Florida Linux Show

Speakers - Kevin Johnson & Frank DiMaggio

Presenter - Mr. Kevin Johnson

Title Web Application Security Testing and the 20 Critical Controls: Pulling
yourself out of the mud.

Brief:

With all of the scary acronyms like PIC and HIPAA being thrown around today, how is an organization to prepare themselves without overwhelming cost and effort? Kevin Johnson and Frank DiMaggio will explore in this
talk the ways that the 20 Critical Controls can help guide an organization. They will also focus on web security and examine various open source tools that you can implement today! These tools will help automate your required security testing and can be made part of your processes to relieve a lot of the effort and pain typical security testing incurs.

Bio:
Kevin Johnson is a Senior Security Analyst with InGuardians. Kevin came to security from a development and system administration background. He has many years of experience performing security services for fortune 100 companies, and in his spare time contributes to a large number of open source security projects. Kevin founded and leads the development
on B.A.S.E. (the Basic Analysis and Security Engine) project. The BASE project is the most popular web interface for the Snort intrusion detection system. Kevin is an instructor for SANS, teaching both the Incident Handling and Hacker Techniques class and the Web Application Penetration Testing and Ethical Hacking class, which he is the author.
He has presented to many organizations, including Infragard, ISACA,
ISSA, RSA and the University of Florida.

Presenter: Frank DiMaggio

Bio

Frank is a manager of the Intel server team with a large insurance company in the South East. He has been in a systems
administration role for over 18 years, working with small and medium sized businesses in North Florida. His experience is with Microsoft, Novell and Linux Operating Systems. In his spare time he contributes to open source security projects such as BASE, SamuraiWTF and Yokoso!