I just attended ISACA e-Symposium, ‘Web Application Security: Intelligent Choices’ and I found the topics quite balanced between trench-tech facts and business approach  to web application security.

The presentations presented today in the monthly ISACA online conference were :

• Your Browser Wears No Clothes: Why Users with Fully Patched and Secured Web Browser Remain Vulnerable in a Web 2.0 World – by  Michael Sutton, CA, CISA, CISSP VP, Security Research Zscaler
• Building a Web Application Security Program – by  Rich Mogull Analyst/CEO Securosis
•  Are Your Web Applications an Open Door for Hackers? – by  Michael Shema Web Application Security Solutions Developer Qualys, Inc.
• Solving Problems that Don’t Exist: Building Better Application Security Practices – by Dennis Hurst Security Engineer HP

Coming from web penetration testing, it was interesting for me to get into web application risk profiling. Involving the business side of web security audit / hacking surely gets your report to be read more than once by the decision makers

The monthly BrightTALK / ISACA conferences also offer the chance to earn 3 CPE points so make sure to register for the June conference "Harmonizing Security and Compliance"

Click here to access all recorded conferences .

[UPDATE]
The ISACA e-Symposium ‘Web Application Security: Intelligent Choices’ has now been archived and all presentations are available for on-demand viewing in your own time.
The on-demand content qualifies for 3 CPE points.

Please go to http://isaca.brighttalk.com/node/652 to view the archive.
 

Thank you for reading this post. You can now Leave A Comment (0) or Leave A Trackback.  Print This Post