OWASP AppSec India – Keynote and Training

OWASP AppSec India Keynote on Application Security Trends and Challenges
OWASP Training on Advanced Threat Modeling

The Road Less Traveled – Software Security from Shakespeare, Jungle Book and Nature …

What do you think Shakespeare had to say about Software Security? What does an naked motorist have to do with Confidentiality? What does the Jungle Book character Baloo have to say about Security Essentials (The Bear Bare Necessities of Life security)? What does the African Wildlife have to do with Security Concepts? What does pH have to do with Security? and more …

SD3LC – Secure By Design, Development & Deployment @ TRISC

In the current day and age, the chief drivers for software development projects are meeting business requirements and deadlines. Security is generally an afterthought for software development projects. Incorporating security from inception is more cost effective.This session will address the various security controls and activities associated with each phase of the software development lifecycle (SDLC). The controls and activities include but are not limited to; modeling use/abuse cases, threat modeling, security code review, security testing, etc.

Two Application Security Catalysts – SQL Injection & Cross-site Scripting (XSS) @ Burton Group Catalyst EU 2007

Two of the most prevalent application attacks in this day and age are SQL Injection and Cross-Site Scripting (XSS). Perimeter defense devices such as intrusion detection systems (IDS) and firewalls offer no protection against such attacks. The risk of sensitive information theft, alteration, insertion of data along with other effects such as URL redirection, website defacement and authentication theft are high and will be demonstrated. This session would demonstrate the effects of SQL Injection and XSS attacks and provide insight into the control measures to successful mitigate the risk against such attacks. It will also provide insight into the different process control measures that are necessary across the systems development life cycle to harden the code from within, so that such susceptibilities are addressed. Session takeaways include a complete understanding of the anatomy of SQL Injection and XSS attack, their effects when exploited and the mitigation control measures to stop SQL Injection and cross over XSS.

(ISC)2 Official CISSP Practice Exams and (ISC)2 Official SSCP Practice Exams

(ISC)² is dedicated to creating new value-added services for its prospective and more than 50,000 current members worldwide. One of the most exciting of these is studISCope, our online self-assessment tool that helps candidates assess their knowledge of the CISSP or SSCP CBK^®. Together with our partner, Express Certifications – a company renowned for developing innovative testing and training techniques – (ISC)² can now maximize your learning experience and focus your study efforts more precisely along whichever information security career path you choose.

Read More

WANTED – Sponsors, Speakers and Volunteers for the Austin Chapter

The Austin Chapter of the ISM-Community is looking for the following -

1. Hosts Sponsors / Companies to host and sponsor upcoming events
2. Speakers to speak in these ISM-Community hosted events
3. Volunteers to assist in the various ISM-Community projects and activities

We are currently compiling the event calendar for this year. If interested, please contact Mano Paul

Note: ISM-Community requires that all events that are conducted are vendor-neutral.

Upcoming InfoSec World Events

Check out some of the upcoming InfoSec events around the world that are published on the (ISC)² website.
The link is https://www.isc2.org/cgi-bin/content.cgi?page=924 

Austin Chapter of the Information Security Community Formed

The Austin Chapter of the ISM-Community was formed and successfully launched this month.

We are looking for the following to grow the ISM-Community in the Austin and Greater Texas area.

1. Hosts Sponsors / Companies to host and sponsor upcoming events
2. Speakers to speak in these ISM-Community hosted events
3. Volunteers to assist in the various ISM-Community projects and activities

If you are interested or would like to recommend someone for the upcoming event, please contact the Austin ISM-Community Chair, Mano Paul