Merge pull request devopsdays#226 from steinim/oslo-2016

New proposal for Oslo 2016

content/events/2016-oslo/proposals/Non-functional_Testing_of_Web_Applications_in_Financial.md

@@ -0,0 +1,13 @@
++++
+date = "2016-05-04T12:14:21-07:00"
+type = "talk"
+title = "Non-functional Testing of Web Applications in Financial Services"
++++
+
+**Abstract:**
+This talk will guide you through practical aspects of the non-functional verification phase of the secure development life cycle process used in EVRY from information security perspective. Key features of security testing methodology based on OWASP Application Security Verification Standard (ASVS) used within the company, particularly in Financial Services, as well as their correlation with PCI DSS are considered in the presentation. A transition from the theoretical methodologies and processes to real world scenarios will be shown on the real examples.
+
+**Speaker:**
+In 2014 Oleksandr Kazymyrov got a PhD and Candidate of Engineering Sciences degree within information security from the University of Bergen and KNURE, respectively. He is a member of the non-functional test department in Financial Services at EVRY; a penetration tester holding CEH (Certified Ethical Hacker) and CES (Certified Encryption Specialist) certificates; a co-author of the Ukrainian standards of block cipher and hash function (DSTU 7624:2014 and DSTU 7564:2014).
+
+