Connect Ideas Technology People

The Premier Mobile DevSecOps and OSS Event

June 3-4, 2019 | Washington, D.C.

Register Now

 
 

About NowSecure Connect

NowSecure Connect is the premier mobile DevSecOps and OSS event that brings together technologists and thought leaders with a shared passion for delivering secure mobile apps at scale. Learn from the experts and OSS creators, hear from top companies across a variety of industries, and return home with the knowledge to transform your mobile DevSecOps experience.

Take mobile app security to the next level. Share ideas and see new innovations. Join us in Washington, D.C., for hands-on training, labs, case studies, keynotes, and networking.

 
 

Countdown to NowSecure Connect 2019


Days


Hours


Min


Sec

 
 

Agenda

Monday, June 3
9:00 am – 6:00 pm

Registration Opens at 8:00 am
6:00 pm – 9:00 Party

Click Tracks for More Details

Industry OSS Track

9:00 am – Opening Remarks - David Weinstein

9:15 am – Objection: the Journey into Creating a Mobile App Hacking Toolkit - Leon Jacobs

10:15 am – Break

10:30 am – APKiD: Fast Identification of Android Appshielding Products - Eduardo Novella

11:15 am – FRIDA: Dynamic Instrumentation Toolkit - Ole André Vadla Ravnås

12:30 pm – Lunch

1:15 pm – RADARE2: The Reverse Engineering Toolkit - Sergi "Pancake" Àlvarez

2:30 pm – r2dec: Decompilation Challenges with Mobile Languages - Giovanni Dante Grazioli

3:30 pm – Break

4:00 pm – Libimobile: iOS automation, instrumentation, and other shenanigans - Nikias Bassen

5:00 pm – Capstone v5: Latest on Opensource Disassembler Framework - Nguyen Anh Quynh

NowSecure Conference Track

9:00 am – Opening Remarks - Brian Reed

9:15 am – NowSecure Workstation Masterclass - Michael Krueger

12:30 pm – Lunch

1:30 pm – NowSecure AUTO Masterclass - Brian Lawrence

3:00 pm – Open Office Hours / Break

3:30 pm – Using OWASP Guidelines & Threat Modeling for AppSec Testing - Tony Ramirez

5:00 pm – Best Practices: Pen Tester Expert Panel - Kate Bochnowski, Jordan Thomas, Michael Krueger, Tony Ramirez, Rono Dasgupta

5:45 pm – Closing Remarks

Evening Reception

6:00 pm - 9:00 pm – Cocktails, food, games, CTF (sponsored by Security Innovations)

 

Tuesday, June 4
9:00 am – 5:30 pm

Registration Opens at 8:00 am

Click Tracks for More Details

Industry OSS Track

9:00 am – Opening Remarks - David Weinstein

9:15 am – OSS Tool Developer Roundtable

10:15 am – KillerBee: Assessing IEEE 802.15.4/ZigBee Attack Surface - Ryan Speers

11:15 am – Break

11:30 am – DWARF: Bypassing the Latest Reversing Blocking Techniques - Giovanni Rocca

12:30 pm – Lunch

1:30 pm – HYGIEIA: New OSS Dashboard for Managing DevOps Performance - Rajesh Dhanaraj

2:30 pm – SEDATEDâ„ : New tool for Preventing credentials/Tokens saving in Git - Simeon Cloutier

3:30 pm – Break

4:00 pm – Lightning Talks

5:00 pm – Closing Remarks

NowSecure Conference Track

9:00 am – Opening Keynote - Alan Snyder, NowSecure

9:30 am – Case Study: Secure by Design - Ethan Wilder, Allstate

10:20 am – Case Study: Automating Mobile AST in the CI/CD Process - Joseph Vinikoor, American Express

11:10 am – Break

11:30 am – NowSecure Product Strategy - Warren Smith, NowSecure, & Jeff Fairman, NowSecure

12:30 pm – Lunch

1:30 pm – DevSecOps Industry Panel

2:20 pm – Case Study: Transforming DevOps Securely - Sean Poris, Verizon Media

3:10 pm – Break

3:30 pm – Fireside Chat: Building & Certifying High Security Commercial Messaging App - Avi Elkoni, Vaporstream

4:00 pm – Case Study: Accelerating Release Velocity with Security - Michael Cantor, SAIC, & Victor Jereza, SAIC

4:30 pm – Fireside Chat: Digital Transformation

5:00 pm – Closing Remarks

NowSecure Federal Track

9:00 am – Opening Keynote (with Conference Track) - Alan Snyder, NowSecure

9:30 am – Transition to Federal Track Room

9:35 am – Lessons Learned: Measuring & Managing Mobile App Risk

10:05 am – Breakout: Mobile Threat Assessment Scoring & Weighting

11:00 am – Break

11:15 am – Demo: Mobile CDM in Action

11:30 am – Lightning Talk: Scaling app vetting from 125 to 16,000 apps

11:45 am – Lightning talk: App Vetting & RMF

12:00 pm – Lunch

1:30 pm – NIAP Compliance & Path to continuous ATO

2:00 pm – Lightning talk: Building & Deploying NIAP Compliant Apps at Scale

2:15 pm – Scaling mobile appsec testing with automation and full coverage

2:45 pm – Scaling mobile appsec reporting

3:15 pm – Federal Track Wrap Up

4:00 pm – Rejoin Conference Track

 
 

Speakers

Sergi Pancake Alvarez

Sergi "Pancake" Àlvarez
Author, Radare

Ole Andre Vadla Ravnas

Ole André Vadla Ravnås
Author, Frida

Nguyen Anh Quynh

Nguyen Anh Quynh
Author, Capstone

Simeon Cloutier

Simeon Cloutier
Co-Creator, SEDATEDâ„ 

Joseph Vinikoor

Joseph Vinikoor
Director of AppSec, American Express

Sean Poris

Sean Poris
Director, Product Security and Assurance, Verizon Media

Michael Cantor

Michael Cantor
Security Analyst, SAIC

Victor Jereza

Victor Jereza
Information Security Analyst, SAIC

Ethan Wilder

Ethan Wilder
Senior Manager of Application & Product Security, Allstate

Avi Elkoni

Avi Elkoni
COO/CTO, Vaporstream

Leon Jacobs

Leon Jacobs
Author, Objection

Ryan Speers

Ryan Speers
Author, KillerBee

Eduardo Novella

Eduardo Novella
Contributor, APKiD

Nikias Bassen

Nikias Bassen
Author, Libimobile

Giovanni Rocca

Giovanni Rocca
Author, DWARF

Giovanni Grazioli

Giovanni Grazioli
Author, r2dec

Rajesh Dhanaraj

Rajesh Dhanaraj
Senior Manager, Hygieia External Product Manager, Capital One

Derek Weeks

Derek Weeks
Vice President, Sonatype

Ed Adams

Ed Adams
CEO, Security Innovations

Syed Abdur

Syed Abdur
Director of Products, Brinqa

Alan Snyder

Alan Snyder
CEO, NowSecure

Andrew Hoog

Andrew Hoog
Founder, NowSecure

David Weinstein

David Weinstein
CTO, NowSecure

Jeff Fairman

Jeff Fairman
SVP Engineering, NowSecure

Warren Smith

Warren Smith
VP Product, NowSecure

Katie Bochnowski

Katie Bochnowski
VP Customer Success & Services, NowSecure

Jordan Thomas

Jordan Thomas
Director of Customer Solutions, NowSecure

Michael Krueger

Michael Krueger
Senior Mobile Security Analyst, NowSecure

Tony Ramirez

Tony Ramirez
Mobile Security Analyst, NowSecure

Rono Dasgupta

Rono Dasgupta
Mobile Security Analyst, NowSecure

Francesco Tamagni

Francesco Tamagni
Security Researcher, NowSecure

Ioannis Gasparis

Ioannis Gasparis
Security Researcher, NowSecure

Brian Lawrence

Brian Lawrence
Solutions Engineering Manager, NowSecure

 
 
 
 
 

Sponsors

 

Venue

Kaiser Permanente Center for Total Health
700 Second St. NE
Washington, DC 20002

Plan Your Visit

 

Transportation

Directions

Kaiser Permanente encourages guests of the Center for Total Health to consider using public transportation or active forms of transportation in support of your total health. Additionally, parking is not available at the Center for Total Health, so those options may save you the headache of parking in downtown DC.

Airport Transportation

We recommend flying into Ronald Reagan Washington National Airport (DCA), then riding the Metro to Union Station. See “Public Transportation” for details from Union Station.

If you are flying into Baltimore/Washington International Thurgood Marshall Airport (BWI), there is a shuttle outside baggage claim to take you to the BWI Marshall MARC/Amtrak station. After purchasing a ticket for the MARC train, you will need to use the elevator (or stairs) to cross the tracks and take the MARC train directly to Union Station. See "Public Transportation" for details from Union Station.

If you are flying into Washington Dulles Airport (IAD), take the Silver Line Express Bus to the Wiehle-Reston East Metro Station. Hop on the Metro's Silver Line, transfer at Metro Center Station to the Metro's Red Line, and take that all the way to Union Station. See "Public Transportation" for details from Union Station.

Public Transportation

The Center for Total Health is a short walk from Union Station, accessible by Metro (Red Line), Amtrak, VRE, and MARC trains. There are two ways to get from Union Station to the Center for Total Health.

Inside

In Union Station, walk to the end of the Amtrak Gates (Gate L), and turn left to walk through the double glass doors. Follow the tunnel to the end, then turn right and take the elevators down to LL.

Step out of the elevator, and turn left. Follow the hallway to the Kaiser Permanente entrance (it will be on your right). Our security guards will be happy to direct you to the Center for Total Health.

Outside

Walk toward the Thurgood Marshall Court Building at the East end of Union Station. Take a left onto Columbus Circle Northeast. You will see a Capitol Bikeshare station and the Securities and Exchange Commission as soon as you turn left.

Follow Columbus Circle as it becomes F Street. At the next intersection (F Street NE and 2nd Street NE), turn left onto 2nd Street NE. Follow 2nd Street about 2 blocks to the farthest of three entrances to 700 2nd Street, with the Capital Bikeshare station at the front door.

Bike & Walking

The Center for Total Health is located on the southern end of the Metropolitan Branch Trail, making it a bike and pedestrian friendly spot! There are several bike racks outside of the Center for Total Health should you want to ride your own bike to see us. There is also a Capital Bikeshare station at our front door for folks using that system.

Driving

There is no parking onsite at the Center for Total Health. There are several nearby public garages, including directly across the street at 701 2nd Street NE. Union Station also has a large parking garage. Metered street parking is available in the neighborhood, though like most urban areas it can be difficult to find an open spot.

Hotels

Provided below is a brief list of hotels within walking distance or a short ride to the event.

*official event hotel room block detail with registration confirmation

Things to Do in DC

Smithsonian Museum of Natural History

The museum is located on the national mall and is free to explore. Check out a wide array of exhibits that contain some of the most famous artifacts in the world.

Monuments & Memorials

Spy Museum

With interactive exhibitions and state-of-the-art installations, the foremost collection of spy artifacts in the world, and first-person accounts from top intelligence officers and experts, the new museum places visitors in the shoes of the spies, agents, analysts and world leaders who make life-and-death decisions.
 

Frequently Asked Questions

 

What is the cost to attend the event?
There is no charge to attend the 2 day event. NowSecure is providing space, content and meals onsite. Attendees will need to fund their own travel, transportation, hotel and other expenses.

Are meals provided?
Yes, some meals are provided. Lunch each day, plus all day snacks and drinks (coffee/tea/water/soda) will be provided on both days. The Monday night reception includes games, food and drinks. Note, breakfast is not included.

What about special dietary requirements?
When registering for the event, list any dietary restrictions.

What is the best transportation option to get to the Kaiser event center?
METRO or AMTRAK to Union Station is easiest access, adjacent parking available as well. Uber/Cab would work as well.

What is the closest airport?
The Reagan National Airport (DCA) is a 10-15 minute Uber/Cab ride to the Kaiser Permanente event center. Note IAD and BWI airports are 60+ minutes away and only partially serviced by public transit.

How long is the walk from Union Station?
The Kaiser Permanente event center is a short 5 minute walk from Union Station.

Is there parking on site?
The Kaiser Permanente event center has parking directly across the street at the Station House Parking Garage with address: 701 2nd Street NE, Washington DC 20002.

Do I have to pay to park?
Yes, it is $13-$15 per day.

Can more than 1 person from my company attend at no cost?
Yes. No attendee will be charged. But all attendees must be pre-registered.

When does registration close?
Registration will close on May 22 or when the event has achieved max capacity. We recommend signing up as soon as possible. NowSecure will maintain a waiting list if we hit max capacity and will inform waiting list 5 days in advance.

What about hotel block?
You will receive the room block information in the registration confirmation email. There is also a Hyatt Regency and a Kimpton hotel within walking distance to the event.

Is the site handicap accessible?
Yes, it is.

Do I have to register for both days?
We recommend attending both days but you can choose 1 day or both.

Can I register for both tracks?
Yes, register for the content you are most interested in so we can be sure we have space allocated correctly.

Will there be a government track?
Yes, there will be government specific tracks on both days.

Will there be internet access?
Yes, there will be free dedicated wifi throughout the event space.

Do I need to bring equipment?
Any attendee that wants to participate in any of the “hands on” training exercises on day 1 and the hackathon on day 2 should bring their own laptop, jailbroken and rooted devices. For those who register for any of the training sessions will be sent a pre-event information email with all specific details.

Will I get a confirmation?
Once registered a confirmation email will be sent.

Will I get a reminder?
Two weeks before the event a reminder email with detailed information will be sent out to all registrants.

What if I didn’t get a confirmation email?
Send an email to connect@nowsecure.com

Who do I contact if I have questions or issues?
See above email.

What if I need to cancel?
See above email.