Meet the Experts - tools, tips and tactics from technical experts who are working to align software, security and operations resources so organizations can innovate faster with less risk.

Register for All Sessions - you don’t want to miss out on the variety of topics, customer case studies, and product sneak-peeks!

Click any event listing to view its details.

Can't attend live? No worries, be sure to register and we’ll send you a recording.

February 21 | 11-11:30 AM ET - February TechTalk: OWASP MASVS V2 Updates

How do you ensure your mobile app is properly secured? What are the threats you should be concerned with and what can you do to ensure a minimum bar of security is met?

The adoption of standards and standards-based testing is critical to identifying the most critical issues in your mobile app. Join this NowSecure Tech Talk with Carlos Holguera, OWASP MSTG and MASVS project leader, to learn about the changes introduced to the OWASP MASVS (Mobile Application Security Verification Standard) in Version 2.0.0, the biggest update to the standard in 7 years. Learn about the refactoring process and discuss the changes designed to streamline the standard to make it as easy, accessible and comprehensive as possible.

Carlos Holguera.png
Carlos Holguera
Project Leader
OWASP MSTG and MASVS

Brendan Hann.png
Brendan Hann
Senior Product Marketing Manager
NowSecure


March 14 | 11-11:30 AM ET - March TechTalk: Where Mobile Meets Medical

Mobile apps have become integral to modern healthcare, helping individuals and medical teams manage complex health conditions and improve quality of life. From Mobile Health (mHealth) apps, to the primary UIs for medical systems, to full control over safety-critical devices, these apps impact everyone in some way and ensuring they are secure can be a life or death situation.

NowSecure is excited to have an expert in medical device cybersecurity from our customer community, Garrett Schumacher, join us to share:

  • Ways in which mobile apps are used in medicine
  • How to effectively right-size mitigations for your use case
  • What types of challenges are seen when verifying the effectiveness of those controls
  • Impacts recent legislation are having on requirements across the healthcare industry

Along with being Cybersecurity Team Lead & Senior Staff Engineer at Velentium, Garrett is also co-founder of GeneInfoSec Inc, and an Adjunct Instructor at University of Colorado Boulder, where he teaches a graduate course in Embedded Cybersecurity and Secure Product Development.

Garrett Schumacher
Garrett Schumacher
​​Cybersecurity Team Lead &
Senior Staff Engineer
Velentium

Brendan Hann.png
Brendan Hann
Senior Product Marketing Manager
NowSecure


April 18 | 11-11:30 AM ET - April TechTalk: Security Best Practices When Using AI To Write Code

 AI tools like ChatGPT and GitHub CoPilot are all the rage - but how secure is AI-generated code? In this session, Jason Michael Perry, CTO of Mindgrub, will help you develop good habits when using these tools and provide tricks to catch potentially insecure code before deployment. After all, sanitizing your input values is always essential.

In this session, we’ll cover the following:

  • Take a peek at the various AI development tools and discuss their pros and cons
  • Learn what to look for in generated code and common security mistakes that these tools make
  • Use AI to correctly phrase requests and learn tricks to have AI write code in a more secure way
  • Implement solutions that keep checks and balances in place that prevent insecure or poorly written code from being merged

Jason M. Perry
Jason Michael Perry
​​Chief Technology Officer
Mindgrub

Brendan Hann.png
Brendan Hann
Senior Product Marketing Manager
NowSecure



May 16 | 11-11:30 AM ET - May TechTalk: Adventures in Exploiting WebViews for Android Attacks

Many mobile apps use WebViews to load and display web content directly within the app. However, WebViews expand the threat vector and attackers can exploit them to steal user credentials or launch phishing campaigns.

NowSecure Senior Mobile Application Penetration Tester David Mockler will lead a hands-on tutorial on exploiting WebViews using the Frida dynamic instrumentation toolkit. 

This session will cover the following:
  • How to analyze a common Android WebView implementation to pinpoint vulnerabilities
  • What common mobile pen testing tools you need to test the sample app
  • How to exploit WebViews performing URL redirect, cross-site scripting and code execution

david mockler
​​David Mockler
​​Senior Mobile Application
Penetration Tester
NowSecure

Brendan Hann.png
Brendan Hann
Senior Product Marketing Manager
NowSecure


June 13 | 11-11:30 AM ET - June TechTalk: How to Build a Simple Mobile App With GitHub Copilot

2023 may be the year of sophisticated language model systems and assisted programming, but what does that mean for developer productivity and the future of mobile development?

In this Tech Talk, Andrew Hoog and Kevin Lewis will demo the power of AI copilots like GitHub Copilot, while sharing their observations, including:

  • What GitHub Copilot can and cannot do well
  • iOS + Android GitHub Copilot experiences
  • Suggestions for using GitHub Copilot today for mobile development

This will be an interactive session with live Q&A

andrew hoog
​​Andrew Hoog
​​Co-founder
NowSecure

Kevin Lewis
Kevin Lewis
Solutions Engineer
NowSecure



July 11 | 11-11:30 AM ET - July TechTalk: Updates You Need to Know for the MITRE ATT&CK for Mobile Framework

Mobile devices are ubiquitous, presenting a unique attack surface for adversaries targeting the user and enterprise alike. How can I understand how adversaries are targeting my personal and/or enterprise devices? What defenses should I prioritize to protect my devices? Starting in 2017, the ATT&CK framework was expanded into the mobile domain to address these questions and more.

Join Jason Ajmo, ATT&CK for Mobile lead at The MITRE Corporation, to learn about ATT&CK for Mobile’s background, recent updates to the knowledge base, and how you can contribute and get involved.

Jason Ajmo
​​Jason Ajmo
​​Lead Cybersecurity Engineer
MITRE

Brendan Hann.png
Brendan Hann
Senior Product Marketing Manager
NowSecure


August 15 | 11-11:30 AM ET - August TechTalk: Black Hat + DefCon + SquadCon - RoadTrip Roundup

As the masses descend on Vegas in early August for the annual cyber pilgrimage, NowSecure experts are headed there in force to carry the torch for the mobile appsec community. Join us for a team debrief discussion on all things mobile appsec from Black Hat 2023, DefCon 31 and SquadCon.

From BH Briefings & Trainings to Frida Meetup to SquadCon CTF to DefCon AppSec Village and more, there will be tons to learn about and more resources to share!

Brendan Hann.png
Brendan Hann
Senior Product Marketing Manager
NowSecure


September 26 | 11-11:30 AM ET - September TechTalk: Intro to Game Hacking with Frida

Have you ever wondered how to reverse a mobile video game app with Frida? In this Tech Talk, Chase Abel will walk through the process of reverse engineering a mobile Blackjack app so you can peek inside how they work! The techniques discussed in this presentation will teach you how leverage Frida step by step to manipulate a mobile apps’ intended behaviors.

Chase Abel
Chase Abel
​​Mobile Security Researcher
NowSecure

Brendan Hann.png
Brendan Hann
Senior Product Marketing Manager
NowSecure

Lorem ipsum dolor sit amet
Ut enim ad minim veniam,

Lorem ipsum dolor sit amet, consectetur adipiscing elit, sed do eiusmod tempor incididunt ut labore et dolore magna aliqua. Ut enim ad minim veniam, quis nostrud exercitation ullamco laboris nisi ut aliquip ex ea commodo consequat. Lorem ipsum dolor sit amet, consectetur adipiscing elit, sed do eiusmod tempor incididunt ut labore et dolore magna aliqua. Ut enim ad minim veniam, quis nostrud exercitation ullamco laboris nisi ut aliquip ex ea commodo consequat.


FirstName LastName
Title
Company


FirstName LastName
Title
Company


Register Here