An Evening with OWASP

Thank you Tableau Software for hosting us!

---

Teri Radichel
Cloud Pentesting

What exactly is a cloud penetration test? A cloud penetration test may mean different things to different organizations. What are the rules for pentesting in the cloud? What's different about a cloud pentest? Do you know your test scope? Do you want an internal scan? An external scan? What about exploitation? Exfiltration? What about devices and software that are accessing your cloud? Social engineering and phishing? And are you ready for a penetration test? Learn what you can do to improve the results of your penetration test.

https://www.linkedin.com/in/teriradichel/

---

Joe Salowey
Tales from IETF TLS development

Joe chairs the IETF TLS working group and has some good stories to share about the development of the protocol: What's new in TLS - We'll discuss the IETF and TLS working group, TLS 1.3 and future work.

https://www.linkedin.com/in/joesalowey/

---

Frank Simorjay
Secure Workstation manage your cloud services securely

Microsoft effort to protect the admin has been evolving over the past several years. As attacks evolve it's essential to change the way we think about protecting high valued roles and assets. The Azure Secured Workstation is the cloud evolution of the concepts introduced in the Privileged Access Workstation (PAW) from several years ago. A secured workstation is designed to be a quick to set up, and to use admin workstation.

The solution is designed to manage critical systems, social media account, and other highly sensitive workloads, such as a SWIFT payments with a higher confidence the device being used has not been tampered, or compromised.

Frank will show us how this solution can break the killchain of side channel attacks and escalation using the strategy his team has developed.

https://www.linkedin.com/in/simorjay/