[Owasp-rochester-announce] OWASP Rochester Chapter Event (Nov 18)

John King john.king at owasp.org
Fri Nov 4 21:07:00 UTC 2016

*OWASP Rochester Chapter Event*November 18, 2016
Noon to 1:15pm
GOL-2130 (Air Gap Lab)

*Please RSVP to **john.king at owasp.org* <john.king at owasp.org>

* if you wish to attend.*

*Introduction to Application Security and OWASP Top 10 Risks (part 1 of 2)*

Application Security is really hot and very much in demand. Find out why
it’s so hot and get an in-depth introduction to application security and 6
of the OWASP Top 10 Application Risks. Ralph will discuss the how-to of the
exploits and defenses for:

A2 – Broken Authentication and Session Management
A4 – Insecure Direct Object References
A5 – Security Misconfiguration
A6 – Sensitive Data Exposure
A7 – Missing Function Level Access Control
A9 – Using Components with Known Vulnerabilities

Come to learn and come with questions!

*Speaker: Ralph Durkee*

Ralph is the principal security consultant and owner of Durkee Consulting,
Inc since 1996. Ralph started the OWASP Rochester, NY chapter in 2004 and
served as founding officer and president for the Rochester ISSA chapter and
the annual Rochester Security Summit. He routinely performs network and
application penetration tests, software security assessments and secure
software development consultations for clients. His expertise in advanced
penetration testing, incident handling, secure software development and
secure Internet and web applications is based on over 30 years of hands-on
technical experience. He has developed and taught a wide variety of
professional security seminars including custom web application security
training, and SANS SEC401 & SEC504 – Hacker Techniques and Incident
Handling and CISSP bootcamp courses since 2004. Ralph also regularly
consults on the development and implementation of a wide variety of
security standards such as web application security, database encryption,
Windows, and Linux security. Ralph also has done security consulting for
compliance with the Payment Card Industry Data Security Standard, and holds
the following certifications CISSP, C|EH, CRISC, GSEC, GCIH, GSNA, GCIA,


When you drive on campus, please drive to the RIT Welcome Center and
request a visitor pass.


Then, pass permitting, please park in J Lot near the Golisano College of
Computing and Information Sciences (GCCIS) building.


The Air Gap Lab (2130) is located on the second floor, down the right
hallway from the main stairwell.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://lists.owasp.org/pipermail/owasp-rochester-announce/attachments/20161104/4bf8a9b5/attachment.html>

More information about the Owasp-rochester-announce mailing list