[Owasp-switzerland] OWASP CH Introduction - Michael Neuhaus

Michael.Neuhaus at ubs.com Michael.Neuhaus at ubs.com
Tue Nov 28 08:06:56 EST 2006


Hi all,


Following Alessandro Moretti (for who I am actually working:-)) - I'd
like to take the chance to write up a short intro on me as well.

I am working in UBS Investment Bank in Zurich within the IT Security
Risk Management department, more specifically I am part of the global IT
security risk assessment team. I joined UBS about two years ago after I
have been writing a diploma thesis at Novartis Pharma AG in Basel. There
I have been working within the Global IT Security department where I
wrote my thesis on "Application Level Security Management" - to finish
my study at the FH Konstanz in Germany. There I first got in touch with
OWASP and basically based my thesis on an analysis along these
vulnerabilities within web apps(on which I have focussed in the thesis)
and on possible countermeasures mapped against preventive (along the
SDLC like secure coding examples, developer education, utilisation of
source code scanners etc) and also protective security controls (web app
firewalls and host-based IPS)

Based on this I have joined UBS IB and began with doing risk
assessments, technical consulting with IT stakeholders such as
developers, architects, project managers and also have been writing a
technical standard for secure web app development within UBS IB, which
again uses OWASP as one important input source to determine appropriate
app layer security controls.

I think that's it for the moment - hopefully I will meet some of you at
one of the upcoming CH chapter meetings (if there will be some...)

Bregs,
-Mic

For those that want to get in touch with me directly:


Michael Neuhaus
IT Security Risk Management

UBS AG
Europastrasse 1
8152 Opfikon
Tel. +41 1 239 34 35
michael.neuhaus at ubs.com


-------------- next part --------------
An HTML attachment was scrubbed...
URL: http://lists.owasp.org/pipermail/owasp-switzerland/attachments/20061128/0d977344/attachment.html 
-------------- next part --------------

Visit our website at http://www.ubs.com

This message contains confidential information and is intended only 
for the individual named.  If you are not the named addressee you 
should not disseminate, distribute or copy this e-mail.  Please 
notify the sender immediately by e-mail if you have received this 
e-mail by mistake and delete this e-mail from your system.

E-mail transmission cannot be guaranteed to be secure or error-free 
as information could be intercepted, corrupted, lost, destroyed, 
arrive late or incomplete, or contain viruses.  The sender therefore 
does not accept liability for any errors or omissions in the contents 
of this message which arise as a result of e-mail transmission.  If 
verification is required please request a hard-copy version.  This 
message is provided for informational purposes and should not be 
construed as a solicitation or offer to buy or sell any securities or 
related financial instruments.


More information about the Owasp-switzerland mailing list