From 8bec67a92107252904c35c863a3b5cacbe230777 Mon Sep 17 00:00:00 2001 From: SebaDele Date: Sun, 22 Sep 2024 05:30:13 +0000 Subject: [PATCH] deploy: 939b1630faef64a1d172b8d1b70812b0538ff0f5 --- user-day/index.html | 2 +- .../index.html | 2 +- 2 files changed, 2 insertions(+), 2 deletions(-) diff --git a/user-day/index.html b/user-day/index.html index 23b6c670..5af38f7b 100644 --- a/user-day/index.html +++ b/user-day/index.html @@ -3,7 +3,7 @@ User Day - go to homepage

User Day

September 25th, San Francisco

We have a second SAMM User Day this year, in the context of Global AppSec San Francisco , on Wednesday, September 25th.


Register here

Agenda

Our agenda features talks and discussions led by industry experts on topics ranging from the practical applications of SAMM to real-world case studies showcasing its impact. Whether you’re a seasoned practitioner or new to the field, there will be something for everyone to learn and contribute.

UTCTitleSpeakerType
9.00Welcome to SAMM User Day San Francisco 2024Aram Hovsepyan
9.20Security Champions: An OWASP SAMM Level Booster!Dustin LehrPresentation
9.55Implementing 5 levels of Capability Maturity Model (CMM) for Secure Software Development Life Cycle (SSDLC)Jamil AhmedPresentation
10.30 - Break
11.00Influencing Boardroom Strategy: OWASP SAMM as a communication toolDag FlachetPresentation
11.45SAMM Benchmark UpdatesAram Hovsepyan, Brian GlasPresentation
12.30 - Lunch Break
13.30Rolling out SAMM in established and diverse corporationsNariman AGA-TAGIYEVWorkshop
14.15Maturing SDLC at a Fortune 500 company based on OWASP SAMM: successes and pitfallsSunny SharmaPresentation
15.00 - Break
15.30Round Table: assessment methodologyAll participantsRound table
17.00Wrap-upSAMM Team Members
18.00SAMM Dinner sponsored by Codific and Toreon

Archive

Here you can find the previous SAMM User Day pages with the full list of talks, downloadable material, and YouTube links.

User Day

September 25th, San Francisco

We have a second SAMM User Day this year, in the context of Global AppSec San Francisco , on Wednesday, September 25th.


Register here

Agenda

Our agenda features talks and discussions led by industry experts on topics ranging from the practical applications of SAMM to real-world case studies showcasing its impact. Whether you’re a seasoned practitioner or new to the field, there will be something for everyone to learn and contribute.

Local timeTitleSpeakerType
9:00 amWelcome to SAMM User Day San Francisco 2024Aram Hovsepyan
9:20 amSecurity Champions: An OWASP SAMM Level Booster!Dustin LehrPresentation
9:55 amImplementing 5 levels of Capability Maturity Model (CMM) for Secure Software Development Life Cycle (SSDLC)Jamil AhmedPresentation
10:30 am - Break
11:00 amInfluencing Boardroom Strategy: OWASP SAMM as a communication toolDag FlachetPresentation
11:45 amSAMM Benchmark UpdatesAram Hovsepyan, Brian GlasPresentation
12:30 pm - Lunch Break
1:30 pmRolling out SAMM in established and diverse corporationsNariman Aga-TagiyevPresentation
2:15 pmMaturing SDLC at a Fortune 500 company based on OWASP SAMM: successes and pitfallsSunny SharmaPresentation
3:00 pm - Break
3:30 pmRound Table: assessment methodologyAll participantsRound table
5:00 pmWrap-upSAMM Team Members
6:00 pmSAMM Dinner sponsored by Codific and Toreon

Archive

Here you can find the previous SAMM User Day pages with the full list of talks, downloadable material, and YouTube links.

2023 User Day page    2021 User Day page    diff --git a/user-day/rolling-out-samm-in-established-and-diverse-corporations/index.html b/user-day/rolling-out-samm-in-established-and-diverse-corporations/index.html index eee351fb..096df487 100644 --- a/user-day/rolling-out-samm-in-established-and-diverse-corporations/index.html +++ b/user-day/rolling-out-samm-in-established-and-diverse-corporations/index.html @@ -3,7 +3,7 @@ User day - go to homepage

User day

Rolling out SAMM in established and diverse corporations

speaker picture

Nariman Aga-Tagiev



Dassault Systems
Cybersecurity Engineering Manager

Abstract

Interactive workshop about adapting OWASP SAMM as a maturity framework from sctratch in a big corporation with very diverse portfolio, tools and teams.

Speaker bio

Nariman Aga-Tagiyev is an Application Security Architect with over two decades of experience in software development. Over the course of his career, Nariman has worn multiple hats, serving as a full stack web application developer, backend developer, DevOps engineer, and cloud developer. However, since 2016, his focus has been exclusively dedicated to the realm of Application Security and advancing Software Security Development Life Cycle (SSDLC) maturity.

About us

This is an OWASP Project.
OWASP is an open community dedicated to enabling organizations to conceive, develop, acquire, operate, and maintain applications that can be trusted. All of the OWASP tools, documents, forums, and chapters are free and open to anyone interested in improving application security.

User day

User day

Rolling out SAMM in established and diverse corporations

speaker picture

Nariman Aga-Tagiyev



Dassault Systems
Cybersecurity Engineering Manager

Abstract

Embarking on the journey of integrating OWASP SAMM into a sprawling and multifaceted organization can be a daunting task, yet an immensely rewarding one. In this collaborative session, titled “Rolling out SAMM in established and diverse corporations” participants will engage in a dynamic exchange of insights, where my experiences will serve as a springboard for collective learning and sharing.

Rather than a traditional presentation, this session will unfold as a group collaboration, fostering an interactive environment where participants will glean firsthand insights into the strategies employed to sway decision-makers towards embracing the OWASP SAMM model. From crafting compelling narratives to demonstrating tangible ROI, we’ll uncover the keys to gaining organizational buy-in.

As in any complex task, the most difficult part is often taking the first step. We’ll explore the various options to kickstart the process, discussing how to motivate teams and cultivate a network of internal allies to champion the cause.

Furthermore, we’ll look into the consequential benefits of implementing a maturity framework within a software company. I’ll discuss how embracing SAMM can boost learning and knowledge sharing, sparking a ripple effect of heightened awareness and interest in cybersecurity across the organization.

Scaling within a diverse and expansive organization presents its own set of challenges. Together, we’ll delve into practical strategies honed through trial and error, offering insights into streamlining processes and fostering widespread adoption.

However, no journey is devoid of obstacles. Through open discussion, we’ll candidly address the lingering challenges and the ongoing quest to overcome them, underscoring the importance of resilience and adaptability in the face of adversity.

In the spirit of collaboration and mutual learning, I’ll conclude by inviting participants to share their own approaches and perspectives, fostering a dynamic exchange of ideas that enriches our collective understanding.

Join me as we unravel the roadmap from zero to hero in the realm of cybersecurity maturity through collaborative insight.

Speaker bio

Nariman Aga-Tagiyev is an Application Security Architect with over two decades of experience in software development. Over the course of his career, Nariman has worn multiple hats, serving as a full stack web application developer, backend developer, DevOps engineer, and cloud developer. However, since 2016, his focus has been exclusively dedicated to the realm of Application Security and advancing Software Security Development Life Cycle (SSDLC) maturity.

About us

This is an OWASP Project.
OWASP is an open community dedicated to enabling organizations to conceive, develop, acquire, operate, and maintain applications that can be trusted. All of the OWASP tools, documents, forums, and chapters are free and open to anyone interested in improving application security.

User day