generated from OWASP/www-projectchapter-example
-
Notifications
You must be signed in to change notification settings - Fork 685
Commit
This commit does not belong to any branch on this repository, and may belong to a fork outside of the repository.
- Loading branch information
1 parent
a3e573e
commit 2ef2c58
Showing
1 changed file
with
30 additions
and
10 deletions.
There are no files selected for viewing
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| Original file line number | Diff line number | Diff line change |
|---|---|---|
|
|
@@ -69,6 +69,26 @@ | |
| "timezone": "America/New_York", | ||
| "description": "**This meeting will be in-person! Thank you to Kroger for hosting at their Kroger Blue Ash Technology Center. For security, RSVP by 2 days prior to the meeting is required.**\n\n**Sponsored by [Traceable](https://www.traceable.ai/)**\n\nIn an era where cyber threats are rapidly evolving and increasingly targeting application vulnerabilities, organizations face significant challenges in maintaining robust security practices. Traditional security models often lead to bottlenecks, stifling the agility needed in today's fast-paced development environments. This talk introduces the **Security Champions program**\u2014a strategic initiative that empowers development teams to take ownership of security responsibilities, fostering a culture of proactive security throughout the software development lifecycle.\n\nWe will explore the essential components of a successful Security Champions program, including its definition, the critical role of Security Champions within development teams, and the importance of cultivating a supportive culture grounded in principles of a \"just culture.\" Attendees will learn practical strategies for building, maintaining, and scaling their own Security Champions programs, ensuring that security becomes an integral part of their organizational fabric.\nJoin us to discover how implementing a Security Champions program not only enhances security posture but also drives collaboration and innovation, ultimately safeguarding your organization against emerging threats.\n\n**Approximate schedule:**\n4:00 - Doors open. Come for networking and refreshments!\n4:15 - Presentation begins.\n5:15 - Networking and refreshments resume!\n6:00 EOE (End of Event)" | ||
| }, | ||
| { | ||
| "group": "Colorado Springs", | ||
| "repo": "www-chapter-colorado-springs", | ||
| "name": "High Level Overview of ASVS by Yettsy Jo Knapp", | ||
| "date": "2024-10-24", | ||
| "time": "18:00-06:00", | ||
| "link": "https://www.meetup.com/owasp-colorado-springs-meetup/events/304134415", | ||
| "timezone": "America/Denver", | ||
| "description": "**Last meeting of the year!**\n\nTalk by [Yettsy Jo Knapp](https://www.linkedin.com/in/yettsy-jo-knapp?utm_source=share&utm_campaign=share_via&utm_content=profile&utm_medium=ios_app)\n\n* She\u2019ll walk us through a high-level overview of the OWASP Application Security Verification Standard (ASVS).\n* Cover the basics of ASVS, including its different levels of security verification and how to apply it in your projects." | ||
| }, | ||
| { | ||
| "group": "France", | ||
| "repo": "www-chapter-france", | ||
| "name": "Meetup OWASP - Paris - Novembre 2024", | ||
| "date": "2024-11-04", | ||
| "time": "19:00+01:00", | ||
| "link": "https://www.meetup.com/owasp-france/events/304124138", | ||
| "timezone": "Europe/Paris", | ||
| "description": "Ce meetup se deroulera chez **Escape** que nous remercions chaleureusement de leur soutien.\n\nOWASP Paris est le meetup d\u00e9di\u00e9 \u00e0 la s\u00e9curit\u00e9 applicative. Pour rappel, le meetup se veut non commercial. Il r\u00e9unit toutes personnes d\u00e9sireuses de concevoir et maintenir des logiciels plus s\u00fbrs. Si vous \u00eates int\u00e9ress\u00e9 par le sujet, que vous soyez d\u00e9butant ou expert, n'h\u00e9sitez pas \u00e0 nous rejoindre pour partager vos exp\u00e9riences ou vos probl\u00e9matiques.\nCe meetup propose des sessions organis\u00e9es en mode \"forum ouvert\". Les sujets sont propos\u00e9s par les participants lors de la s\u00e9ance. Partages de connaissances, retour d'exp\u00e9riences, exercices de type CTF, bonnes pratiques, gouvernance et organisation, ... sont au programme!\n\n**Lightning Talks:**\nLa soir\u00e9e commence par de courtes pr\u00e9sentations. Chacun peut s'il le veut proposer une pr\u00e9sentation, ce n'est pas obligatoire. Si vous avez envie de partager une technique, une opinion, une d\u00e9mo ou un retour d'exp\u00e9rience, alors vous pouvez pr\u00e9parer un lightning talk, entre une simple phrase et 10 minutes maxi et venez le pr\u00e9senter au d\u00e9but de la soir\u00e9e. Si vous n'avez jamais fait de pr\u00e9sentation avant, c'est l'occasion de commencer dans une ambiance sympa.\n\n**Workshop:**\nLa soir\u00e9e se poursuit avec des activit\u00e9s men\u00e9es en groupes. Chacun peut s'il le veut proposer un sujet, ce n'est pas obligatoire. Vous avez 30 secondes au d\u00e9but de la session pour en donner envie aux autres participants, puis tout le monde vote pour son sujet favori. Les sujets pr\u00e9f\u00e9r\u00e9s donnent lieu \u00e0 des activit\u00e9s en groupes pendant un peu plus d'une heure. Des \u00e9crans seront disponibles\n\nLe format se veut bienveillant. Pas besoin d'\u00eatre expert pour parler d'un sujet. Vous trouverez certainement d'autres personnes pour vous aider! L'accent est mis sur l'\u00e9change et le partage.\n\nL'agenda et le compte-rendu des pr\u00e9c\u00e9dents meetups est accessible ici: https://owasp.org/www-chapter-france/" | ||
| }, | ||
| { | ||
| "group": "Frankfurt", | ||
| "repo": "www-chapter-frankfurt", | ||
|
|
@@ -99,16 +119,6 @@ | |
| "timezone": "America/New_York", | ||
| "description": "OWASP topic TBA" | ||
| }, | ||
| { | ||
| "group": "Jacksonville", | ||
| "repo": "www-chapter-jacksonville", | ||
| "name": "OWASP Monthly meeting ", | ||
| "date": "2024-10-21", | ||
| "time": "17:30-04:00", | ||
| "link": "https://www.meetup.com/owasp-jacksonville-chapter/events/303242790", | ||
| "timezone": "America/New_York", | ||
| "description": "OWASP topic:\n\nWe will be discussing Capture The Flags, Juice Shop, and general cybersecurity topics." | ||
| }, | ||
| { | ||
| "group": "Joao Pessoa", | ||
| "repo": "www-chapter-joao-pessoa", | ||
|
|
@@ -129,6 +139,16 @@ | |
| "timezone": "Europe/London", | ||
| "description": "**This event is kindly hosted by Civo Tech Junction and sponsored by Apiiro. There is limited seating available for in-person attendees. Registration required.**\n\n**This event will be live-streamed on YouTube.**\n\n**Recordings will be available on the OWASP London YouTube channel.**\n\n**Venue Location**: Civo Tech Junction, First Floor, 32-37 Cowper Street, London, EC2A 4AW\n**Nearest Tube:** Old Street (Northern Line), Cowper Street exit - 1 min walk\n**Doors Open at 6pm** for registration, pizza, drinks and networking. The talks start at 6:30pm (we start on time!).\n\n**TALKS:**\n\n**OWASP Introduction, Welcome and News** \\- Sam Stepanyan\\, Andra Lezza\\, Sherif Mansour \\- OWASP London Chapter Leaders\n\n**\"AI and AppSec: Are We Finally on the Verge of the Big Breakthrough?\"** - **Petra Vukmirovi\u0107**\n\nIn cybersecurity, AI has made significant advances, especially in threat detection, risk quantification, and remediation automation. However, in Application Security (AppSec), it hasn\u2019t fully reached its potential\u2014yet.\nThis talk will explore why the next big breakthrough in AI is poised to revolutionize threat modeling and security reviews, areas traditionally plagued by manual processes, high complexity, and slow adoption in fast-moving development environments.\nWe are at the tipping point where AI can understand code deeply enough to automate threat modeling, shifting it left and removing bottlenecks in the security review process. By using AI to derive data flows, identify threats and controls, and continuously update threat models, we can potentially integrate security into the development lifecycle more effectively.\nJoin this session to discuss and discover how AI could potentially take threat modeling as code (and from code!) to the next level.\n\n\"**Proactive Risk Detection at the Design Stage\" - Ella Bor**\n\nSecurity risks can be costly when discovered late in development, and the \u201cshift left\u201d movement seeks to address this. This talk explores strategies for identifying potential risks during the design phase, even before coding begins. By analyzing ticketing systems with AI, development teams can identify potential risks such as insecure data handling or problematic third party integrations early on\u2014without slowing development velocity. The discussion will highlight methods to uncover design-phase risks while using AI to propose security review questions and automatically generate threat stories on a large scale. This approach not only simplifies the design review process but also helps prevent the creation of insecure code.\n\n**Guest Talk - Speaker TBC**\n\n**RAFFLE - win a prize kindly donated by our sponsors!**\n\n**SPEAKERS:**\n\n**Petra Vukmirovi\u0107 (**[@PetraVuk1311](http://twitter.com/PetraVuk1311))\n\nTechnology enthusiast, leader, public speaker, believer in radical candor, ex-emergency medicine doctor, competitive athlete (volleyball) and ex-sports scholar. Petra started her cyber security career as a security engineer, climbed up the ladder to Director of Cyber Security. Love creating order out of chaos, learning and overcoming any challenges that come along my way. Always leveraging innovation and looking to implement improvements in processes and systems.\n\n**Ella Bor**\n\nElla Bor is an experienced data scientist, honed her skills across diverse industry domains, including legal-tech, e-commerce, and application security. At Apiiro, she harnesses her extensive expertise to drive innovation in application security. Ella specializes in leveraging artificial intelligence to tackle real-world challenges, developing and implementing end-to-end algorithmic solutions that automate complex tasks. Throughout her career, Ella has been dedicated to bridging the gap between theoretical research and practical application, ensuring that AI-driven solutions are both technically sound and aligned with business goals.\n\n**TICKETS:**\n\nOWASP meetups are free and open to anyone interested in application security. Please note that you MUST book your place to be admitted to the event by the building security.\n\n**CODE OF CONDUCT:**\n\nWe hope you enjoy the event, we care deeply about inclusivity and diversity so that OWASP is a comfortable and welcoming community for everyone. Please reach out to one of our chapter leaders if you have any feedback/concerns or would like to speak to us, we take these matters very seriously. OWASP Code Of Conduct: [https://owasp.org/www-policy/operational/code-of-conduct](https://owasp.org/www-policy/operational/code-of-conduct)\n\n**DRESS CODE:**\n\n Halloween costumes are encouraged, but not required. Feel free to get into the spooky spirit if you'd like, or come as you are!" | ||
| }, | ||
| { | ||
| "group": "Los Angeles", | ||
| "repo": "www-chapter-los-angeles", | ||
| "name": "OWASP LA Monthly In-Person Meeting - NOV 20, 2024", | ||
| "date": "2024-11-20", | ||
| "time": "17:30-08:00", | ||
| "link": "https://www.meetup.com/owasp-los-angeles/events/300687868", | ||
| "timezone": "America/Los_Angeles", | ||
| "description": "**TOPIC**: State of Pentesting 2024\nJoin us for great networking, dinner and drinks, and see a presentation by **Carolyn Wang**, Chief Strategy Officer at Cobalt.\n\n**ABSTRACT**:\nIn the sixth annual installment of State of Pentesting 2024, Cobalt shares data and insights from more than 4000 manual pentest engagements performed in 2023, resulting in more than 39,000 security vulnerability findings. Caroline will present the data as well as commentary on artificial intelligence and offensive security.\n\n**SPONSORSHIP Opportunities Available**\n*Vendors interested in sponsoring please send an email to [email protected]*\n\n**CODE OF CONDUCT**\nWe hope you enjoy the event, we care deeply about inclusivity and diversity so that OWASP is a comfortable and welcoming community for everyone. Please reach out to one of our chapter leaders if you have any feedback/concerns or would like to speak to us, we take these matters very seriously. You can find out more about our policies here:\n[https://owasp.org/www-policy/operational/conferences-events.html#conference-and-event-anti-harassment-policy](https://owasp.org/www-policy/operational/conferences-events.html#conference-and-event-anti-harassment-policy)\n\n**SPONSORSHIP Opportunities Available**\n*Vendors interested in sponsoring please send an email to [email protected]*" | ||
| }, | ||
| { | ||
| "group": "Los Angeles", | ||
| "repo": "www-chapter-los-angeles", | ||
|
|
||