AppSec Days PNW leaders Jeevan Singh and Chelsea Willis join us to talk about the upcoming OWASP collaborative event from the OWASP chapters of Vancouver, Victoria, Seattle, and Portland happening this year in Portland on June 10th. 

AppSec Days PNW has been running for three years now and this is the first in person event.  You can learn more and register at appsecpnw.org.  

Support the Show.

Support the Show.

Summit Security Group is a long time partner of Portland OWASP Training Day and this year's CTF sponsor.  David Quisenberry interviews Summit Security Group Managing Director and Founder Dan Briley to talk about their services, trends they are seeing in their security consulting practice, and ways they encourage a learning lifestyle at Summit.

Support the Show.

Our special guest today is Michael Allen Lake who is a digital transformation consultant focused on innovation and change adoption within the Federal government. He has worked on projects at nine different Federal agencies. His experience ranges from helping organizations leverage data as a strategic asset to the adoption and promotion of enterprise-wide cloud computing and artificial intelligence initiatives. In addition, Michael researches and publishes articles on the diplomatic history of the United States and Mongolia. He is also a volunteer with the Medical Reserve Corps, and co-hosts a YouTube channel on Star Wars called Never Tell Us the Odds. You can find more about Michael and his thoughts at YaksOnTheRunway.com.
 
Links from the show:

• Michael's Twitter
• Michael's Instagram
• Michael's LinkedIn
• U.S. Digital Corps
• Yaks on the Runway
• Never Tell Us the Odds

Michael Allen Lake was interviewed by David Quisenberry. Post production work by John L. Whiteman. Introduction and closing by Shayne Morgan.

Follow us:

• Homepage
• Twitter
• Meetup
• LinkedIn
• YouTube

Support the Show.

Our special guest today is Sarba Roy. Sarba is currently a Product Security Consultant at Umpqua Bank where she is collaborating and acting as a security advisor to the product teams when new digital technologies and/or business needs are identified. She is also the Oregon Affiliate Membership Chair for Women In CyberSecurity (WiCyS), and she also the Oregon Chapter Lead for Infosec Girls and a founding member of WomenH2H, a global community for women leaders and changemakers. She is also a passionate volunteer and advocate for women’s empowerment and education equity while being an artist, writer and mentor at heart, dedicated to helping individuals and organizations to become more compassionate, curious and cybersmart.

Check out her recent presentation on our OWASP PDX YouTube channel called "My Journey to Becoming a CISSP - Life Lessons and Study Tips." Other links mentioned during our interview with Sarba can be found in this podcast's RSS feed.

Show Links:

• Women in CyberSecurity
• Infosec Girls
• WomenH2H
• My Journey to Becoming a CISSP
• LinkedIn

Sarba Roy was interviewed by David Quisenberry and John L. Whiteman.

Follow us:

• Homepage
• Twitter
• Meetup
• LinkedIn
• YouTube

Support the Show.

Our special guest today is Aarti Gadhia. She is a highly successful cybersecurity professional who has worked in various leadership roles in sales and marking for well-known companies such as Bugcrowd, Carbon Black, Trend Micro and Sophos. Aarti is also the founder of Standout to Lead and SHE (Sharing Her Empowerment). Aarti is passionate about bridging the diversity gap in STEM and in leadership. She recently presented at our OWASP AppSec Pacific Northwest Conference on the topic of Women in Appsec: Advice to Differentiate Your Skills. As a podcast bonus, you will learn about how a childhood lesson in making roti with her mother helped shape Aarti to become the strong leader she is today.

We want to say thank you to Bugcrowd for being one of our sponsors for the inaugural OWASP Pacific Northwest Application Security Conference 2021.

Show Links:

• LinkedIn
• Bugcrowd
• BSides Vancouver
• The Diana Initiative
• The Rise of the Cyber Women: Volume 2: Inspirational stories from the women who are taking the cyber security industry by storm

PNWSEC

• https://pnwcon.com
• Twitter: @pnwseccon
• [email protected] (contact)

Aarti Gadhia was interviewed by David Quisenberry and John L. Whiteman.

Follow us:

• Homepage
• Twitter
• Meetup
• LinkedIn
• YouTube

Support the Show.

Our special guest today is Jeff Williams, Co-Founder and CTO of Contrast Security. Jeff was one of the pioneering members who formed the Open Web Application Security Project® (OWASP). Not only did he chair it, he also contributed to many successful open source projects, including WebGoat, the OWASP Application Security Verification Standard (ASVS), the OWASP Top Ten and much more.  Without him and others we would not be doing this podcast today. Besides founding Contrast Security in 2014, he started Aspect Security in 2002. Jeff got his law degree at Georgetown University Law Center along with a computer science and psychology degree at the University of Virginia. In the early 1990's, he built high assurance systems for the U.S. Navy and taught the INFOSEC curriculum for the NSA during the good old days of the Orange Book - a trusted computer system evaluation criteria for the U.S. Department of Defense.

We want to say thank you to Contrast Security for being one of our sponsors for the inaugural OWASP Pacific Northwest Application Security Conference 2021.

Jeff's Links

• Contrast Security
• LinkedIn
• Twitter
• Security Maganize Article - New NIST Standards on IAST and RASP Deliver State-of-the-Art AppSec
• WebGoat
• ASVS
• BlackHat USA - Enterprise Java Rootkits - "Hardly anyone watches the developers"

PNWSEC

• https://pnwcon.com
• Twitter: @pnwseccon
• [email protected] (contact)

Jeff Williams was interviewed by David Quisenberry and John L. Whiteman.

Follow us:

• Homepage
• Twitter
• Meetup
• LinkedIn
• YouTube

Support the Show.

Our special guest today is Frank Heidt who is the CEO and Co-Founder at Leviathan Security Group. Frank is a recognized expert in the fields of information assurance, network security and systems penetration. Prior to starting Leviathan, Frank was a managing security architect for @stake. He also engaged in various computer and networking security projects for the U.S. Department of Defense and the U.S. Department of the Navy. You can watch Frank speak at various TEDx conferences online. Frank is also a master at the living art of bonsai. Check out his delightful Jigsaw Bonsai Workshop on YouTube. 

We want to say thank you to Leviathan Security Group for being one of our sponsors for the inaugural OWASP Pacific Northwest Application Security Conference 2021.

Show Links

• Leviathan Security Group
• LinkedIn
• TEDx - State Sanctioned Hacking - The Elephant in the Room
• TEDx - Hacking 101
• Jigsaw Bonsai Workshop

PNWSEC

• https://pnwcon.com
• https://www.eventbrite.ca/e/first-annual-pacific-northwest-appsec-conference-tickets-155757566073 (buy tickets)
• @pnwseccon
• [email protected] (contact)

Frank Heidt was interviewed by David Quisenberry. Post-production by John L. Whiteman

Follow us:

• Homepage
• Twitter
• Meetup
• LinkedIn
• YouTube

Support the Show.

Our guests today are Rebekah Brown and Scott J. Roberts. They wrote a seminal book together called Intelligence-Driven Incident Response: Outwitting the Adversary. Both have extensive backgrounds in information security. Rebekah started her work as an intelligence and network warfare analyst while honorably serving in the United States Marine Corps, and Scott comes from a more traditional yet impressive background in defensive network security. Both are SANS instructors. To understand its enemy, an organization must first understand its threats by analyzing the data it collects. How to do this effectively is what we will discuss today. Definitely check out their book and listen to this podcast for a surprise announcement.

• Book: Intelligence-Driven Incident Response: Outwitting the Adversary
• Twitter: Rebekah Brown
• Twitter: Scott J. Roberts

Rebekah Brown and Scott J. Roberts are interviewed by David Quisenberry and John L. Whiteman

Follow us:

• Homepage
• Twitter
• Meetup
• LinkedIn
• YouTube

Support the Show.

On Saturday, June 19, 2021 something very special is going to happen. For the first time, a perfect trifecta of OWASP chapters in the Pacific Northwest are getting together to host a virtual conference focused on serious application security. It's called the Pacific Northwest Application Security Conference (PNWSEC). The chapters hosting this fine event are from the beautiful, breathtaking Canadian cities of Vancouver and Victoria B.C. and to the south in the States, Portland, Oregon. Our guests today are Farshad Abasi and Roberto Salgado along with our host David Quisenberry, each a leader of the same OWASP chapters respectively.

Tickets are going fast so hurry. Also if you want give a talk, including those short lighting ones, or even volunteer, it's still not too late. Go to pnwcon.com for details also check out this podcast's RSS feed for additional information regarding the conference and our guests.

PNWSEC

• https://pnwcon.com
• https://www.eventbrite.ca/e/first-annual-pacific-northwest-appsec-conference-tickets-155757566073 (buy tickets)
• @pnwseccon
• [email protected] (contact)

Vancouver, B.C. OWASP Chapter

• https://owasp.org/www-chapter-vancouver/
• https://twitter.com/owaspvancouver

Victoria, B.C. OWASP Chapter

• https://owasp.org/www-chapter-victoria/
• https://twitter.com/owaspvictoria

Farshad Abasi (Vancouver, B.C.)

• https://www.linkedin.com/in/farshadabasi/
• Forward Security Inc.
• @farshadabasi

Roberto Salgado (Victoria, B.C.)

• https://www.linkedin.com/in/roberto-salgado/
• Websec Canada
• @lightos

David Quisenberry (Portland, Oregon)

• https://www.linkedin.com/in/davidmquisenberry/
• https://zapproved.com/
• @QuizSec

Farshad Abasi and Roberto Salgado are  interviewed by David Quisenberry and John L. Whiteman.

Follow us:

• Homepage
• Twitter
• Meetup
• LinkedIn
• YouTube

- Become an OWASP member
- Donate to our OWASP PDX chapter

Support the Show.