💜 _{Hit ‘reply’ to send me a message or give me feedback!}

Hello my friends!

This month I have a lot going on, most notably I’m headed to B-sides Vancouver Island, then B-Sides Edmonton, then to OWASP Global AppSec in an Francisco, where I will speak AND host a mentoring event + a ladies coffee event. Please come see me! Also, watch this video with Izar and I to learn more about mentoring.

For Security Awareness Month (October) I am offering FREE live secure coding training (based on my first book, not my upcoming one), which you can sign up for here. Also, the security awareness month deal (I will virtually speak for your company for free, if you sit down with sales from Semgrep) is still on! You can sign up here. PS The form was broken until last week, and some people may have signed up but not been contacted. I apologize for this technical glitch. If you signed up and were not contacted please reply to this email and I will get you into the program immediately. Sorry folks!

We also had an overwhelming positive response to Cards Against AppSec, the silly party game I made for Semgrep that makes fun of cybersecurity. As a result, we plan to open source the cards so you can print your own, make it available to play for free online (Thank you OWASP, Grant, and Toby!), and make it available for order either for $ or if you attend a Semgrep demo. Stay tuned for details on how to get your own copy!

PS I launched a new free course with Semgrep Academy: Incident Response for Software Developers.

New Content!

• Semgrep Academy launched a new course: Incident Response for Software Developers. Learn for free!

• I was on Splunk’s Security Detail Podcast!

• The first episode of The Rules, with Kyle Kelly

• Semgrep Community Webinar: Collaborating with Development Teams: How to Successfully Implement and Enforce Secure Guardrails

• I did a ton of interviews with people while I was in Vegas:

  • Semgrep Interviews!

    • Drew Dennison: https://youtu.be/RZV_eCSuTl4

    • Leif Dreizler: https://youtu.be/BHPUxV22OPY

    • Bence Nagy: https://youtu.be/f5w3E3lK3e0

    • Isaac Evans: https://youtu.be/WRANBjcDDxc

    • Luke O’Malley: https://youtu.be/pIs7joxocaM

    • Milan Williams: https://youtu.be/CExWcOJCLYg

  • Influencer Interviews!

    • My good friends Ashish Rajan and Shilpi B of The Cloud Security Podcast!

    • Ayman Elsawah

    • Ross Haleliuk 

  • SquadCon Interviews!

    • Tennisha Martin (Founder of Black Girls Hack)

    • Phillip Wylie

    • Quintana Patterson

    • Santina

Events!

• Sept 16th, The Rules, with myself and Brandon Wu! Virtual, free, Semgrep rule writing, live!

• September 19th 9:00 am PST, A Perfect Partnership: Secure Coding and Threat Modeling with Chris Romeo and yours truly! For those of you who do not already know Chris Romeo, he’s AMAZING! This will be a great webinar.

• September 19th 2:00 pm PST, Semgrep Community Presents: Automating Secure Guardrails: Leveraging SAST and Other Tools for Effective Implementation, a virtual panel hosted by me, with guests Alexandra Peleg, Joe Nicastro, Heather Hinton, Laura Bellmain, Abhisek Datta!

• September 20th: B-sides Vancouver Island, my hometown conference! Come hang out with me, Semgrep Community, and all the amazing B-Sides folks. Tickets are $70, a total steal. PS I’m speaking too!

• Sept 23 & 24, I’m speaking at B-Sides Edmonton, in Edmonton Alberta! I will be there on the 23rd, but need to leave on the 24.

• Sept 26 & 27 I’m speaking at OWASP Global AppSec in SF.

• Sept 26, 7:30 am Ladies Coffee Event (open to the public) in San Francisco

• Sept 26th, Mentoring Event at OWASP Global AppSec (need a, OWASP ticket to get in). You need to register in advance, please do!

• October 11, The Rules with Kurt Boberg, an interactive Semgrep rule writing workshop, virtual, free, and live!

• October 24-25 2024, Austin, Texas, USA, Lascon, I’m excited to announce that I will be the keynote and the other keynote is HD Moore!

• Oct 30 and 31st: Free Secure Coding Training from Semgrep Community! Virtual, 2 4-hour sessions. We will cover secure coding as per “Alice and Bob Learn AppSec”, the OWASP Top Ten (2017 and 2021), Secure Design, and incident Response for Devs. Sign up here.

• November 7, 2024, online, The Elephant in AppSec Conference

• January 20-23, 2025 NDC Security in Oslo, Norway - That’s right, I’m coming to Europe!!!! Email me if I will be close and I will see if I can visit your city!

• January 2025 more events in Europe in the works!

Random Topics Go Here

A video to encourage you to become a mentor or get a mentor, specifically about the OWASP mentoring event I’m running with Amanda McCarvill and Izar Tarandach.

We end with a meme.