[Owasp-wash_dc_va] NoVA OWASP

[Michael K. Craghead]

Just like Carl, last night was my first OWASP meeting. I've been a subscriber to 
the list for about a year or so, but never made it to a meeting. I don't know 
why I waited so long. :-)

My background throughout most of my career has been in software development, but 
several years ago I worked supporting the Identity and Access Management (IAM) 
enterprise solution of a large company in this area and have worked in the IAM 
area of IT off and on since then. While studying for my CISSP I became 
interested in other areas of information security, which is what drew me to 
OWASP. I enjoyed the meeting and the topics very much. 


As a newbie I wish the injection talk would have been in greater depth and 
detail. I'm sure for many people there doing so would have been a great bore, 
but even though I have been a long time developer, other than having heard of 
injection, it was all new to me. I had never seen examples. The other subject in 
the Top 10 are fairly new to me as well. From my past experience I feel security 
in the SDLC is an afterthought. It only seems to come into play when projects 
are scanned at the end of development. Hopefully that will change. The other 
topics last night were great as well.

I hope to become a member and active in the local chapter here. I'm not sure how 
I can contribute, but I'm sure I can find some way to do so. I look forward to 
seeing you again in the future.

 Michael K. Craghead
-------------- next part --------------
An HTML attachment was scrubbed...
URL: https://lists.owasp.org/pipermail/owasp-wash_dc_va/attachments/20110304/e12b5220/attachment.html