A storm of mobile app security and privacy issues continues to intensify, while the skills gap worsens. Security professionals have discovered that web app security practices don't cut it for mobile. Because the tools and methodologies differ, it's time for practitioners to learn some new skills leveraging the OWASP Mobile Project resources and patterns found testing thousands of mobile apps. In this talk, you'll learn how to crawl, walk, then run in mobile app security testing, with an end goal of having all the tools and knowledge necessary to become a mobile appsec expert. Ultimately, all mobile appsec experts have to start somewhere. If you start off on the right foot, there's no telling what vulnerabilities you may uncover and how your career can grow.
As mobile security analyst at NowSecure, Tony Ramirez leads training with customers and performs mobile app penetration testing of iOS and Android apps as part of the NowSecure Services team. Tony holds a master’s degree in cyber forensics and security from Illinois Institute of Technology. While terrible at writing bios for himself, Tony is an avid food experimenter and office prankster.