OWASP Chicago Meetup 6-30-2020

Join us for a JOINT meetup of the Chicago St. Louis & Ottawa Chapters.

This will be a VIRTUAL event hosting on Zoom. This session will be recorded for posterity and sharing for those unable to attend.

5:30 pm: We'll open the zoom at 5:30 for a virtual meet and greet

6:00 pm:
Kick off and Introductions

Talk 1:
The State of OWASP - Mike McCamon, OWASP Executive Director

Talk 2:
SEDATED - OWASP Project by Simeon Cloutier & Dennis Kennedy

Talk 3:
Building a DevSecOps Pipeline using Github Actions by Sherif Koussa

If you are on GitHub, then your life is just about to get a whole lot easier. GitHub Actions is a cause and effect API which makes it easy to automate software workflows. It also makes it easy to build a DevSecOps pipeline. This presentation is going to go over GitHubs Actions, how it works and how to build a secure pipeline that includes SAST, DAST and dependency checking. This will include a step by step demo on how GitHub Actions work, and how to setup a basic secure pipeline using free and/or open-source tools.

Sherif Koussa is an OWASP Ottawa Chapter Co-Leader, Software Developer, Hacker, and founder and CEO of Software Secured (https://www.softwaresecured.com). Sherif started his security career by leading OWASP WebGoat 5.0 as well as mentor, and exam consultant for Java and .NET for the SANS Institute. As an OWASP Leader and SANS Java and .NET SME, Sherif worked as an Information Security Engineer for Wells Fargo. Afterwards, Sherif started Software Secured, an Ottawa-based Application Security boutique company, where he helps his clients design, implement and maintain secure software through their software specific lines of services, products and training courses