[OWASP-Columbia] OWASP Connector June 2017

Frank Catucci frank.catucci at owasp.org
Tue Jun 27 13:37:03 UTC 2017


<http://cts.vresp.com/fbl?f2f61d6a97/d1c8dfd3bd/http%3A%2F%2Fhosted-p0.vresp.com%2F1479611%2Ff2f61d6a97%2FARCHIVE%23like>
<http://cts.vresp.com/ts?f2f61d6a97/d1c8dfd3bd/http%3A%2F%2Fapi.addthis.com%2Foexchange%2F0.8%2Fforward%2Ftwitter%2Foffer%3Ftemplate%3D%257B%257Btitle%257D%257D%2B%257B%257Burl%257D%257D%26url%3Dhttp%253A%252F%252Fhosted-p0.vresp.com%252F1479611%252Ff2f61d6a97%252FARCHIVE%26shortener%3Dbitly%26title%3DOWASP%2BConnector%2BJune%2B2017>
<http://cts.vresp.com/ls?f2f61d6a97/d1c8dfd3bd/http%3A%2F%2Fapi.addthis.com%2Foexchange%2F0.8%2Fforward%2Flinkedin%2Foffer%3Ftemplate%3D%257B%257Btitle%257D%257D%2B%257B%257Burl%257D%257D%26url%3Dhttp%253A%252F%252Fhosted-p0.vresp.com%252F1479611%252Ff2f61d6a97%252FARCHIVE%26shortener%3Dbitly%26title%3DOWASP%2BConnector%2BJune%2B2017>
[image: OWASP Connector]
<http://cts.vresp.com/c/?TheOWASPFoundation/f2f61d6a97/d1c8dfd3bd/0577fb8b06>

*FOLLOW US*

<http://cts.vresp.com/c/?TheOWASPFoundation/f2f61d6a97/d1c8dfd3bd/5d6d814435>
<http://cts.vresp.com/c/?TheOWASPFoundation/f2f61d6a97/d1c8dfd3bd/9419ce321e>
<http://cts.vresp.com/c/?TheOWASPFoundation/f2f61d6a97/d1c8dfd3bd/e6e7a81161>
<http://cts.vresp.com/c/?TheOWASPFoundation/f2f61d6a97/d1c8dfd3bd/bbfacb1df9>
<http://cts.vresp.com/c/?TheOWASPFoundation/f2f61d6a97/d1c8dfd3bd/94d22e38e6>
<http://cts.vresp.com/c/?TheOWASPFoundation/f2f61d6a97/d1c8dfd3bd/cef5c9f22c>


  COMMUNICATIONS <#m_3630654215065232371_COMMUNICATIONS> |  PROJECTS
<#m_3630654215065232371_PROJECTS> |  EVENTS <#m_3630654215065232371_EVENTS> |
 CHAPTERS <#m_3630654215065232371_CHAPTERS> |  MEMBERSHIP
<#m_3630654215065232371_MEMBERSHIP>
*Mon, June 26, 2017*
<http://cts.vresp.com/c/?TheOWASPFoundation/f2f61d6a97/d1c8dfd3bd/08c47fd3bd>
<http://cts.vresp.com/c/?TheOWASPFoundation/f2f61d6a97/d1c8dfd3bd/7d32ade9ae>
OWASP *CONNECTOR*
[image: Communications]
Operations Update

The June Operations Update
<http://cts.vresp.com/c/?TheOWASPFoundation/f2f61d6a97/d1c8dfd3bd/2096bd1995>
includes vital information about OWASP's infrastructure initiatives,
project activity, and Chapters. Read it for an overview of what is
happening in OWASP.
------------------------------
WASPY Nominations are now OPEN

It is time to help celebrate the unsung heroes of the OWASP community by
nominating the members and volunteers who grow OWASP and drive innovation
in the safety and security of the world’s software for a WASPY
<http://cts.vresp.com/c/?TheOWASPFoundation/f2f61d6a97/d1c8dfd3bd/80349077d1>
.

This year we are focusing on three categories: Community, Outreach, and
Technical Innovation.

*Best Community Supporter* - The WASPY for COMMUNITY honors members who
create dynamic INTERACTION and LEARNING opportunities for the OWASP
Community. Nominees to the Community WASPY Award create collaborative and
inclusive environments and grow the OWASP Community. WASPYs focus on the
unsung heros of the OWASP community. Chapter Leaders and Community Members
should especially consider leaders and volunteers who bring something extra
to the environment, help the chapter reach out to new attendees, or carry
out the tedious and repetitive tasks that make growing an OWASP Chapter
possible.

*Best Mission Outreach* - The WASPY for Mission Outreach honors community
members who help the community GROW. Growth can happen inside the larger
OWASP community or outside it in the broader AppSec and development
communities. Leaders and Members should especially consider volunteers who
pushed the boundaries of the audience and reach of OWASP to provide new
exposure for OWASP’s projects and chapters. New leaders and volunteers who
help bring more people to your chapter, project, or actively represent
OWASP at non-OWASP events, gatherings, and activities to build an active
OWASP community are ideal candidates for the Mission Outreach WASPY award.

*Best Innovator* - The WASPY for Innovation is given to a community member
who has contributed to the TECHNICAL advancement of OWASP in the past year.
This advancement is usually through an OWASP Project and can be in the form
of code, an application, or anything that materially makes the AppSec
community better in a unique way. WASPYs focus on the unsung heros of the
OWASP community who quietly go about making the world a bit better for
their work. Project Leaders and Community Members should especially
consider nominating new projects, projects that have recently graduated,
and project contributors for this WASPY.

By focusing on these three categories we hope to honor those who are the
heart of OWASP.
------------------------------
2017 Global Board of Directors Election

The Call for Candidates for the Global Board of Directors ​is now open! The
OWASP Global Board of Directors is an all-volunteer board dedicated to the
organizational mission which directs the strategic direction of OWASP. This
year there are 4 open positions for the board.

Due to a vote on February 8th, 2017
<http://cts.vresp.com/c/?TheOWASPFoundation/f2f61d6a97/d1c8dfd3bd/fe454371de>
which mandated that no board member may serve more than 2 2-year terms in a
10 year period there will be no incumbent board member up for election. To
learn more about the Election and to submit your candidacy, please visit:
https://www.owasp.org/index.php/2017_Global_Board_of_Directors_Election
<http://cts.vresp.com/c/?TheOWASPFoundation/f2f61d6a97/d1c8dfd3bd/c823e3dedf>
------------------------------

OWASP in the News

   - *Report: 10 trends in application security that will impact your
   cyberdefense strategy
   <http://cts.vresp.com/c/?TheOWASPFoundation/f2f61d6a97/d1c8dfd3bd/6e08481294>*
 TechRepublic;
   June 6, 2017
   - *Risks related to mobile applications 'highly exaggerated'
   <http://cts.vresp.com/c/?TheOWASPFoundation/f2f61d6a97/d1c8dfd3bd/cf63df1950/option=com_content&view=article&id=162568>*
 IT
   Web Security; June 13, 2017
   - *Weak Development Security Exposes Web Apps to Cyber-Attacks
   <http://cts.vresp.com/c/?TheOWASPFoundation/f2f61d6a97/d1c8dfd3bd/24af7d18f4>*
 eWeek;
   June 16, 2017
   - *Apple iOS Threats Fewer Than Android But More Deadly
   <http://cts.vresp.com/c/?TheOWASPFoundation/f2f61d6a97/d1c8dfd3bd/a8daee4d1f>*
 DARKReading;
   June 20, 2017


------------------------------

<http://cts.vresp.com/c/?TheOWASPFoundation/f2f61d6a97/d1c8dfd3bd/177a9ba1c2>
Ads are not endorsements and reflect the messages of the advertiser only.
They represent co-marketing arrangements with other organizations in
support of the OWASP Community.  CLICK HERE
<http://cts.vresp.com/c/?TheOWASPFoundation/f2f61d6a97/d1c8dfd3bd/d9463fc548>
for more information on Advertising.

[image: Projects]
Project Releases

iGoat
<http://cts.vresp.com/c/?TheOWASPFoundation/f2f61d6a97/d1c8dfd3bd/1b6cb926ac>
is a new teaching tool for iOS inspired by WebGoat
<http://cts.vresp.com/c/?TheOWASPFoundation/f2f61d6a97/d1c8dfd3bd/1f2f3c3a5f>.
You can read more about it and the volunteer opportunities to contribute to
this tool on the OWASP Blog.
------------------------------
Project Summit AppSec USA

The 179 AppSec USA Project Summit is now accepting participants and
suggestions for our Hot Topics. Project Summits at Global events include
working sessions that allow project leaders and contributors to work
together face to face in an intense and productive environment to move
their projects forward. This is a great opportunity for local contributors
or those attending the conference to become more deeply involved in OWASP
Projects. Qualifying Project Leaders can receive grants to cover their
attendance at the event.

*Requirements for Participation:*

   - Active OWASP Project started in the last 9 months.
   - $750.00 for Air Travel Assistance per OWASP Project
   - Agenda and Deliverables for your project at the summit are required.
   - Deadline on September 5th!


*Funding Opportunities(through the Reimbursement Process):*

   - $750.00 for Air Travel Assistance per OWASP Project
   - Two Nights of accommodations for the days of the Project Summit USA
   - OWASP Project Leaders (three leader max) receive a complimentary pass
   for AppSec USA 2017.

   Please use the contact us form for any questions or concerns.

   Contacts at OWASP Foundation: Matt Tesauro <Matt.Tesauro at owasp.org>
and Claudia
   Aviles Casanovas <Claudia.Aviles-Casanovas at owasp.org>




[image: Events]
AppSec USA Registration is now OPEN!
<http://cts.vresp.com/c/?TheOWASPFoundation/f2f61d6a97/d1c8dfd3bd/a76f9ac120>

AppSec USA will be held in sunny Orlando Florida this year. From September
19th to the 22nd you can get your fill of awesome AppSec talks, in-depth
hands on training, free summits and more!

We are proud to announce keynotes
<http://cts.vresp.com/c/?TheOWASPFoundation/f2f61d6a97/d1c8dfd3bd/93a16664cd>
by Jen Ellis and Jim Manico and the first 46 speakers for AppSec USA
<http://cts.vresp.com/c/?TheOWASPFoundation/f2f61d6a97/d1c8dfd3bd/7beef3f750>!
This first crop of talks covers appsec from many angles including threat
modeling, DevSecOps, new tools and data privacy. Stay tuned to be the first
to hear about our full speaker list.

When it comes to pre-conference training
<http://cts.vresp.com/c/?TheOWASPFoundation/f2f61d6a97/d1c8dfd3bd/a60cc77c66>,
we have your team covered from the fundamentals to advanced skills for
attacking mobile and web apps.

Finally, in addition to trusted talks and training from OWASP, AppSecUSA is
offering extended room rates and discounted tickets to Disney World Parks
<http://cts.vresp.com/c/?TheOWASPFoundation/f2f61d6a97/d1c8dfd3bd/5b6e5c3fe4>
.
<http://cts.vresp.com/c/?TheOWASPFoundation/f2f61d6a97/d1c8dfd3bd/c13fdffff7>
------------------------------
Call for Submissions to Train at the AppSec USA Developer Summit
<http://cts.vresp.com/c/?TheOWASPFoundation/f2f61d6a97/d1c8dfd3bd/72e901472f>

OWASP will once again be hosting a FREE two day Developer Summit
<http://cts.vresp.com/c/?TheOWASPFoundation/f2f61d6a97/d1c8dfd3bd/3b1d4e0e5a>
before AppSecUSA. We are currently looking for your submissions for
Developer-centric AppSec training. Training can be in a half day or full
day format. The Call for Trainers/Presenters will close on July 14.

If you are a developer or know a developer who would benefit from this
training, sign up
<http://cts.vresp.com/c/?TheOWASPFoundation/f2f61d6a97/d1c8dfd3bd/2d6936591b>
today to reserve your seat!
------------------------------
AppSec Europe 2018 We are proud to announce that AppSec Europe 2018 will be
hosted in Tel Aviv by OWASP Israel. Keep an eye out for the announcment of
the June dates.
Upcoming Events

   - AppSec USA 2017
   <http://cts.vresp.com/c/?TheOWASPFoundation/f2f61d6a97/d1c8dfd3bd/c9e7e69f2c>
— September
   19–22, 2017; Orlando, Florida, USA
   - AppSec Europe 2018
   <http://cts.vresp.com/c/?TheOWASPFoundation/f2f61d6a97/d1c8dfd3bd/b960f15140>
— June
   17–21, 2018; Tel Aviv, Israel

Regional and Local Events

   - AppSec AU — September 7–9, 2017; Melbourne, Australia
   - OWASP Indonesia Day
   <http://cts.vresp.com/c/?TheOWASPFoundation/f2f61d6a97/d1c8dfd3bd/919759ea4e>
— September
   9, 2017; Yogyakarta, Central Java, Indonesia
   - Cheat Sheet Workshop with Jim Manico
   <http://cts.vresp.com/c/?TheOWASPFoundation/f2f61d6a97/d1c8dfd3bd/505399c4f0>
— September
   10–12, 2017; Frankfurt, Germany
   - OWASP Bucharest AppSec Conference 2017 — October 6, 2017; Bucharest,
   Romania
   - AppSec Israel 2017 — October 17–18, 2017; Tel Aviv, Israel
   - LASCON 2017
   <http://cts.vresp.com/c/?TheOWASPFoundation/f2f61d6a97/d1c8dfd3bd/77b7aadaab>
— October
   26–27, 2017; Austin, TX, USA
   - OWASP AppSec Africa 2018 — May 10–12, 2018; Morocco

Training Events

   - OWASP World Tour (Details Coming Soon!) — October 9, 2017; Boston
   University, Boston, MA, USA

Developer Summits

   - OWASP Developer Summit
   <http://cts.vresp.com/c/?TheOWASPFoundation/f2f61d6a97/d1c8dfd3bd/86adccd10a>
— September
   19–20, 2017; AppSec USA 2017, Orlando, FL, USA

Partner and Promotional Events

   - Borderless Cyber USA
   <http://cts.vresp.com/c/?TheOWASPFoundation/f2f61d6a97/d1c8dfd3bd/3c59c53432>
— June
   21–22, 2017; New York City, NY, USA (OWASP members save $100.00 by using
   discount code: OWASP)
   - Black Hat USA 2017
   <http://cts.vresp.com/c/?TheOWASPFoundation/f2f61d6a97/d1c8dfd3bd/4d1a18169f>
— July
   22–27, 2017; Las Vegas, NV, USA (OWASP members save $200 off Briefings by
   using discount code: OWASP17)
   - (ISC)2 Secure Summit DACH
   <http://cts.vresp.com/c/?TheOWASPFoundation/f2f61d6a97/d1c8dfd3bd/dc72a9f2c2>
— June
   27–28, 2017; Zürich, Switzerland (OWASP members save 20% by using discount
   code: D17OWP)
   - Security BSides Amsterdam
   <http://cts.vresp.com/c/?TheOWASPFoundation/f2f61d6a97/d1c8dfd3bd/ba6e612165>
— September
   1, 2017; Amsterdam, Netherlands
   - (ISC)2 Secure Johannesburg 2017
   <http://cts.vresp.com/c/?TheOWASPFoundation/f2f61d6a97/d1c8dfd3bd/cf3ce3c950>
— October
   5, 2017; Johannesburg, South Africa
   - ISACA Ireland Conference 2017
   <http://cts.vresp.com/c/?TheOWASPFoundation/f2f61d6a97/d1c8dfd3bd/36d666cdeb>
— October
   20, 2017; Ireland
   - IoT Tech Expo North America
   <http://cts.vresp.com/c/?TheOWASPFoundation/f2f61d6a97/d1c8dfd3bd/f6fcaad115>
— November
   29-30, 2017; Santa Clara


<http://cts.vresp.com/c/?TheOWASPFoundation/f2f61d6a97/d1c8dfd3bd/e2368f8914>
Ads are not endorsements and reflect the messages of the advertiser only.
They represent co-marketing arrangements with other organizations in
support of the OWASP Community.  CLICK HERE
<http://cts.vresp.com/c/?TheOWASPFoundation/f2f61d6a97/d1c8dfd3bd/6c48bdbf9a>
for more information on Advertising.
*[image: Chapters]*
*OWASP Brooklyn Needs Your Help to Devolp its New Cyber Security
Educational Initiative*

We need your awesome feedback for our new Learning Gateway Project. Managed
by the OWASP Brooklyn Chapter, the initiative will help individuals learn
about cyber security through an online learning and mentoring platform.
Please share your thoughts on how we can build an initiative that will help
you advance your cybersecurity career by completing this survey
<http://cts.vresp.com/c/?TheOWASPFoundation/f2f61d6a97/d1c8dfd3bd/7f9adb1e14>.
It should take between 5-10 minutes.

Contact Noreen Whysel at nwhysel at owasp.org with any questions or comments.

*[image: Membership]*
*June 2017 Corporate Members*
<http://cts.vresp.com/c/?TheOWASPFoundation/f2f61d6a97/d1c8dfd3bd/c622d0de99>

We would like to thank the following companies for supporting the OWASP
Foundation.   The companies listed below have contributed this month by
either renewing their existing  Corporate Membership or joining OWASP as a
new Corporate Member.
Details about Corporate Membership can be found *here*
<http://cts.vresp.com/c/?TheOWASPFoundation/f2f61d6a97/d1c8dfd3bd/fbd9008d21>
.

*Contributor Corporate Members*


<http://cts.vresp.com/c/?TheOWASPFoundation/f2f61d6a97/d1c8dfd3bd/1c1204072c>

Headquartered in downtown Manhattan, CipherTechs, Inc. is a privately held
information security services provider. We focus on delivering security
solutions for businesses harnessing the power of Internet communications.
We audit, design and implement information security solutions in areas of
IP networking, firewalls, application security, risk assessment, traffic
management, encryption, redundancy and strong authentication. For more
information, please visit http://www.ciphertechs.com
<http://cts.vresp.com/c/?TheOWASPFoundation/f2f61d6a97/d1c8dfd3bd/29e8f8026b>
.


<http://cts.vresp.com/c/?TheOWASPFoundation/f2f61d6a97/d1c8dfd3bd/86d50346c9>

Sonatype secures modern software development by fixing at-risk
applications, automating policy throughout the lifecycle and identifying
hidden risks in your applications. Sonatype's Component Lifecycle
Management identifies and tracks OSS components, automates and enforces
policy, and prevents the use of flawed components throughout the software
lifecycle. Ask about free risk assessments. More information about Sonatype
can be found here http://www.sonatype.com
<http://cts.vresp.com/c/?TheOWASPFoundation/f2f61d6a97/d1c8dfd3bd/d574adb902>.

<http://cts.vresp.com/c/?TheOWASPFoundation/f2f61d6a97/d1c8dfd3bd/3f66d2aacc>

We are a software company and community of passionate, purpose-led
individuals. We think disruptively to deliver technology that addresses our
clients’ toughest challenges, all while seeking to revolutionize the IT
industry and create positive social change. ThoughtWorks' 3,000
professionals serve clients from offices in Australia, Brazil, Canada,
China, Ecuador, Germany, India, Italy, Singapore, South Africa, Turkey,
Uganda, the United Kingdom and the United States. ThoughtWorks releases a
regular technology radar, a study that looks at the key trends that impact
the software development and business strategies. The Radar helps companies
stay on top of topics that are constantly evolving, such as security, and
offers insight and practical tools to build secure systems at every stage
of the development process. For more information, please visit
http://www.thoughtworks.com/
<http://cts.vresp.com/c/?TheOWASPFoundation/f2f61d6a97/d1c8dfd3bd/0a457b7621>

<http://cts.vresp.com/c/?TheOWASPFoundation/f2f61d6a97/d1c8dfd3bd/6bb91b72cb>

*Want your company name here? *
Find out how by visiting our Corporate Member information page
<http://cts.vresp.com/c/?TheOWASPFoundation/815d9458a9/TEST/76ee715527>
information
page, or contact Kelly Santalucia <kelly.santalucia at owasp.org>, our
Membership & Business Liaison today! Thank you to all of our *Premier and
Contributor Corporate Members*
<http://cts.vresp.com/c/?TheOWASPFoundation/f2f61d6a97/d1c8dfd3bd/92273df0f4/TheOWASPFoundation/815d9458a9/TEST/5c9c3d45ce>
for
your support!

*The OWASP Foundation, 1200C Agora Drive #232, Bel Air, Maryland, 21014,
USA*


------------------------------
Click to view this email in a browser
<http://hosted.verticalresponse.com/1479611/f2f61d6a97/543936139/d1c8dfd3bd/>

If you no longer wish to receive these emails, please reply to this message
with "Unsubscribe" in the subject line or simply click on the following
link: Unsubscribe <http://cts.vresp.com/u?f2f61d6a97/d1c8dfd3bd/mlpftw>
------------------------------
The OWASP Foundation
1200-C Agora Drive
#232
Bel Air, Maryland 21014
US
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://lists.owasp.org/pipermail/owasp-columbia/attachments/20170627/629d1edf/attachment-0001.html>


More information about the OWASP-Columbia mailing list