Security

In May we return to a highly interesting and highly important topic - Security

Thanks to BaseKit for kindly hosting us this month.

Our talks this month:

• OWASP Top 10 for Developers
  Katy Anton, Principal Application Security Consultant at CA Technologies | Veracode (https://twitter.com/KatyAnton)

The OWASP Top 10 2017 is a powerful awareness document for web application security and a new version has been recently released. The list, which represents the most common vulnerabilities found in web applications, suits very well testers.
But how can developers write more secure applications to prevent these ? What are the security techniques they can use while writing their software to prevent these ?

These are hard questions, as evidenced by the increased cyber breaches.
In this talk, we will explore together the new OWASP Top10 2017. Staring from real world examples and breaches, we identify the security controls that developers can use in SDLC to help them to prevent the most common vulnerabilities.

Katy Anton is a security professional with a background in software development. In her previous roles she led software development teams and implemented security best practices in software development life cycle. As part of her work she got involved in OWASP Top Ten Proactive Controls project where she joined as project leader and currently leads the OWASP Bristol Chapter.

In her current role as Principal Application Security Consultant at CA Technologies | Veracode, Katy works with security teams and software developers around the world and helps them secure their software.

• Web Security - The Human Factor
  Rob Wilson, Senior PHP Developer at Superdry (https://twitter.com/devtoolboxuk)

“An overview of how web developers can protect their applications, their businesses, but most importantly; their sanity. “

It will include a brief overview of common mistakes made with web applications that could lead the developer, and/or others to a security faux pas. Some best practices to follow, and some real world examples of where I/others have screwed up.

BaseKit (http://www.basekit.com/) have kindly offered to host the evening at their office, and as always we'll sort out some ales, lagers, soft drinks and snacks. Don't forget to check them out - and if you're looking, they are hiring.

As always, a big thanks to our meetup sponsors Ents24 (http://www.ents24.com/), Brightpearl (http://www.brightpearl.com/), Space 48 (https://www.space48.com/), Helastel (https://www.helastel.com/) & Deep Blue Sky (http://deepbluesky.com/) without whom we wouldn't be able to put on our meetups.

Afterwards we'll head to the pub, probably the Volunteer Tavern (http://volunteertavern.co.uk/real-ales)!