add-memberalign-toparrow-leftarrow-rightbellblockcalendarcamerachatchevron-leftchevron-rightchevron-small-downchevron-upcircle-with-crosscomposecrossfacebookflagfolderglobegoogleimagesinstagramkeylocation-pinmedalmoremuplabelShape 3 + Rectangle 1pagepersonpluspollsImported LayersImported LayersImported LayersshieldstartwitterwinbackClosewinbackCompletewinbackDiscountyahoo

OWASP Orange County - April Meeting with Jeff Williams

Title: “Stop Chasing Vulnerabilities – Getting Started with Continuous Application Security”

Abstract: For too long, application security has been “experts-only” and practiced one-app-at-a-time. But modern software development, both technology and process, is mostly incompatible with this old approach and legacy appsec tools.  Software development has been transformed by practices like Continuous Integration and Continuous Integration, and the time has come to bring these efficiencies to security.  In this talk, Jeff will show you how you can transition to a “Continuous Application Security” approach that generates assurance automatically across an entire application security portfolio. Jeff will demonstrate how both open-source and commercial tools (including OWASP ZAP, Mozilla’s Minion, Gauntlt, and others) can be integrated to provide a comprehensive real time application security dashboard.  With this approach, we can leverage the power of big data analytics to gain unprecedented insight into enterprise application security and finally focus on enterprise application security strategy rather than simply chasing the next XSS.

Speaker: Jeff Williams has over 20 years of experience in software development and security. Jeff is a founder and CTO of Contrast Security, offering a revolutionary application security technology that accurately identifies vulnerabilities at portfolio scale without requiring experts. Prior to founding Contrast, Jeffwas a founder and CEO at Aspect Security.  In addition, Jeff helped found the OWASP Foundation where he served as the Global Chair for 8 years and created many open-source standards, tools, libraries, and guidelines – including the OWASP Top Ten. Jeff welcomes hearing from you and may be reached directly at [masked].

Join or login to comment.

  • Kristian Erik H.

    I am also unavailable for this one, but really bummed out nevertheless!

    April 24, 2014

  • Haral T.

    The Security team at EMC is looking for a Software Engineer. Talk to me tomorrow if you are looking...

    1 · April 23, 2014

  • jeff.williams

    I'm pretty psyched for this talk. I'll be showing how we brought together a variety of tools into a continuous dashboard.

    1 · April 20, 2014

  • Adam B.

    Sorry I can't make this one --- will be in Chicago for THOTCON.

    April 7, 2014

25 went

Our Sponsors

People in this
Meetup are also in:

Sign up

Meetup members, Log in

By clicking "Sign up" or "Sign up using Facebook", you confirm that you accept our Terms of Service & Privacy Policy