Loading…
or to bookmark your favorites and sync them to your phone or calendar.
Subject: OWASP Certified clear filter
arrow_back View All Dates
Wednesday, February 19
 

1:00pm PST

[Virtual] OWASP Security Summit: AI and the Gaming Industry: Risks, Rewards, and the Future
Wednesday February 19, 2025 1:00pm - 1:25pm PST
Virtual Dev Security World
Tanya "SheHacksPurple" Janca, SheHacksPurple, Secure Coding Trainer
OWASP Certified 
Speakers
avatar for Tanya

Tanya "SheHacksPurple" Janca

Secure Coding Trainer, SheHacksPurple
Tanya Janca, aka SheHacksPurple, is the best-selling author of 'Alice and Bob Learn Secure Coding', 'Alice and Bob Learn Application Security’ and ‘Cards Against AppSec'. Over her 28-year IT career she has won countless awards (including OWASP Lifetime Distinguished Member and... Read More →
Wednesday February 19, 2025 1:00pm - 1:25pm PST
Virtual Dev Security World
  Dev Security World

2:00pm PST

[Virtual] OWASP Security Summit: Building a Network Telemetry Platform to minimize Security Threats
Wednesday February 19, 2025 2:00pm - 2:25pm PST
Virtual Dev Security World
Siri Varma Vegiraju, Microsoft, Senior Software Engineer

Maintaining robust network security in the cloud environment is more crucial than ever. This talk explores the design and implementation of a proactive network telemetry platform that strengthens infrastructure security. The platform collects and analyzes telemetry data from virtual machines to identify and scrutinize traffic patterns deviating from industry-standard baselines. By generating actionable insights and promptly notifying relevant teams of potential issues, it enables swift problem resolution. This proactive approach significantly reduces the attack surface, minimizes exposure to network attacks, and enhances overall cloud security. 
Speakers
avatar for Siri Varma Vegiraju

Siri Varma Vegiraju

Senior Software Engineer, Microsoft
Siri Varma Vegiraju is a seasoned professional in healthcare, cloud computing, and security. Currently, he focuses on securing Azure Cloud workloads, leveraging his extensive experience in distributed systems and real-time streaming solutions. Prior to his current role, Siri contributed... Read More →
Wednesday February 19, 2025 2:00pm - 2:25pm PST
Virtual Dev Security World
  Dev Security World

2:30pm PST

[Virtual] OWASP Security Summit: API Security 101: How to Not Be Featured in a Top Ten Breaches List
Wednesday February 19, 2025 2:30pm - 2:55pm PST
Virtual Dev Security World
Dan Barahona, APISec, Co-Founder

This talk will dive into the fundamentals and best practices for API Security. By understanding the 3 Pillars of API Security, encompassing governance, testing and monitoring, attendees will gain a comprehensive understanding of the essential elements required to safeguard APIs. The session will conclude with practical insights, offering best practices and valuable do's and don'ts for implementing and maintaining secure APIs.

Why are APIs under attack?
-83% of internet traffic are APIs
-APIs are under-secured

How do APIs get attacked?
Attackers look for APIs that are over-permissioned, return to much information, access unauthorized functions, and expose logic flaws. Attackers are able to bypass a web or mobile app and hit the API directly.

OWASP top 10!!
#1-#4 are the biggest issues

More compliance regulations are including testing APIs.
-PCI
-HIPPA
-GDPR
-FedRAMP
Speakers
avatar for Dan Barahona

Dan Barahona

Co-Founder, APIsec University
Dan is a 20+ year cybersecurity veteran, having held exec positions at companies including Qualys, ArcSight, Anomali and APIsec. He founded APIsec University in 2022 to offer free, non-vendor training on API security. The site has grown to over 50,000 students in its first 6 months... Read More →
Wednesday February 19, 2025 2:30pm - 2:55pm PST
Virtual Dev Security World
  Dev Security World

3:00pm PST

[Virtual] OWASP Security Summit: 30 Tips for Secure JavaScript
Wednesday February 19, 2025 3:00pm - 3:25pm PST
Virtual Dev Security World
Tanya "SheHacksPurple" Janca, SheHacksPurple, Secure Coding Trainer
OWASP Certified 

In this talk, we will cover 30 tips for writing more secure JavaScript, emphasizing what to do, what NOT to do, and utilizing open-source tooling to enhance security. JavaScript is not only the most popular web programming language, but it also faces security threats like XSS and code injection, meaning we need to ensure our JavaScript is tough, rugged, and secure. We’ll touch only upon items that are specific to JavaScript, as opposed to agnostic topics that apply to all languages, such as encryption or authentication. By the end, you’ll gain insights into selecting the best framework, adopting secure coding practices, and leveraging tools for web application security, catering to both seasoned developers and beginners seeking practical guidance. 
Speakers
avatar for Tanya

Tanya "SheHacksPurple" Janca

Secure Coding Trainer, SheHacksPurple
Tanya Janca, aka SheHacksPurple, is the best-selling author of 'Alice and Bob Learn Secure Coding', 'Alice and Bob Learn Application Security’ and ‘Cards Against AppSec'. Over her 28-year IT career she has won countless awards (including OWASP Lifetime Distinguished Member and... Read More →
Wednesday February 19, 2025 3:00pm - 3:25pm PST
Virtual Dev Security World
  Dev Security World
 
Share Modal

Share this link via

Or copy link

Filter sessions
Apply filters to sessions.
Filtered by Date - 
Clear filter
Monday, February 10
Tuesday, February 11
Wednesday, February 12
Thursday, February 13
Tuesday, February 18
Wednesday, February 19
Thursday, February 20
AI DevWorld Main Stage
AI DevWorld OPEN Stage
AI DevWorld Stage 1
Cloud Native World
Dev Exec World
Dev Innovation World Stage
Dev Security World
DeveloperWeek Main Stage
DeveloperWeek PRO STAGE
Expo Hall
Frontend World
OpsWorld
ProductWorld Main Stage
Roundtable Room
Santa Clara Convention Center - Lobby
Santa Clara Hyatt Regency Lobby
VIRTUAL AI DevWorld Main Stage
VIRTUAL AI DevWorld OPEN Stage
VIRTUAL AI DevWorld Stage 1
VIRTUAL Cloud Native World
VIRTUAL Dev Exec World
VIRTUAL Dev Innovation World
Virtual Dev Security World
VIRTUAL DeveloperWeek Main Stage
VIRTUAL Frontend World
VIRTUAL OpsWorld
VIRTUAL ProductWorld Main Stage
  • 1. Badge Pick-up & Registration
  • 2. Experiences & Official Events
  • 3. Expo Hours
  • 4. Hackathon
  • 5. KEYNOTES & FEATURED
  • AI DevWorld
  • Cloud Native World
  • Dev Exec World
  • Dev Innovation World
  • Dev Security World
  • Frontend World
  • OpsWorld
  • ProductWorld
  • Tracks & Topics
  • APIs & Microservices
  • Blockchain & Web3
  • Data Engineering
  • Dev Career
  • Developer Experience (DX)
  • Developer Tools
  • DevOps
  • Enterprise
  • Gen AI / LLMs
  • Platform Engineering
  • Technical Leadership & Management
  • Session Type
  • OPEN Session
  • PRO Session
  • PRO Workshop Day (Tues)
  • Conferences
  • AI & Organizational Change Management (AI DevWorld)
  • AI DevWorld
  • AI DevWorld: AI Strategy Conference
  • AI DevWorld: AI/ML Engineering Conference
  • AI DevWorld: Industry AI Conference
  • AI Ethics (AI DevWorld)
  • AI for the Enterprise (AI DevWorld)
  • AI Security & Governance & Compliance (AI DevWorld)
  • Applied AI Innovation (AI DevWorld)
  • Bots & Language Processing (AI DevWorld)
  • Cloud Native World
  • Dev Exec World
  • Dev Innovation World
  • Dev Security World
  • Finance/FinTech AI (AI DevWorld)
  • Frontend World
  • Generative AI & LLMs (AI DevWorld)
  • Methodology: Agile and Rapid Prototyping and SCRUM and Beyond (ProductWorld)
  • MLOps & AIOps (AI DevWorld)
  • OPEN Session
  • OpenAPI Summit
  • OpsWorld
  • OWASP Certified
  • Product Lead / Product Manager Roundtables (ProductWorld)
  • Product Lifecycle & Case Studies (ProductWorld)
  • Product Management Tools & Software (ProductWorld)
  • Product Roadmap Strategy & Innovation (ProductWorld)
  • Product Team Management & Structure (ProductWorld)
  • ProductWorld
  • Tensorflow & PyTorch & Open Source Frameworks (AI DevWorld)
  • Virtual
  • In-Person/Virtual
  • In Person
  • Virtual
  • Virtual Exclusive