[Owasp-twincities] OWASP Meeting Tuesday, Dec 7th, 2010 - Dan Cornell - Smart Phones Dumb Apps

Lorna Alamri lorna.alamri at owasp.org
Thu Dec 2 17:17:19 EST 2010

* **OWASP MSP <http://www.owasp.org/index.php/Minneapolis_St_Paul> PRESENTS*

*Dan Cornell

*Denim Group* <http://www.denimgroup.com/>

*Smart Phones Dumb Apps*

*Date:* *Tuesday*, December 7th, 2010


*6:00 PM *Room opens for networking, CPE signup

*6:25 PM* Welcome: OWASP chapter updates

*6:30 PM* *Dan Cornell, Denim Group <http://www.denimgroup.com/>*

*8:00 PM* Upcoming events reminder and meeting wrap-up

*Thank You:* Advance IT Minnesota <http://advanceitmn.org/> for sponsoring
our meeting location. Please contact Lorna at lorna.alamri at owasp.org or
651-338-0243 if you would like to sponsor a meeting or meeting location for
an upcoming OWASP MSP meeting.

*The Talk:*

*Smart Phones Dumb Apps*

Enterprises are targeting both internal users and customers with smartphone
applications for platforms such as Apple iPhone and Google Android. Many of
these applications are constructed without fully considering the associated
security implications of their deployment.  Breaches can impact both users
as well as the enterprise distributing the application as attackers take
advantage of expanded access to sensitive data and network services. This
talk discusses emerging threats associated with deploying smartphone
applications and provides an overview of the threat modeling process. The
presentation then walks example applications from an attacker's perspective
demonstrating the sort of information they are able to extract allowing for
more advanced attacks.

*Thank you to our meeting sponsor, Advance IT Minnesota<http://advanceitmn.org/>

*Location:* UAW-Ford-MnSCU Training Center, 966 S Mississippi River Blvd,
Saint Paul, MN 55116

*Registration closes at 3:00 PM Central Time on Tuesday, December 7, 2010.*

*You must register in advance for this meeting.*

*Other News/Companies Hiring:*
*Hiring FICO*
Principal Duties include:
Participate, Evangelize and foster applications through the Secure Software
Development Lifecycle.
Manual testing and tools based Vulnerability detection
Create and developer training materials for development
Mentor and Train developers in Secure Coding Techniques
Participate in maintaining compliance of applications
Evaluate Application Security threats as discovered
Rollout and management of Secure coding tools for Development and QA
Maintain the Application Security Portal
Assist in the formulation of tactical and strategic application security
Provide leadership in cross-functional business and IS teams
Review application security mechanisms and plans prior to the deployment by
application teams Education:
   Bachelor’s in Information Systems or Equivalent
   CSSLP desirable
   CISSP desirable
   CISA desirable
Contact: glennleifheit at fico.com

*Hiring HP*
HP recently acquired Fortify Software and we are looking to hire several
Application Security Consultants in your area.

In short, we are looking for Application Security Consultants who can
quickly become Fortify Tool Experts to support our client base.

Enjoy the stability, career path and benefits of the FORTUN 9 company, but
still work in a flexible, nimble software type company.

Additional Positions in NYC, San Francisco.

We will also consider candidates throughout the central US.

Please send your resume directly to my attention.

Our conversation will be kept confidential.

Pat Riley
HP Americas Staffing Organization
Lead AMS Region Strategic Sourcing – Advanced Recruiting Team
Patrick.A.Riley at HP.com
713-822-2602 -- Houston Texas

Lorna Alamri
OWASP Minneapolis-St. Paul Chapter Vice President
OWASP MSP: Host to OWASP AppSec USA 2011
September 20-23 Training, Talks, CTF, and Vendor Show
www.appsecusa.org (2011 site coming soon)
@appsecusa, @owaspmsp
Dir: 651-338-0243
skype: lorna.alamri
lorna.alamri at owasp.org
-------------- next part --------------
An HTML attachment was scrubbed...
URL: https://lists.owasp.org/pipermail/owasp-twincities/attachments/20101202/251fff25/attachment.html 

More information about the Owasp-twincities mailing list