[Owasp-Mumbai] Vulnerability Management and Threat Analysis: December 18, 2007

Vicky D. Shah vicky at nasscom.in
Tue Dec 11 05:47:13 EST 2007


 


 "Vulnerability Management and Threat Analysis Modeling"








Tuesday, 
18 December 2007
10:30 - 13.30 hrs





 <http://www.nasscom.in/indiaisit> 







Dear All,

 

Greetings!

 

We have the pleasure of inviting you to the first Security Forum meeting
jointly organized by NASSCOM and Data Security Council of India (DSCI) on
"Vulnerability Management by Dr. Srinivas Mukkamala, Senior research
Scientist, New Mexico Tech University and "Threat Analysis & Modeling" by
Mr. Dharmesh Mehta, Technical Analyst, MASTEK on Tuesday December 18, 2007
between 10:00 hrs.  to 13:30 hrs. at The All India Plastics Manufacturer's
Association, AIPMA House, A-52, Street No. 1, MIDC, Marol, Andheri East,
Mumbai - 400 093.

 

Application Security has been emerging as a major concern for all
organizations. There have been efforts to address security of the
application at all layers of Software Development Lifecycle. Most of the
Indian IT companies today address Application Security issues by
Vulnerability Analysis or Penetration Testing. Threat Analysis and Modeling
helps to address security issues at design phase. The talks will cover how
an organization can get a clear understating of current security posture
(idea) through vulnerability assessments of what they are trying to prevent
and what technical capabilities their adversaries have, followed by
consolidating vulnerability assessments reports performed using multiple
tools that often generate different results for the same vulnerability. The
speakers will also present a proactive approach (Common Hacker Attack
Technique) that helps eliminate false positives and false negatives that
assist in eliminating security weaknesses in their information systems
before they can be exploited.

 

Please find the program details mentioned below:

 


 


Program


 


Time

Activity 


 

 


10:00 to 10:30

Welcome and Introductions


10:30 to 11:30

Presentation by Srinivas Mukkamala on 'Vulnerability Management'


11:35 to 12:35

Presentation by 
Dharmesh Mehta on 
'Threat Analysis Modeling'


12:35 to 12:45

Closing Remarks


12:45 to 13:30

Working Lunch

 

 

We look forward to meeting you.

Best Regards,

Nandkumar Saravade, IPS
Director, Cyber Security and Compliance

Speaker Profile:

 

Srinivas Mukkamala is a senior research scientist with ICASA (Institute for
Complex Additive Systems Analysis, a statutory research division of New
Mexico Tech performing work on information technology, information
assurance, and analysis and protection of critical infrastructures as
complex interdependent systems) and Adjunct Faculty of the Computer Science
Department of New Mexico Tech.  He is a manager of the information assurance
research group at New Mexico Tech that develops expertise in learning
machines for intrusion detection, modeling and feature selection algorithms
for intrusion detection, trends in malware analysis and applied information
assurance. 

 

Dharmesh Mehta works as a Technical Analyst with Mastek Ltd. and has over
3.5 years of experience in Application Security. He is mainly involved in
conducting application security assessments, security design reviews, threat
modeling and conducting security workshops for the developer community.
Dharmesh is the Chapter Leader for OWASP (www.owasp.org), Mumbai. He is a
Certified Ethical Hacker and has published white papers on Security Concerns
in Web 2.0 and Effective Software Security Management at OWASP.

 


Who Should Attend


. Security Professionals
. IT Auditors 
. Consultants
. Risk Managers/ IT Head
. CSO/CISO
. System Administrator
. Network Administrator





Venue


The All India Plastics Manufacturer's Association
AIPMA House,
A-52, Street No. 1,
M.I.D.C, Marol,
Andheri (East),
Mumbai - 400093.





Registration


Free
Kindly forward this to your colleagues in the Information Security
Department who might be interested in attending this session.
(Please submit the Delegate Details as under)

Name:
Designation:
Company:
Role in the Organization:
Qualification and Certification:
Email:
Mobile:

Please send all confirmations to Vicky D. Shah at vicky at nasscom.in
<mailto:ranjita at nasscom.in> 

 


C 2007 NASSCOM. All Rights Reserved.

 

-------------- next part --------------
An HTML attachment was scrubbed...
URL: https://lists.owasp.org/pipermail/owasp-mumbai/attachments/20071211/9733808e/attachment-0001.html 
-------------- next part --------------
A non-text attachment was scrubbed...
Name: not available
Type: image/gif
Size: 73 bytes
Desc: not available
Url : https://lists.owasp.org/pipermail/owasp-mumbai/attachments/20071211/9733808e/attachment-0002.gif 
-------------- next part --------------
A non-text attachment was scrubbed...
Name: not available
Type: image/jpeg
Size: 15651 bytes
Desc: not available
Url : https://lists.owasp.org/pipermail/owasp-mumbai/attachments/20071211/9733808e/attachment-0001.jpe 
-------------- next part --------------
A non-text attachment was scrubbed...
Name: not available
Type: image/gif
Size: 73 bytes
Desc: not available
Url : https://lists.owasp.org/pipermail/owasp-mumbai/attachments/20071211/9733808e/attachment-0003.gif 


More information about the Owasp-Mumbai mailing list