Architecting Secure Web Systems
July 12, 2012
Speaker: Josh Sokol, Information Security Program Owner at National Instruments
In this session we delve into the process of architecting a secure web application from the ground up. We'll start with some basic n-tier architecture (web vs. app vs. DB), throw in some firewall and DMZ concepts, and then talk about server hardening with client firewalls (iptables), disabling services, and other techniques. Whether you're a code monkey wondering how the rest of the world works, an infrastructure person trying to assemble the pieces securely, or a manager responsible for secure web applications, this presentation is for you.
About the Speaker:
Josh Sokol, CISSP, graduated from the University of Texas at Austin with a BS in Computer Science in 2002. Since that time, he has worked for several large companies including AMD and BearingPoint, spent some time as a military contractor, and is currently employed as the Information Security Program Owner at National Instruments. In his current role, Josh manages all compliance, security architecture, risk management, and vulnerability management activities for NI. Josh is the President of the Austin OWASP Chapter and is very active in the local security community. He has spoken on dozens of security topics at conferences across the country.