ISACA e-Symposium – Web Application Security
I just attended ISACA e-Symposium, ‘Web Application Security: Intelligent Choices’ and I found the topics quite balanced between trench-tech facts and business approach to web application security.
The presentations presented today in the monthly ISACA online conference were :
- Your Browser Wears No Clothes: Why Users with Fully Patched and Secured Web Browser Remain Vulnerable in a Web 2.0 World – by Michael Sutton, CA, CISA, CISSP VP, Security Research Zscaler
- Building a Web Application Security Program – by Rich Mogull Analyst/CEO Securosis
- Are Your Web Applications an Open Door for Hackers? – by Michael Shema Web Application Security Solutions Developer Qualys, Inc.
- Solving Problems that Don’t Exist: Building Better Application Security Practices – by Dennis Hurst Security Engineer HP
Coming from web penetration testing, it was interesting for me to get into web application risk profiling. Involving the business side of web security audit / hacking surely gets your report to be read more than once by the decision makers 
The monthly BrightTALK / ISACA conferences also offer the chance to earn 3 CPE points so make sure to register for the June conference "Harmonizing Security and Compliance"
Click here to access all recorded conferences .
[UPDATE]
The ISACA e-Symposium ‘Web Application Security: Intelligent Choices’ has now been archived and all presentations are available for on-demand viewing in your own time.
The on-demand content qualifies for 3 CPE points.
Please go to http://isaca.brighttalk.com/node/652 to view the archive.
