EventsAerstone on the Road!
To give back to the cybersecurity community, Aerstone invests integrally into organizations such as the OWASP Foundation and its supporting events. One such event is the Front Range OWASP Conference (“SnowFROC”), a multi-track track cybersecurity conference. Every year, hundreds of security professionals, application developers, and more descend on Denver, Colorado to participate.
In 2013 Aerstone was more than just the SnowFROC diamond sponsor. Our own Mark Major directed the conference, Jess Garrett led web development and speaker logistics, and every single member of Aerstone’s Colorado office volunteered during the event to make it the largest and most successful in SnowFROC history.
The Colorado OWASP chapters are proud to present the 5th annual SnowFROC. Join 300 other developers, business owners, and security professionals for a day-and-a-half of presentations, training, and Birds-of-a-Feather (BoaF) sessions. The SnowFROC 2013 keynote speaker is Neal Ziring, Technical Director of InfoProtection at NSA.
The conference will occur on Thursday, March 28th and will feature four primary tracks:
Deep-Dive / Hands-on Technical
Running in parallel to the conference proceedings will be a capture the flag (CTF) hacking competition developed exclusively for SnowFROC by Boulder OWASP chapter members. The day will conclude with a moderated panel discussion featuring top industry leaders.
On Friday, March 28, Jim Manico will teach a course in secure coding. This training is free to SnowFROC attendees!
Friday will also offer BoaF sessions. Join like-minded industry leaders and discuss pressing issues facing the industry and you. BoaF sessions are self-lead and may address and issue you would like. Pitch your idea and get the ball rolling!
Finally, Friday will feature a postmortem of the CTF tournament. In addition to discussing solutions, techniques, and tools, we will encourage participants to attack the previously out-of-bounds CTF framework. Itching to break into the scoreboard and rack up the points? The gloves come off Friday morning.
Mark Major: Director
Colorado Chapter Hosts
Aerstone’s Micah Tapman participated in a panel discussion on cyber threats at the Utah Cyber Defense Challenge & Symposium on Friday, June 1, 2012. The panel was led by SAIC’s Peder Jungck and included Matt Might, Assistant Professor in Computer Science, University of Utah; Dmitry Dessiatnikov, Principle Consultant, Accuvant, Inc.; and Brandon Greenwood, Director of IT Security and Compliance, Overstock.com.
The panel discussed several topics related to cyber threats including the development of new offensive and defensive cyber measures; the challenge of mitigating social engineering and the “human OS” problem; and legal and regulatory considerations for businesses.
One of the most interesting issues raised was a new initiative by the University of Utah to retrain/refocus the computer science department to make sure every class includes a cybersecurity element. This will help ensure new graduates are well prepared to develop secure systems and begins the process of integrating security into the curriculum instead of treating the subject as an add on to be implemented after design or even implementation of a system.
The event also featured a competition among several teams managed using SAIC’s CyberNEXS competition platform. For those who are unfamiliar with CyberNEXS it’s a very interesting concept and worth exploring. The basic premise is a virtualized and highly customizable cybersecurity training/testing platform with a scoring system for real time monitoring of team performance.
Aerstone is pleased to host the OWASP Boulder chapter meeting this evening at our offices in downtown Boulder. Mark Major, a security engineer with Aerstone, has recently helped revitalize the chapter and has arranged for Tim Van Cleave of TVG Network to provide an interactive session focused on WebScarab and WebGoat.
Although tonight’s meeting is fully booked please keep an eye out for future meetings, which occur each month. Meetings are organized using Meetup (http://www.meetup.com/OWASP-Boulder/) and the official chapter page is https://www.owasp.org/index.php/Boulder.