Software powers the world, but insecure software threatens safety, trust, and economic growth. The Open Web Application Security Project (OWASP) is dedicated to making application security visible by empowering individuals and organizations to make informed decisions about true application security risks.
OWASP Foundation is a 501(c)(3) not-for-profit worldwide charitable organization, OWASP does not endorse or recommend commercial products or services. Instead, we allow our community to remain vendor neutral with the collective wisdom of the best individual minds in security worldwide. This simple rule is the key to our success since 2001.
For more information visit: http://www.owasp.org or come to a meeting, they are FREE and open to EVERYONE!
Due to the COVID-19 (Coronavirus) pandemic our events will continue online on our YouTube channel.
Subscribe to our YouTube channel, set a reminder and you’ll get a notification as soon as we go live!
We will post information here and on all our other medias (email, twitter etc.) as we are closer to the date.
12:00 EDT PM: Technical Talks
2. OWASP DevSecOps Maturity Model
From a startup to a multinational corporation the software development industry is currently dominated by agile frameworks and product teams and as part of it DevOps strategies.
It has been observed that during implementation, security aspects can be missed. The OWASP DevSecOps Maturity Model, which is presented in the talk, shows security measures which are applied when using DevOps strategies and how these can be prioritized. With the help of DevOps strategies security can also be enhanced. Under the guidance of the forward-looking DevSecOps Maturity Model, appropriate principles and measures can defend against attacks.
In this session Timo will give an introduction and answers questions like when to use OWASP SAM and when and how to use DSOMM.
OUR SPEAKER: Timo Pagel, DevSecOps Consultant
Timo has been in the IT industry for over fifteen years. After being a system administrator and web developer in his early times, he became involved in OWASP. He now advises his clients on DevOps security, either hands on or as a trainer, with the focus on security test automation for software and infrastructure.