OWASP London Chapter In-Person Meetup

This event is kindly sponsored and hosted by ThoughtMachine. There is limited seating available for in-person attendees. Registration required. Please note that this event will be live-streamed on YouTube for the online audience. Recordings will be available on the OWASP London YouTube channel.

Venue Location: Thought Machine, 7 Herbrand St, London WC1N 1EX

Nearest Tube: Russell Square (Piccadilly Line) - 2 min walk

Doors Open at 6pm for registration, pizza, drinks and networking. The talks start at 6:30pm (we start on time).

TALKS:

OWASP Introduction, Welcome and News - Sam Stepanyan, Sherif Mansour and Andra Lezza

Welcome and a brief update on OWASP Projects & Events from the OWASP London Chapter Leaders

Talk 1: "Preventing Subdomain Takeover with OWASP Domain Protect" - Paul Schwarzenberger

Paul Schwarzenberger, project leader of OWASP Domain Protect, describes how the OVO Energy Bug Bounty program led to the launch of a new OWASP project to prevent subdomain takeovers, and gives a live demonstration of detection of vulnerable domain records, followed by automated takeover.

Talk 2: "The Security Tools Crash and the Next Generation of Cloud Native Platform" - Mark Curphey

Mark Curphey, founder of OWASP recently wrote an article called The Security Tools Crash is Coming that had a lot of praise from security practitioners and unsurprisingly met with some disdain from some security startup founders and venture capitalists. In this talk Mark will run through the key points of the article and then talk about what he believes in the next generation of tools meeting AppSec and CloudSec into interoperable cloud native platforms.

Talk 3: OWASP 2023 - Listening Tour

Mark Curphey was recently elected to the 2023 OWASP Board on a manifesto to modernize OWASP. He is on a tour of European chapters listening to feedback from members and chapter attendees about what they would like to see OWASP do. This session will be at the end of the night, so we can run over and continue the conversation in the pub

SPEAKERS

Paul Schwarzenberger (@paulschwarzen)

Paul Schwarzenberger is a cloud security architect and DevSecOps specialist, using an agile DevSecOps approach to lead the implementation and migration of critical systems to public cloud. Paul has extensive experience leading a wide range of cyber security engagements for customers across sectors including UK Government and financial services. Paul is a speaker on Cloud Security and DevSecOps at conferences such as (ISC)2 Congress, fwd:cloudsec, Security BSides, DevSecCon, 44COM, Enterprise Cloud Computing, CRESTcon, DevSecOps London and now OWASP.

Mark Curphey (@crashappsec), OWASP Founder

Mark is the founder of OWASP, he is also founder and CEO of SourceClear (acquired by Veracode in 2018) and the co-founder of Open Raven (https://www.openraven.com), a data security company. Mark moved to the U.S. in 2000 to join Internet Security Systems (now a part of IBM), he also held roles including director of application security at Charles Schwab, VP of Professional Services at Foundstone, McAfee and lead the security tools team at Microsoft. Mark holds a Masters of Information Security from Royal Holloway University. After having lived for many years in Seattle and San Francisco Mark makes his return to Great Britain where he continues to work on his next big project. Mark is also an avid cyclist.

TICKETS

This event is free to attend for both members and non-members of OWASP and is open to anyone interested in web application and cyber security. Please note that you MUST book your place to be admitted to the event by the building security - your name will be checked against the guest list.

COVID-19 SAFETY

For everyone's safety please only attend this event in-person if you are:

• fully vaccinated against COVID-19
• recently recovered from COVID-19 (in the last 6 months)
• do not have any COVID-19 symptoms

When inside the event venue:

• we fully support your choice to wear a mask
• please cover coughs and sneezes with bent elbow or tissues; and
• please clean your hands frequently using sanitiser provided by the organisers

The organisers reserve the right to refuse entry to anyone showing symptoms of COVID-19

This event will be live-streamed online, so if you feel unwell please stay at home and watch the event remotely on the OWASP London YouTube channel and participate in the live Q&A session.

CODE OF CONDUCT

We hope you enjoy the event, we care deeply about inclusivity and diversity so that OWASP is a comfortable and welcoming community for everyone. Please reach out to one of our chapter leaders if you have any feedback/concerns or would like to speak to us, we take these matters very seriously.

OWASP aims to provide a harassment-free experience for everyone, regardless of gender, sexual orientation, disability, physical appearance, body size, race, age, or religion. We do not tolerate harassment of event participants in any form.

Additionally, participating in OWASP events means you shall also adhere to the OWASP Code of Conduct which you can find here: https://owasp.org/www-policy/operational/code-of-conduct