[Drupal] Drupal Security Meetup Oct 23

Little, Jason little.129 at osu.edu
Mon Oct 6 17:12:47 EDT 2014 

All,

This month's Drupal meetup will focus on Security and occur on Thursday October 23rd at 3pm (location TBD).

We're delaying the meetup (normally second thursday) so that it will occur a little closer to the OCIO's Cyber Security Day conference (Oct 30, see below).

I'm looking for individuals to do short presentations (5-15 minutes) on Drupal specific security related topics. If anyone is interested in presenting, shoot me an email with the topic and I'll make sure there's no duplicates.

If you're interested in presenting but can't think of anything, below are some suggested topics.

  *   Discuss modules or or processes that help solve the new OSU Information Security Control Requirements.
  *   Or discuss the ISCR requirements in general with respect to Drupal.
  *   Audit Drupal core updates at OSU (in aggregate) (hint: /CHANGELOG.txt)
  *   Review a security related module.
  *   Demonstrate static analysis tools like coder and pareview.sh.
  *   Review past Drupal exploits and/or security reporting procedures.
  *   Demo hacking a Drupal site.
  *   Scanning tool demos.
  *   Discuss common Drupal configuration issues.
  *   Your topic here

Best,
Jason Little
Engineering Web Services

________________________________
From: DISTCONS [distcons-bounces at lists.osu.edu] on behalf of Patton, Helen E. [patton.91 at osu.edu]
Sent: Saturday, October 04, 2014 1:56 PM
To: distcons at lists.osu.edu; _OSU Security - IT Liaisons; osu-security-secwog at lists.osu.edu; appdev at lists.osu.edu
Subject: [DISTCONS] You're Invited: Cyber Security Day


You are cordially invited to attend the third annual Cyber Security Day conference at the Ohio Union on Thursday, October 30, 2014. The event begins with my keynote presentation, the "Security Year in Review", which should be interesting for technical as well as non-technical attendees. The rest of the day will continue with two different technical tracks: one for Microsoft Windows system administrators and one for application developers. The individual sessions in the tracks have been selected to help administrators and developers protect their systems and data using Ohio State’s new Information Security Standard.



By attending Cyber Security Day, you will:



·         learn about the Information Security Standard (ISS)

·         learn about software tools for security

·         learn how to avoid application security flaws

·         capitalize on no-cost security training

·         Earn up to six CEUs

·         Peer networking opportunity



Who should attend?



·         IT and Security Professionals

·         Microsoft Windows system administrators

·         Application developers



The conference is open to all employees from The Ohio State University and the Wexner Medical Center. There is no cost to attend.



For more information about the conference, including a link to the registration site, please visit https://go.osu.edu/cybersecurityday



I’m looking forward to see you there.



Best regards,

Helen Patton
[The Ohio State University]
Helen Patton, CISA, CRISC
Chief Information Security Officer
Enterprise Security
304 Thompson Library, 1858 Neil Avenue, Columbus, OH 43210
(614) 292-7831 Office
patton.91 at osu.edu<mailto:patton.91 at osu.edu>  @OSUCISOHelen


-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://lists.osu.edu/pipermail/drupal/attachments/20141006/2965ae40/attachment.html>

More information about the Drupal mailing list