Conference Schedule - 5-6 September
AppSec New Zealand Day 2024
**Presentation abstracts and speaker biographies can be found on this page.
Thursday, 5 September 2024
Track One
Room WG403 |
Track Two
Room WA220 |
Demos/Breakouts
Room WG404 |
||
08:00 | Registration Opens - Level 3 Foyer, Sir Paul Reeves Building (WG) | |||
09:00 | Delegate Lounge Opens - LEGO® Build Begins | |||
09:15 - 10:00 | Opening Session - Welcome to OWASP New Zealand Day 2024! View: Slide Deck (PDF, 884 kB) |
|||
10:00 - 10:45 | Conference Keynote - OWASP: The Next 25 Years
Andrew van der Stock - Executive Director, OWASP Foundation View: Slide Deck (PDF, 4.8 MB) |
|||
10:50 - 11:40 |
Leveraging OWASP Projects and Tools to Transform Your SDLC
John DiLeo - OWASP NZ / Gallagher Security View: Slide Deck (PDF, 1.9 MB) |
Secure Your APIs the AWS Well-Architected Way
Jhalak Modi - Amazon Web Services View: Slide Deck (PDF, 6.5 MB) |
||
11:45 - 12:15 |
OWASP Top 10 Introduction
Austin Chamberlain - Defence Science and Technology, NZDF View: Slide Deck (PDF, 1.8 MB) |
The Windows Data Protection API
Claudio Contin - Tier Zero Security View: Slide Deck (PDF, 8.3 MB) |
||
12:15 - 13:50 | Break for Lunch | |||
13:50 - 14:20 |
Security is an API: Evolving to a decentralised security culture
Roger Wang - Amazon Web Services View: Slide Deck (PDF, 4.5 MB) |
Helping Elderly Activists Improve Their Security
Kris Hardy - Plexure View: Slide Deck (PDF, 1 MB) |
||
14:25 - 14:55 |
Dynamic Defense: Crafting threat models with real-world Intelligence
Kade Morton - Arachne Digital View: Slide Deck (PDF, 4.5 MB) |
SSRF and You
Jim Rush - PrivSec Consulting View: Slide Deck (PDF, 15.6 MB) |
Breach and Attack Simulation (BAS): Automating the validation of WAF controls
Datacom |
|
14:55 - 15:30 | Break for Afternoon Tea | |||
15:30 - 16:00 |
Doing More with Less: DevSecOps on a limited budget
(Remote Presentation) Pramod Rana - Netskope View: Slide Deck (PDF, 891 kB) |
Security in the Serverless Environment
Mahesh Pandit - Deloitte New Zealand |
Longbow ASPM plus
Veracode |
|
16:05 - 16:35 |
Painless Agile Security
Julian Simpson - SafeAdvisory Limited View: Slide Deck (PDF, 866 kB) |
Strategies for Identifying and Mitigating Bot Threats
David MacDonald - Amazon Web Services View: Slide Deck (PDF, 2.3 MB) |
||
16:40 - 17:00 | Wrap-Up - Day 1 View: Slide Deck (PDF, 656 kB) |
|||
18:00 | Delegate Lounge Closes | |||
Evening Activities - On Your Own |
Friday, 6 September 2024
Track One
Room WG403 |
Track Two
Room WA220 |
Demos/Breakouts
Room WG404 |
||
08:00 | Registration Opens - Level 3 Foyer, Sir Paul Reeves Building (WG)
Delegate Lounge Opens |
|||
09:40 - 09:55 | Welcome to OWASP New Zealand Day 2024 - Day 2 View: Slide Deck (PDF, 765 kB) |
|||
10:00 - 10:30 |
Keeping the Bank Happy: PCI DSS v4
Peter Jakowetz - PrivSec Consulting View: Slide Deck (PDF, 11.5 MB) |
Make Your CI More Secure and Less Spicy with SLSA
James Cooper - 2degrees View: Slide Deck (PDF, 655 kB) |
||
10:35 - 11:25 |
MFA: Stories that make you go 'Huh?'
David (Karit) Robinson Jacob Hawthorne - Bastion Security Group View: Slide Deck (PDF, 3.3 MB) |
API Security: Securing GraphQL without going around in circles
Kirk Jackson - Lightspeed View: Slide Deck (PDF, 3.0 MB) |
Breach and Attack Simulation (BAS): Automating the validation of WAF controls
Datacom |
|
11:30 - 12:00 |
How to run a Pentesting Engagement
Matt Tompkins View: Slide Deck (PDF, 3.0 MB) |
Jailbreaking and Securing LLM Apps: Lessons from an online wargame experiment
Pedram Hayati - SecDim View: Slide Deck (PDF, 1.6 MB) |
||
12:00 - 13:30 | Break for Lunch | |||
13:30 - 14:20 |
Threat Modelling: Star Wars Edition
(Remote Presentation) Audrey Long - Microsoft View: Slide Deck (PDF, 3.4 MB) |
Securely Sending Email in 2024
Richard Gray - SMX View: Slide Deck (PDF, 73.5 MB) |
Veracode FIX - AI assisted remediation of code vulnerabilities
Veracode |
|
14:25 - 14:55 |
Harnessing Generative AI: Security strategies for next-gen applications
Ratan Kumar - Amazon Web Services Ryan Tan - Amazon Web Services |
Find It, Fix It: The most common authentication flaws
Sandro Affentranger - Oneconsult AG View: Slide Deck (PDF, 2.1 MB) |
||
14:55 - 15:30 | Break for Afternoon Tea
LEGO® Build Ends |
|||
15:30 - 16:00 |
Championing Security: The not-so-secret diary of building Visa's Security Champion program
Anastasia (Ana) Hotchin - Visa Inc Joe Cairns - Visa Inc |
Hack the Sky: Exploring satellite vulnerabilities and cyber threats
(Remote Presentation) Shahmeer Amir - Younite |
||
16:05 - 17:00 | Conference Closing Session
Recognition, LEGO® Build Video, Prize Giving View: Slide Deck (PDF, 2.9 MB) |
|||
17:15 | Post-Conference Gathering
The Corner Store - 25 Mount Eden Road |