St. Louis OWASP! DevOps in Appsec, Photo Services & Penetration Testing

Agenda

6:00-6:30pm - Gather and mingle. Refreshments provided courtesy of our sponsor.

6:30pm - DevOps in Appsec (Security Champions) - Security Champions have been a common tool for enterprises big and small and purpose has ranged from simple scan monkey to fully fledged security warrior. We’ll identify the extremes and discuss the middle ground with a dive into the tools, structure and support that is needed to operate a program like this.

Bio: Joe Blanchard is a Senior Information Security Analyst with Morningstar Inc. Joe has worked within the requirements of both the DoD and Corporate Finance sectors. An active member of the STL Security community and OWASP member.

7:15pm - Photography Services. Free head shot services will be provided on site.

7:30pm - Something Died Inside Your Git Repo: Recognizing the Smell of Insecure Code - Code in need of refactoring is easy to recognize because it has a particular smell. Insecure code often has a distinct smell as well. Using real-world examples, both from the developer’s perspective and the attacker’s perspective, this talk will help you recognize vulnerable code and avoid the mental errors that lead to insecure applications.

Bio: Cliff Smith is an Ethical Hacker at Parameter Security in St. Charles, MO. He wrote his first lines of code more than 20 years ago on a TI-99/4A. Today, he breaks web and mobile applications for a living at Parameter. His work experience includes penetration testing, secure code reviews, compliance audits, web application development, system administration, and law practice for a mid-sized firm in St. Louis.

Sponsored By:

https://secure.meetupstatic.com/photos/event/5/c/7/9/600_458543673.jpeg

As always, please refer back to the OWASP Wiki Page for further details.

https://www.owasp.org/index.php/Saint_Louis

CPE Credit: This meeting will offer 2 hours of CPE Credit. Certificates presented at the end of the event.