[Owasp-austin] Come join me at OWASP - Stealing Airlines' Data February 24th on Austin OWASP

James Wickett events at austinowasp.ning.com
Tue Feb 17 18:08:13 EST 2009


Austin OWASP: Open Web Application Security Project in Austin!
James Wickett has invited you to the event 'OWASP - Stealing Airlines' Data February 24th' on Austin OWASP!
--------------------

Check out "OWASP - Stealing Airlines' Data February 24th" on Austin OWASP

James Wickett

Time: February 24, 2009 from 11:30am to 1pm
Location: National Instruments
Organized By: Rob MacDougall:

Event Description:
Quincy Jackson
Information Security Manager
CISSP / CEH
qjacks at gmail.com

Topic: Web Application Security in the Airline Industry

Presentation Title: Stealing the Airlines’ Online Data

Session Description:

In this session, attendees will learn about the types of airline data that is at risk of being stolen by online data thieves. In addition, the following topics will be further explored:

Important attack scenarios and Web-based vulnerabilities accompanied by examples of how these attacks can be mitigated by deploying comprehensive defense solutions;
Protection strategies and tools, such as Web application scanners and Web application firewalls, which help equalize the gap between the advanced Web hacker and the security professional; and
Compliance and Software development lifecycle approaches.

Following the September 11 attacks, the airline industry recognized its need to ‘webify’ online ticket reservation systems, crew scheduling, and passenger profiles in order to enhance operational efficiency. This ultimately served to decrease the airlines’ operating costs, thereby increasing their operating profits. However, the following questions remain: At what costs? What are the information systems and customer data security risks associated with the airline ‘webification’ process?

Please join in this presentation, which will outline some of the challenges that members of the airlines industry may face when attempting to protect their online services. Additionally, attendees will discover methodologies that airlines may utilize to identify, assess, and protect against the various risks associated with Web-based application attacks.











Biographical Sketch:

Quincy Jackson, a CISSP and Certified Ethical Hacker, has more than 15 years of experience in the Information Technology (“IT”) profession, which include 8 years in Information Security. In addition, Quincy has 15 years in the aviation industry. His career in the aviation industry began in the United States Army as an Avionics System Specialist. Quincy began to explore his passion for IT Security as Sr. Manager - Information Security for Continental Airlines. Over his 8-year tenure at Continental Airlines, Quincy was instrumental in the development of the Company’s first Information Security Program. Quincy currently serves as the IT Security Manager for Universal Weather and Aviation, Inc. (“UWA”). UWA provides business aviation operators various aviation support services, including flight coordination, ground handling, fuel arrangement and coordination, online services, and weather briefings. Quincy enjoys both learning about and sharing his knowledge of Web application security with others, including ISSA and OWASP members.

See more details and RSVP on Austin OWASP:
http://austinowasp.ning.com/events/event/show?id=2217066%3AEvent%3A902&xgi=a4AVyYY

If your email program doesn't recognize the web address above as an active link,
please copy and paste it into your web browser
--------------------

About Austin OWASP


33 members
7 discussions
7 events

--------------------

To control which emails you receive on the corner, or to opt-out, go to:
http://austinowasp.ning.com/profiles/profile/emailSettings
-------------- next part --------------
An HTML attachment was scrubbed...
URL: https://lists.owasp.org/pipermail/owasp-austin/attachments/20090217/1ea857a5/attachment.html 


More information about the Owasp-austin mailing list