Home
Program
Partnership
Accommodations
Sponsorship
eNewsroom
Registration
 
Tom Brennan, CISSP, CISM, NSA, C|EH
OWASP Foundation Global Board Member
 
Blake Cornell
Board Member, OWASP, New York/New Jersey Metro Chapter
 

Tom Brennan CISSP, CISM, NSA, C|EH has over a decade of cross-platform experiences with testing the effectiveness of an organization's ability to protect assets by attempting to circumvent, defeat or otherwise thwart that organization's internal and external security (Full-Scope Pentesting). He is an employee of WhiteHat Security (www.whitehatsec.com) and Global Board Member for OWASP Foundation (www.owasp.org). Tom served with the United States Marine Corps and has had INFOSEC assignments with both US Federal Government Agencies, Financial Services, Manufacturing and Retail clients protecting critical infrastructure.

Blake Cornell has been an IT innovator and developer with over 12 years experience in software and security. He has consulted Fortune 500 companies and various law enforcement agencies with hopes of utilizing technology to ease real world issues. He currently has vested interests in a few companies providing network and application security as well as VoIP telephony. His latest endeavor, Remote Origin, Inc. is proud to offer the first to market software telephone utilizing centralized administration mechanisms with Asterisk. His personal project, Security Scraper, is currently harvesting over 500 computer security related records daily which he uses to track trends within the security industry. He is a proud member and supporter of InfraGard, a partnership between the Federal Bureau of Investigation and the private sector, and OWASP.

Mr. Brennan and Mr. Cornell will discuss UNDERSTANDING WEB APPLICATION SECURITY THREATS, RESOURCES AND MITIGATION OPTIONS. The Open Web Application Security Project (OWASP) is an open community dedicated to enabling organizations to develop, purchase, and maintain applications that can be trusted. All of the OWASP tools, documents, forums, and chapters are free and open to anyone interested in improving application security. We advocate approaching application security as a people, process and technology problem because the most effective approaches to application security include improvements in all of these areas.