Join for free and connect with our local tech scene

Stay on top of the latest companies and upcoming events with our weekly newsletter, and be counted among the people building the future of your local tech community.

Charlotte, NC /

Building an AppSec Program with a Budget of $0: Beyond the OWASP Top 10

Microsoft 8050 Microsoft Way , Charlotte, NC 28273 (map)


Explore the OWASP universe and how to build an application security program with a budget of $0. Experience a practitioner's guide for how to take the most famous OWASP projects and meld them together into a working program. Projects are broken down into training/ awareness, process/measurement, and tools, with an explanation of the human resources required to make each successful. From the OWASP Top 10 to JuiceShop to Application Security Verification Standard, you will gain a roadmap to all the things in the OWASP universe that can be used to build a program. You will also gain first-hand experience and advice on how to connect these different projects into a plan that works for your organization.


Chris Romeo is CEO and co-founder of Security Journey where he creates security culture influencing training, consults, and speaks. His passion is to bring security culture change to all organizations large and small through the creation and design of gamified security training. He was the Chief Security Advocate at Cisco for five years, where he empowered engineers to shift security left in all products at Cisco and led the creation of Cisco’s security belt program. Chris has twenty years of experience in security, holding positions across the gamut, including application security, penetration testing, and incident response. Chris holds the CISSP and CSSLP certifications. For more information, see

Things to Know:

- CPE credits will credited for those who possess certifications that require it.

- Security food is usually defined as pizza and wings.

- Please arrive a little early for Meet and Greet if you are able.

- We are a resource, leverage us a such.

- Trial and error is how we did it; will give you a head-start. Just ask.

Tentative Agenda:

6:00 - 6:30 Meet and Greet

6:30 - 6:45 OWASP Chapter Meeting Announcements

6:45- 7:00 Fire Talks

7:00 - 7:45 Presentation (Speaker)

7:45 - 8.00: Q & A session

8:00 - 8:15 Closing Remarks and Dismissal

Submitted by

Gravatar Jon Molesa


Sign in to comment.