- - - - - - Who will WIN, HackNYC Top Secure Coding Tournament? - - - - - -
OWASP Day Event Agenda
Hosted By S&P Global in collaboration with OWASP NYC & CIAOA
HackNYC Secure Coding Tournament
Date: 26th July 2019
Venue: S&P Global, 55 Water Street, 36th Floor, New York City, NY 10041
Registration starts at 9:00 am (S&P Global Lobby)
Start: 9:30 am to 10:15 am
Introduction & Networking
Welcome & Overview by OWASP Core Team
Welcome note by S&P Global Team
10:15 am to 11:15 am
"BSIMM DevOps Study" - DevSecOps Orchestration
John Steven, Chief Technology Officer - ZeroNorth.io
CISO Debrief on BSIMM DevOps Study
Vendors & firms do a lot of DevOps in name only because it gets them in the cool club. Those really changing their culture are fundamentally changing their risk management paradigm from one of proactive governance through security assurance to one of continuous collection of security telemetry & resilient delivery pipelines. What does that mean in practice? Synthesizing a survey of 20 such luminary DevOps firms, this presentation provides a software security framework & conclusions resulting from a survey of twenty luminary organizations practicing what they preach in DevOps culture. We will explore the tools & activities people have come to rely on, the changes to staffing security & aligning them with development & the remaining challenges that impede scale.
11:15 am to 12:15 PM
Panel Discussion DevSecOps Security Panel
12:15 pm to 1:15 PM
Lunch & Networking
1:15 pm to 2:15 PM
"DevSecOps Software Security Assurance Security Program" New Secure App Development
Rick Dunnam, Client Principal - Saltworks.io
How to successfully mature a Software Security Assurance Security Program. It will encompass people, process & technology via a real life case study. He will review best practices, lesson learned, & capabilities/benefits. He will review KPIs to measure & manage success of the Program while ensuring continuous improvement, including Gamification of Security Training for Developers.
Refreshments / Tea - Coffee Break
2:30 pm to 4 PM
Onsite Secure Code Tournament by Secure Code Warrior
Secure Code Warrior is a global security company that makes software development better & more secure: Gamified competitive Developer Quality Assurance platform
https://securecodewarrior.com, https://insights.securecodewarrior.com/
Announcement of the winners & Prize distribution
Vote of Thanks
4 PM to 5:30 PM
Meeting Concludes: Happy Hour / Networking
We look forward to you joining us for a Special DevSecOps Day with Hot Topics & Bonus Event with Secure Code Warrior for a DevSecOps "Secure Coding Tournament" with great Prizes & an OWASP SCW Trophy.
Developers, Coders, & Researchers welcome, get your game on!!!
Lunch Sponsored by our host S&P Global
Trophy Sponsored by Secure Code Warrior
Happy Hour Event Sponsored by Microfocus
Prizes Sponsored by Secure Code Warrior, CIAOA, Exodus, PENTESTON, Saltworks, Whitesource, & ZeroNorth.