OWASP DALLAS

Title: Tangled Web Description: Adversaries are attacking on all fronts, for example, phishing, networks, and web applications. We not only have to get better at securing our applications; we need to start being more proactive in detecting, responding and perhaps attacking back?! Let’s chat about the possibilities of using deception in our web applications and services to detect, identify, respond and sideline our adversaries. Bio: Herb has been in IT for over 30 years -- 20 years as a developer and 10 in application security. He has worked for State Farm for over 26 years. He is currently a member of the Security Analytics/Threat hunting team. Previous security roles include: application security design, web application/service pentester, and secure coding subject matter expert. I have a Masters degree in Information Assurance and Security and am currently holding: CISSP, CSSLP, GSEC, GPEN, and CRISC certifications. Use of deception as a means of defense is my current security passion. Sponsorship: The meeting food & drinks will be sponsored by State Farm. IMPORTANT Meeting Notes: The State Farm office is a gun-free zone. Please do not attempt to bring in any guns, holsters, ammo, etc. into their office space.