OWASP Jakarta Night Q3 2018

Software yang tidak aman telah mengancam infrastruktur keuangan, kesehatan, pertahanan, energi, dan infrastruktur penting lainnya.

Dengan semakin kompleks dan terhubungnya infrastruktur digital kita, kesulitan mencapai keamanan aplikasi meningkat secara eksponensial.

Open Web Application Security Project (OWASP) yang merupakan komunitas terbuka yang didedikasikan untuk memungkinkan organisasi mengembangkan, membeli, dan memelihara aplikasi yang dapat dipercaya.

Di OWASP sendiri, anda akan menemukan free and open…

• Tool dan standar keamanan aplikasi

• Buku tentang uji keamanan aplikasi, pengembangan kode aman, dan review kode keamanan

• Kendali keamanan dan pustaka standar

• Cabang lokal di seluruh dunia

• Riset terkini

• Konferensi lengkap di seluruh dunia

• Mailing list

• Dan banyak lagi … di www.owasp.org

Sesi ini akan mendiskusikan tentang :

Secure by Design with OWASP

Pembicara

1. First Step to Web Application ISO27001 vs PCIDSS VS OWASP TOP 10 by Elias (Head of System Development Faspay)
2. Building a tailored AppSec Program using OpenSAMM by Suman Sourav & Tuyen Do

Abstract: Building a tailored AppSec Program using OpenSAMM

The Software Assurance Maturity Model (SAMM) is an open framework to help organizations formulate and implement a strategy for software security that is tailored to the specific risks facing the organization. The resources provided by SAMM will aid in:

• Evaluating an organization’s existing software security practices
• Building a balanced software security program in well-defined iterations
• Demonstrating concrete improvements to a security assurance program
• Defining and measuring security-related activities within an organization

This session is focused on the practical implementation of an AppSec Program based on your organization needs and business risk appetite. Most of the AppSec program fails because of lack of programmatic approach and strategic rollout. Participants will learn about an importance of a Security Program Management, how it solves people, process and technologies challenges in implementing an AppSec program, driving results and metrics relevant to the different stakeholders.

Speaker Bio:

Suman is a Certified Secure Software Lifecycle Professional (CSSLP) having more than a decade experience in designing secure-SDLC programs and is passionate about integrating security into the development lifecycle. He is skilled beyond existing static analysis tools and code review techniques and shaping the way the industry secures code in a Continuous Deployment world. He has worked with various financial and non-financial institutions to implement software security life-cycle and has strong experience of creating an organizational framework to break silos security culture in the organization and builds a unified approach to deal with the root cause of software security problems. Currently he is working with Vantage Point Security as a Regional Program Director for Vantage Point Security and helping clients in SEA region to implement application security program.

Tuyen is an experienced Security Programme Manager, highly strategic, analytical and performance driven professional with 7+ years of blended experience in managing strategic programs /initiatives within banking & financial, and information technology sectors. Dynamic, versatile, hands-on Program Leader who leads teams to design & implement successful projects/programs that align business objectives and deliver rapid results, within timelines, budgets, and as per specifications.

Keterangan lebih lanjut,

lihat https://www.owasp.org/index.php/Jakarta#tab=Meetup

Catatan :

peserta tidak perlu membawa laptop acara ini free for everyone

Acara ini akan diadakan pada: 27th September 2018

From 18:00 pm - 22:00 pm
venue :
Faspay Working Space
Jakarta Pusat
Thanks for faspay sponsor this meetup