Loading…
This event has ended. View the official site or create your own event → Check it out
This event has ended. Create your own
Welcome to BSidesLV 2016, our 8th annual BSides in beautiful Las Vegas, Nevada!
View analytic
Tuesday, August 2 • 11:00 - 11:45
Managing Security with the OWASP Assimilation Project.

Sign up or log in to save this to your schedule and see who's attending!

IT shops have trouble reliably doing the basics well: 30% of all break-ins come through systems not in inventory, 30% of servers are doing nothing useful, getting systems hardened is difficult, 70% of people who get into compliance with PCI-DSS aren’t in compliance a year later, remediation of known serious patches happens slowly if at all, 90% of all sites have suffered from outages of services which aren’t monitored, and keeping a suite of helpful tools correctly configured over time is time-consuming and expensive. Then of course, there’s the problem of demonstrating to upper management that you’re actually making progress against a formidable task. These are the problems the OWASP Assimilation project addresses.

It compares security configuration against best practices, keeps network-facing checksums up to date, provides attack surface visualization, alerts on many kinds of events, and also improves availability through monitoring systems and services.

This talk will give an overview of the project and a live demo.

Speakers
avatar for Alan Robertson

Alan Robertson

CTO, Assimilation Systems
Professional: Continuous Compliance, Availability, Scalability, Monitoring, Integrity, Business Resilience, open source, OWASP Assimilation Project, | | I founded the open source Linux-HA/Pacemaker project, the OWASP Assimilation Project, and the IT Best Practice project.


Tuesday August 2, 2016 11:00 - 11:45
Breaking Ground Florentine A