OWASP Dorset September In Person Meetup

OWASP Dorset are proud to bring out latest in-person event, hosted with Hays Recruitment Bournemouth in their NEW ADDRESS.

PLEASE NOTE THAT HAYS HAVE A NEW ADDRESS AROUND THE CORNER:
1st floor South
Telephone House
18 Christchurch Road
Bournemouth
Dorset
BH1 3NE

Talks

Dr Shamal Faily
Secure by Design: why it's hard, and what we're doing about it.
Secure by Design is becoming the dominant approach in government for increasing cyber resilience by considering Cyber Security early and through life. However, within MOD we (like many organisations) face challenges that make Secure by Design hard for those responsible for implementing. In this talk, I will outline these challenges and talk about the role Dstl is playing to address them within MOD, and collectively with our partners across government.

Dr Shamal Faily is a Principal Scientist in the Software and Systems Dependability Team at Dstl. He is a Visiting Fellow at Bournemouth University, and previously held a range of academic posts at Robert Gordon University, Bournemouth University, UCL, and University of Oxford, including course leadership positions. Prior to his work in Higher Education, Shamal was a software engineer at Logica UK’s Space & Defence division for nearly a decade. Shamal has long established interests in the design and secure and usable systems, and published over 100 peer-reviewed publications in Software Engineering, Cyber Security, HCI, and Computer Science Education. Shamal is also the lead developer of the open-source CAIRIS (Computer Aided Integration of Requirements and Information Security) platform, which is widely used for threat modelling.

Hays
Cyber recruitment update from the Hays team.

Ashley Allen
Nowadays, domestic smart security devices, such as smart locks, smart doorbells, and security cameras, are becoming increasingly popular with users due to their ease of use, convenience, and declining prices. Unfortunately, users have very few sources of unbiased information regarding product performance in real-world conditions and, as a result, tend to take manufacturer claims at face value. This means that users may be exposed to threats such as theft, impersonation, and even physical injury if the device fails and is used to prevent access to hazardous environments. This talk discusses recently published research, and in particular several attacks using popular wireless attack vectors (i.e., 433 MHz radio, Bluetooth, and RFID) against domestic smart security devices. Results suggest that users are open to considerable threats, irrespective of whether they use lesser known (i.e., no name) or branded smart security devices, due to the poor security offered by these devices.

Ashley Allen is a PhD student in Computer Science at the University of Hertfordshire and a member of the Cybersecurity and Computing Systems research group. He holds an MSc in Computer Science (Cybersecurity) from Staffordshire University, UK. He has over 20 years of experience working in security roles in both the public and private sectors. He is currently Senior Security Engineer for Posit, PBC, an American data science company. His research interests include IoT security and federated learning.

Event and Venue
We will be joining Hays Recruitment in their new offices in Bournemouth for this event, there is a limit on numbers, so signup is essential. Names will be required upon arrival to enter the building.

There will be food and drink provided for this event, so please let us know of any dietary requirements or allergies.