Web Banner
Back to Conference Home Page

Conference Schedule - 5-6 September

AppSec New Zealand Day 2024

**Presentation abstracts and speaker biographies can be found on this page.

Thursday, 5 September 2024

  Track One
Room WG403
Track Two
Room WA220
Demos/Breakouts
Room WG404
08:00 Registration Opens - Level 3 Foyer, Sir Paul Reeves Building (WG)
09:00 Delegate Lounge Opens - LEGO® Build Begins
09:15 - 10:00 Opening Session - Welcome to OWASP New Zealand Day 2024!
View: Slide Deck (PDF, 884 kB)
10:00 - 10:45 Conference Keynote - OWASP: The Next 25 Years
Andrew van der Stock - Executive Director, OWASP Foundation
View: Slide Deck (PDF, 4.8 MB)
10:50 - 11:40 Leveraging OWASP Projects and Tools to Transform Your SDLC
John DiLeo - OWASP NZ / Gallagher Security
View: Slide Deck (PDF, 1.9 MB)
Secure Your APIs the AWS Well-Architected Way
Jhalak Modi - Amazon Web Services
View: Slide Deck (PDF, 6.5 MB)
 
11:45 - 12:15 OWASP Top 10 Introduction
Austin Chamberlain - Defence Science and Technology, NZDF
View: Slide Deck (PDF, 1.8 MB)
The Windows Data Protection API
Claudio Contin - Tier Zero Security
View: Slide Deck (PDF, 8.3 MB)
 
12:15 - 13:50 Break for Lunch
13:50 - 14:20 Security is an API: Evolving to a decentralised security culture
Roger Wang - Amazon Web Services
View: Slide Deck (PDF, 4.5 MB)
Helping Elderly Activists Improve Their Security
Kris Hardy - Plexure
View: Slide Deck (PDF, 1 MB)
 
14:25 - 14:55 Dynamic Defense: Crafting threat models with real-world Intelligence
Kade Morton - Arachne Digital
View: Slide Deck (PDF, 4.5 MB)
SSRF and You
Jim Rush - PrivSec Consulting
View: Slide Deck (PDF, 15.6 MB)
Breach and Attack Simulation (BAS): Automating the validation of WAF controls
Datacom
14:55 - 15:30 Break for Afternoon Tea
15:30 - 16:00 Doing More with Less: DevSecOps on a limited budget
(Remote Presentation)
Pramod Rana - Netskope
View: Slide Deck (PDF, 891 kB)
Security in the Serverless Environment
Mahesh Pandit - Deloitte New Zealand
Longbow ASPM plus
Veracode
16:05 - 16:35 Painless Agile Security
Julian Simpson - SafeAdvisory Limited
View: Slide Deck (PDF, 866 kB)
Strategies for Identifying and Mitigating Bot Threats
David MacDonald - Amazon Web Services
View: Slide Deck (PDF, 2.3 MB)
 
16:40 - 17:00 Wrap-Up - Day 1
View: Slide Deck (PDF, 656 kB)
18:00 Delegate Lounge Closes
  Evening Activities - On Your Own

Friday, 6 September 2024

  Track One
Room WG403
Track Two
Room WA220
Demos/Breakouts
Room WG404
08:00 Registration Opens - Level 3 Foyer, Sir Paul Reeves Building (WG)
Delegate Lounge Opens
09:40 - 09:55 Welcome to OWASP New Zealand Day 2024 - Day 2
View: Slide Deck (PDF, 765 kB)
10:00 - 10:30 Keeping the Bank Happy: PCI DSS v4
Peter Jakowetz - PrivSec Consulting
View: Slide Deck (PDF, 11.5 MB)
Make Your CI More Secure and Less Spicy with SLSA
James Cooper - 2degrees
View: Slide Deck (PDF, 655 kB)
 
10:35 - 11:25 MFA: Stories that make you go 'Huh?'
David (Karit) Robinson
Jacob Hawthorne - Bastion Security Group
View: Slide Deck (PDF, 3.3 MB)
API Security: Securing GraphQL without going around in circles
Kirk Jackson - Lightspeed
View: Slide Deck (PDF, 3.0 MB)
Breach and Attack Simulation (BAS): Automating the validation of WAF controls
Datacom
11:30 - 12:00 How to run a Pentesting Engagement
Matt Tompkins
View: Slide Deck (PDF, 3.0 MB)
Jailbreaking and Securing LLM Apps: Lessons from an online wargame experiment
Pedram Hayati - SecDim
View: Slide Deck (PDF, 1.6 MB)
 
12:00 - 13:30 Break for Lunch
13:30 - 14:20 Threat Modelling: Star Wars Edition
(Remote Presentation)
Audrey Long - Microsoft
View: Slide Deck (PDF, 3.4 MB)
Securely Sending Email in 2024
Richard Gray - SMX
View: Slide Deck (PDF, 73.5 MB)
Veracode FIX - AI assisted remediation of code vulnerabilities
Veracode
14:25 - 14:55 Harnessing Generative AI: Security strategies for next-gen applications
Ratan Kumar - Amazon Web Services
Ryan Tan - Amazon Web Services
Find It, Fix It: The most common authentication flaws
Sandro Affentranger - Oneconsult AG
View: Slide Deck (PDF, 2.1 MB)
 
14:55 - 15:30 Break for Afternoon Tea
LEGO® Build Ends
15:30 - 16:00 Championing Security: The not-so-secret diary of building Visa's Security Champion program
Anastasia (Ana) Hotchin - Visa Inc
Joe Cairns - Visa Inc
Hack the Sky: Exploring satellite vulnerabilities and cyber threats
(Remote Presentation)
Shahmeer Amir - Younite
 
16:05 - 17:00 Conference Closing Session
Recognition, LEGO® Build Video, Prize Giving
View: Slide Deck (PDF, 2.9 MB)
17:15 Post-Conference Gathering
The Corner Store - 25 Mount Eden Road

Edit on GitHub