|PRESENTER:||Ian Amit, Director of Services|
|PRESENTATION:||Armorizing applications – the accountant way|
|CONFERENCE:||OWASP NYC Cyber Security Meet Up|
|LOCATION:||BNY Mellon, 101 Barclay Street, New York, New York|
|DATE & TIME:||Thursday October 10, 2013 at 6:30pm|
In this talk from Ian Amit, he will try to address things from a more tactical (read: practical) perspective for application development. What ’we’ see, or want, from a security practitioner perspective is nice, but enabling it from an application view isn’t trivial. He’ll cover the aspects that the attendees can gain from having applications designed and implemented in certain manners, while of course not changing the way things are being practiced these days (too much). He will also show how logging (yes… plain old boring logging) can go a long way, and how applications that are a bit more self conscience to their state can be utilised to detect attacks before they actually happen.
About Ian Amit
Ian Amit is the Director of Services at the leading global security consulting company IOActive. Ian oversees the northeast US services practice including the financial and healthcare sectors, as well as leading the red team division. Ian brings a mixture of Software development, OS, Network and web security to work on a daily basis. He is also a regular speaker at leading security conferences around the world (including BlackHat, DefCon, OWASP, and InfoSecurity), and has published numerous articles and research material in print, online, and through broadcast media. Ian is one of the founders of the Penetration Testing Execution Standard (PTES), its counterpart – the SexyDefense initiative, and a core member of the DirtySecurity crew. Ian holds a Bachelor’s Degree in Computer Science and Business Administration from the Interdisciplinary Center at Herzlya.
About OWASP NYC
OWASP New York City Chapter is the local chapter for the OWASP Foundation. Software powers the world, but inadequately secured software threatens safety, trust, and economic growth. The Open Web Application Security Project (OWASP) is dedicated to making application security visible by empowering individuals and organisations to make informed decisions about true software security risks.
OWASP supports 30,000+ participants, more than 65 organisational supporters, and more than 60 academic supporters. OWASP’s most notable corporate members include ADP, Akamai, Amazon, Best Buy, Nokia, Oracle, Salesforce.com, UPS and other leading service providers. OWASP also includes nearly 200 local chapters across 6 continents in 75+ countries.
IOActive is a comprehensive, high-end information security services firm with a long and established pedigree in delivering elite security services to its customers. Our world-renowned consulting and research teams deliver a portfolio of specialist security services ranging from penetration testing and application code assessment through to semiconductor reverse engineering. Global 500 companies across every industry continue to trust IOActive with their most critical and sensitive security issues. Founded in 1998, IOActive is headquartered in Seattle, USA, with global operations through the Americas, EMEA and Asia Pac regions. Visit www.ioactive.com for more information.