• Like

Loading…

Flash Player 9 (or above) is needed to view presentations.
We have detected that you do not have it on your computer. To install it, go here.

Dealing with Web Application Security, Regulation Style

  • 357 views
Uploaded on

Because many organizations don't perform security unless they have to, more than 80% of all web applications are being exposed to vulnerabilities. In comes regulation. There are a number of …

Because many organizations don't perform security unless they have to, more than 80% of all web applications are being exposed to vulnerabilities. In comes regulation. There are a number of different industries other than financial and healthcare that deal with PII and PHI but are either not regulated at all or are regulated very loosely. This presentation will discuss the various regulations (PCI, SOX, HIPAA, etc.) and what each does to address web application security, if any, as well as the shortcomings of each. Finally, it will further address industries that need to be more strictly regulated in order to better protect personal information.

Andrew Weidenhamer, Senior Security Consultant, SecureState

Andrew Weidenhamer, Senior Security Consultant, joined SecureState in January 2008. As a former member of the Profiling Team, Andrew performed technical security assessments on a weekly basis. These assessments included Internal and External Attack and Penetration Assessments, Wireless Penetration Assessments, Web Application Security Reviews, Physical Penetration Tests, and Social Engineering Assessments.

More in: Technology
  • Full Name Full Name Comment goes here.
    Are you sure you want to
    Your message goes here
  • Hello my dear
    I am Modester by name good day. i just went to your profile this time true this site (www.slideshare.net) and i got your detail and your explanation in fact the way you explain your self shows me that you are innocent and maturity and also understand person i decided to have a contact with you so that we can explain to our self each other because God great everyone to make a friend with each other and from that we know that we are from thism planet God great for us ok my dear please try and reach me through my email address (modester4life4@yahoo.com) so that i can send you my picture true your reply we can know each other ok have a nice day and God bless you yours Modester
    Are you sure you want to
    Your message goes here
    Be the first to like this
No Downloads

Views

Total Views
357
On Slideshare
0
From Embeds
0
Number of Embeds
0

Actions

Shares
Downloads
10
Comments
1
Likes
0

Embeds 0

No embeds

Report content

Flagged as inappropriate Flag as inappropriate
Flag as inappropriate

Select your reason for flagging this presentation as inappropriate.

Cancel
    No notes for slide

Transcript

  • 1. 8/6/2010 NimbleUser Mail - SecureState Speakin… Ted Husted <thusted@vandamme.com> SecureState Speaking Presentation--Andrew Weidenhamer 1 message Molly G. Parsons <mparsons@securestate.com> Wed, Jun 16, 2010 at 3:34 PM To: Ted Husted <thusted@rocsecsum.org> Cc: "present2010@rochestersecurity.org" <present2010@rochestersecurity.org>, "Andrew M. Weidenhamer" <aweidenhamer@securestate.com> Good Afternoon Ted, I have included in this email a speaking submission from SecureState’s Andrew Weidenhamer for this year’s event. Title: Dealing with Web Application Security, Regulation Style Abstract: Because many organizations don't perform security unless they have to, more than 80% of all web applications are being exposed to vulnerabilities. In comes regulation. There are a number of different industries other than financial and healthcare that deal with PII and PHI but either are not regulated at all or are regulated very loosely. This presentation will discuss the various regulations (PCI, SOX, HIPAA, etc) and what each does to address web application security, if any, as well as the shortcomings of each. Finally, it will address further industries that need to be more strictly regulated in order to better protect personal information. Speaker’s Bio: Andrew Weidenhamer, Senior Security Consultant, joined SecureState as a professional hire in January 2008. As a former member of the Profiling Team, Andrew performed technical security assessments on a weekly basis. These assessments included Internal and External Attack and Penetration Assessments, Wireless Penetration Assessments, Web Application Security Reviews, Physical Penetration Tests, and Social Engineering Assessments. mail.google.com/a/vandamme.com/?ui… 1/2
  • 2. 8/6/2010 NimbleUser Mail - SecureState Speakin… Currently, Andrew is a member of the Audit and Compliance Team, where he performs Enterprise Risk Assessments as well as assists in enterprise audits (PCI, HIPPA, etc). Prior to SecureState, Andrew worked at Key Bank as a Security Analyst. Andrew is a graduate of Ohio University with a BS in Computer Engineering and a minor in Mathematics. If you have any questions, please let me know. Thank you, Molly Parsons | Marketing Administrator | SecureState 216.927.8200 - office | 216.927.2801 - fax mail.google.com/a/vandamme.com/?ui… 2/2