5, 2013

  • Adrian T.

    Thanks Jim, Whitehat and Organizers. Enjoyable presentaion.

    January 24, 2013

  • Thomas

    Awesome presentation. Thank you for the info!

    January 24, 2013

  • Aryan

    It was '; great!

    January 24, 2013

  • Rob

    Great presenter last night, very animated.... <SCRIPT>alert(document.cookie);</SCRIPT> Doesn't seem to be working here! Thanks gents

    1 · January 24, 2013

    • Albert T.

      Looks like meetup has learned about Jim's ways

      January 24, 2013

  • Karl M.


    January 24, 2013

  • A former member
    A former member

    The meeting was great. Big turnout and a great talk from Jim on secure coding.

    January 24, 2013

  • Richard G.

    Great to see everyone at the meeting tonight. Lots of good energy in the room, a super presentation, and lots of networking at the meeting and afterwards at BJs, throwing down a few. Thanks to Jim Manico and Whitehat Secuirty, and to Ryan Heiserman.

    January 24, 2013

  • Doug M.

    Great preseentation; Jim made understanding programming challenges easy.

    January 23, 2013

  • Jun A.

    It was a great experience for me. People were approachable. Thank you Jim for the great presentation and to White Hat for sponsoring the event. Will surely attend the next time.

    January 23, 2013

  • anthony

    Great presentation. Jim was an amazing speaker

    January 23, 2013

  • Kris R.

    Great presentation, very interesting and entertaining thanks Jim. Good to see familiar faces and quite a few new ones, you know where I am if we can help any of you with your recruitment.

    3 · January 23, 2013

  • Matti S

    Great presentation by Jim! Thanks everyone for making a really nice meeting. Wished I could stay for beers afterwards.

    1 · January 23, 2013

  • Mikhael F.

    One of the largest turnouts for OWASP. Amazing folks here. Richard is now leading the charge for 2013.

    4 · January 23, 2013

  • Richard G.

    Thanks to our vendor sponsor, Whitehat Security, a long time supporter of OWASP.

    2 · January 10, 2013

  • Jim M.

    I will be giving a talk on - wait for it - web security defense.

    5 · December 16, 2012

Our Sponsors

  • OWASP - LA


  • Riot Games

    Our goal is to become the most player-focused company in the world.

  • AsTech

    AsTech helps customers become application security heroes.

  • incapsula


  • Verizon

    Verizon DEFEND - Comprehensive cloud-based WAF and DDoS protection

  • Bugcrowd

    An innovator in crowdsourced security testing for the enterprise.

  • Absolute Software

    Industry standard in endpoint and management solutions

  • Prevoty

  • Whitehat Security

    End-to-end solutions for Web security.

  • GreenSQL

    Database Security and Compliance for EVERY organisation.


    Authentic8 puts you back in control.

  • Guidance Software

    Recognized worldwide as the industry leader in endpoint investigation

  • Check Point

    The worldwide leader in securing the Internet

  • WinMagic

    Makes it easy to secure data!

  • ioActive

    IOActive security consultancy with global presence and deep expertise

  • Contrast Security

    Secure Apps at their Source.

  • Akana


  • Qualys

    QualysGuard Web Application Scanning (WAS)

  • Click below:

  • Cigital, Inc

    The world’s largest consulting firm specializing in software security

  • Trend Micro

    A global leader in security software

  • Checkmarx

    Ensures your application remains hacker-proof.

  • SecureAuth

    SecureAuth is a technology leader in enterprise identity governance.

  • Symantec Corporation

    Provide security, storage and systems management solutions

  • BeyondTrust

    The global leader in privileged identity and threat management solutions

  • Security Innovation

    The Application Security Company

  • Palo Alto Networks

    Their Next-Generation Firewall enables applications

  • Arxan Technologies

    Sharing thought leadership & best practices on mobile apps security

  • Bay Dynamics

    IT Analytics

  • Venafi

    Inventor and market leader: Enterprise Key & Certificate Management

  • Trustwave

    Simple solutions to your complex security and compliance challenges

  • Phone Factor

    Multi-factor authentication to protect against today's threats

  • Gemalto

    Gemalto (formerly SafeNet)

  • PhishMe


People in this
Meetup are also in:

Sign up

Meetup members, Log in

By clicking "Sign up" or "Sign up using Facebook", you confirm that you accept our Terms of Service & Privacy Policy