Breach Security Executive Featured Speaker at Three OWASP Events in April

Ryan C. Barnett to educate members on continuous web application assessment and remediation – solutions that go beyond vulnerability scanning

CARLSBAD, Calif., April 1, 2008 — Breach Security, Inc., the leader in web application security, today announced announced that Ryan C. Barnett, director of application security, is the guest lecturer at three upcoming Open Web Application Security Project (OWASP) meetings. Barnett was invited to educate members on new web application security technologies that provide actionable results and remediation. He will address solutions that are complementary to automated scanners but offer a host of new capabilities, including continuous monitoring of production traffic, web application defect detection and real-time remediation.

Barnett, Global Information Assurance Certified, Certified Firewall Analyst, and Certified Incident Handler (GCIA, GCFA, GCIH), is also a SANS Institute faculty member and a member of the Web Application Security Consortium (WASC).

When: April 3 at 6:00 p.m. PDT
Location: OWASP Sacramento, Calif., chapter: http://www.owasp.org/index.php/Sacramento
What: Topic: “Continuous Web Application Assessment”

Session highlights include:

  • Real-time monitoring—understanding how applications work in production
  • Application defect detection—scanning vs. monitoring usage
  • Enhancements for the application development lifecycle—more comprehensive application assessment than simulated tests

When: April 16 at 6:00 p.m. PDT
Location: OWASP Denver, Colo., chapter: https://www.owasp.org/index.php/Denver
What: Topic: “Dynamic Vulnerability Remediation with ModSecurity”

Session highlights include:

  • Exploring “external patching” also called “just-in-time patching” or “virtual patching”—one of the biggest advantages of web application firewalls
  • Defining when and where “virtual patching” is appropriate—the proper steps for their creation and testing

When: April 17 at 6:00 p.m. PDT
Location: OWASP Boulder, Colo., chapter: https://www.owasp.org/index.php/Boulder
What: Topic: “Continuous Web Application Assessment”

Session highlights include:

  • Real-time monitoring—understanding how applications work in production
  • Application defect detection—scanning vs. monitoring usage
  • Enhancements for the application development lifecycle—more comprehensive application assessment than simulated tests

Breach Security Labs, the research arm of Breach Security, Inc., plays an active role in leading web application security industry organizations such as OWASP and WASC. Breach Security Labs team members are WASC officers and lead the OWASP chapters in the UK and Israel.

OWASP is a worldwide free and open community focused on improving the security of application software and is a not-for-profit entity. All of the OWASP tools, documents, forums, and chapters are free and open to anyone interested in improving application security. For more information about OWASP, visit http://www.owasp.org/index.php/Main_Page.

About Breach Security

Breach Security, Inc. is the leading provider of real-time, continuous web application security that protects sensitive web-based information. Breach Security’s products protect web applications from hacking attacks and data leakage, and ensure applications operate as intended. The company’s products are trusted by thousands of organizations around the world, including leaders in finance, healthcare, ecommerce, travel and government. For more information, please visit www.breach.com.

###