OWASP Frankfurt #51- Threat Modeling, Counter-MITRE & Security Chaos Engineering
Details
We're looking forward to virtually meeting you during our #51th OWASP Meetup. This time it's all about agile threat modeling, MITRE Counter-Intelligence and Security Chaos Engineering.
KEYNOTE:
Agile Threat Modeling using Open Source Tools by Christian Schneider
We will have a key note from Christian Schneider who will discuss Agile Threat Modeling by using Open Source Tools. Christian will show us how to capture the rapidly changing risk landscape of agile projects using "Threat-Model-as-Code" in the DevSecOps sense.
Christian is a freelance software developer and IT Security professional since over two decades. His major areas of work are penetration testing, security architecture consulting, and threat modeling. As a trainer, Christian regularly conducts in-house training courses on topics like web application security and coaches agile projects to include security as part of their process by applying DevSecOps concepts.
TALK:
MITRE Counter Intelligence by Johannes Schönborn
LIGHTNING TALK:
A Primer on Security Chaos Engineering by Aaron Rinehart
Security Chaos Engineering (SCE) is an emerging discipline being used to proactively build confidence in the security of complex systems through continuous experimentation. This approach has proven to help organizations derive a more realistic understanding of their security practices and as a result, reduce the likelihood of security blind spots resulting in an erosion of trust and system safety.
In this lightning talk, Aaron Rinehart, the pioneer behind Security Chaos Engineering and O’Reilly Co-Author on the topic will share his experiences and give a broad overview of how to get started applying Security Chaos Engineering. Aaron recently founded a chaos engineering startup called Verica with Casey Rosenthal from Netflix and is the O’Reilly author on the topic as well as a frequent speaker in the space of Security Chaos Engineering.
_and afterwards? We will conclude the evening with the option to socialise afterwards.
Network Security
White Hat Hacking