Hi [[ session.user.profile.firstName ]]

5 Mobile App Security MUST-DOs in 2018

To close out the 2017 webinar season, our mobile security expert panel will review the top mobile threats of 2017 (e.g., Cloudbleed, Bootstomp, Broadpwn, and more) and then debate what’s next in mobile app security and mobile app security testing for 2018. Join us for a spirited discussion of the security ramifications of the new iPhone X, iOS 11, Android 8, the latest innovations in the mobile app security testing, and more. Compare your mobile app security and mobile app security testing initiatives with what our experts say should be your top priorities in 2018.

Live attendees will be entered to win a free mobile app security assessment!
Recorded Dec 5 2017 48 mins
Your place is confirmed,
we'll send you email reminders
Presented by
Andrew Hoog (Founder) // Katie Strzempka (VP of Customer Success & Services) // Brian Reed (Chief Mobility Officer)
Presentation preview: 5 Mobile App Security MUST-DOs in 2018

Network with like-minded attendees

  • [[ session.user.profile.displayName ]]
    Add a photo
    • [[ session.user.profile.displayName ]]
    • [[ session.user.profile.jobTitle ]]
    • [[ session.user.profile.companyName ]]
    • [[ userProfileTemplateHelper.getLocation(session.user.profile) ]]
  • [[ card.displayName ]]
    • [[ card.displayName ]]
    • [[ card.jobTitle ]]
    • [[ card.companyName ]]
    • [[ userProfileTemplateHelper.getLocation(card) ]]
  • Channel
  • Channel profile
  • A Risk-Based Mobile App Security Testing Strategy Recorded: Sep 19 2018 55 mins
    Brian Reed (CMO), Chris Cimaglia (Mobile App Security Advocate)
    With 4 million public apps and millions more enterprise apps developed internally, not all Android and iOS apps are created equally. Some mobile apps simply publish information, some have sensitive data and others contain trade secrets. Given the volume and velocity of mobile apps, there simply aren’t enough resources to test them all in the same manner. There has to be a better way.

    NowSecure will introduce a new framework to help organizations craft a Risk-Based Mobile App Security Testing strategy. Join us for a webinar to gain practical insights, including the following:


    + The five components of risk-based testing
    + A decision grid for adjusting the depth and frequency of testing
    + How automated testing tools streamline management of the mobile app portfolio
  • Android P Security Updates: What You Need to Know Recorded: Aug 23 2018 54 mins
    Tony Ramirez, Mobile Security Analyst // Brian Reed, CMO
    2018 seems to be the year of privacy updates for both iOS and Android. In this webinar, Mobile Security Analyst Tony Ramirez will take a deeper look at security updates for Android, including:
    + Learnings from Android 8 (Oreo)
    + What to expect for Android P
    + How these enhancements affect mobile app security
  • iOS 12 Preview - What You Need To Know Recorded: Jun 12 2018 54 mins
    Tony Ramirez (Mobile Security Analyst), Brian Reed (CMO)
    Much of the improvements for iOS 12 focused on security and reliability. What prompted these changes and how will it affect the path forward? Join our discussion on Tuesday as Tony Ramirez, Mobile Security Analyst, shares about the following:

    + Learnings & remediations from iOS 11
    + Predictions coming out of WWDC
    + How we see the newest software update, iOS 12, affecting mobile app security testing
  • 5 Tips for Agile Mobile App Security Testing Recorded: Mar 21 2018 54 mins
    Brian Reed (Chief Mobility Officer) // Alex Wishkoski (Director of Product)
    Most mobile app penetration tests or vulnerability assessments take anywhere from a couple of days to two weeks to deliver because of the manual approaches, brittle open source stacks in homegrown testing rigs and legacy application security testing (AST) tools. The shift to agile development common in mobile app development teams has left appsec testing behind. New mobile app builds are pushed daily, weekly or monthly, and appsec testing teams struggle to keep up. Each new build brings new code, including 3rd-party libraries, and with that code comes new potential vulnerabilities.

    Application security & testing teams - this one’s for you. If you’re looking for ways to join the agile approach and keep pace with the speed of your development team’s CI/CD pipeline, take stock of these 5 tips for mobile appsec testing and integrate them into your company’s workflow.

    NowSecure - protecting the business at the speed of mobile.
  • Top OSS for Mobile AppSec Testing: The Latest on R2 and FRIDA Recorded: Feb 21 2018 56 mins
    David Weinstein (CTO, NowSecure) // Sergi "Pancake" Àlvarez (R2) // Ole André (FRIDA)
    From the creators behind top mobile tools R2 and FRIDA, get the inside scoop on the R2 and FRIDA OSS projects. Led by NowSecure Research Team including David Weinstein, Ole André and Pancake (Sergi Àlvarez), this webinar speaks to our favorite mobile AST OSS projects. Peek behind the curtain on these tools, check out on their latest updates, learn how to use them to solve a crackme, and talk about potential future enhancements.

    Attendees will learn about popular open source projects for AST and walk away with hands-on experience on how to use them and get a peek at the future.
  • 85% of App Store Apps Fail OWASP Mobile Top 10: Are you exposed? Recorded: Jan 23 2018 56 mins
    Andrew Hoog (Founder) // Brian Reed (Chief Mobility Officer)
    NowSecure continuously monitors millions of mobile apps in third-party apps in the Apple® App Store® and the Google Play™ store for security, compliance and privacy risks.

    A comprehensive analysis of iOS and Android apps found that a staggering 85% of those apps fail one or more of the OWASP Mobile Top 10 criteria. Given that the average mobile device has over 89 mobile apps on it, what are the odds your employees have one or more of the apps and what’s the real risk to your business?

    During this webinar, renowned mobile security expert and NowSecure founder Andrew Hoog and Chief Mobility Officer Brian Reed will review the massive data set, detail the areas of exposure and review mitigation recommendations.

    Mobile apps power productivity in the modern business; don’t let a few bad apps bring it down.

    Note: Live attendees will be entered to win a free mobile app security assessment!
  • 5 Mobile App Security MUST-DOs in 2018 Recorded: Dec 5 2017 48 mins
    Andrew Hoog (Founder) // Katie Strzempka (VP of Customer Success & Services) // Brian Reed (Chief Mobility Officer)
    To close out the 2017 webinar season, our mobile security expert panel will review the top mobile threats of 2017 (e.g., Cloudbleed, Bootstomp, Broadpwn, and more) and then debate what’s next in mobile app security and mobile app security testing for 2018. Join us for a spirited discussion of the security ramifications of the new iPhone X, iOS 11, Android 8, the latest innovations in the mobile app security testing, and more. Compare your mobile app security and mobile app security testing initiatives with what our experts say should be your top priorities in 2018.

    Live attendees will be entered to win a free mobile app security assessment!
  • Danger in the App Stores: 3rd Party Mobile App Risk for Banks, FinServ & FinTech Recorded: Nov 14 2017 45 mins
    Brian Reed, CMO // Alex Wishkoski, Director of Product Management
    What you don’t know about third-party apps in the Apple® App Store® and the Google Play™ store can hurt you. Apple and Google have app review processes at various levels, but banks and financial services organizations require more scrutiny -- especially for BYOD & COPE devices. Commercial apps used by employees in the workplace can leak data and violate security policies. Third party apps that use your company SDKs or APIs can expose your organization, defraud your customers, and tarnish your brand. Join our webinar to learn how to incorporate third-party commercial apps in your mobile threat modeling exercises and application security programs to protect your organization, your reputation, and your customers.
  • What attackers know about your mobile apps that you don’t: Banking & FinTech Recorded: Oct 24 2017 55 mins
    Andrew Hoog, NowSecure Founder
    Our threat research team spends every waking moment reverse-engineering and cracking mobile apps and devices to help organizations reduce mobile risk. During this webinar, renowned mobile security expert and NowSecure founder Andrew Hoog will explain the attacker’s point-of-view, what attackers are looking for in mobile banking or financial services apps, and what makes your mobile app an appetizing target. We will then provide tips for deploying a mobile app security testing program to ensure you proactively plug security holes, squash privacy leaks, and fill compliance gaps in your mobile apps.
  • Android “O” and iOS 11 security updates: What you need to know Recorded: Sep 14 2017 47 mins
    Michael Krueger, NowSecure Mobile Security Analyst // Tony Ramirez, NowSecure Mobile Security Analyst
    Google released Android 8 (Oreo) recently, and soon Apple will release iOS 11. Both updates include a number of security enhancements.

    Don’t miss this 30-minute overview of the security updates that will also touch on:
    -- Changes in iOS 11 that provide better security for app data in transit
    -- App permissions updates in Android Oreo
    -- How Android Oreo and iOS 11 updates affect mobile app security assessments
  • Solving for compliance: Mobile app security for banking and financial services Recorded: Aug 22 2017 29 mins
    Brian Lawrence, NowSecure Security Solutions Engineer
    Mobile apps fall in scope for a number of regulatory requirements that govern the banking and financial services industries, such as: guidelines from the Federal Financial Institutions Examination Council (FFIEC), the Gramm–Leach–Bliley Act (GLBA), New York State cybersecurity requirements for financial services companies, the Payment Card Industry Data Security Standard (PCI DSS), the Sarbanes-Oxley Act, and more. Luckily, a repeatable mobile app security assessment program and standardized reporting go a long way in both achieving compliance objectives and securing mobile apps and data.

    Join us for a 30-minute webinar during which NowSecure Security Solutions Engineer Brian Lawrence will explain:
    -- How and where exactly mobile apps fall in scope for various compliance regimes
    -- Mobile app security issues financial institutions must identify and fix for compliance purposes
    -- How assessment reports can be used to demonstrate due diligence
  • Vetting mobile apps for corporate use: Security essentials Recorded: Jul 18 2017 40 mins
    Katie Strzempka, NowSecure VP of Customer Success & Services
    Mobile devices and apps make employees more productive, but deploying leaky or vulnerable apps increases enterprise risk. What does a sensible approach to approving and denying Android and iOS apps for use by staff look like? It starts with accurate, up-to-date security assessment data. Join NowSecure VP of Customer Success and Services Katie Strzempka for a webinar explaining how to take a data-driven approach to evaluating mobile apps for use at your organization.

    Join us for this 30-minute webinar and learn:
    -- What vulnerability data is integral to making informed app vetting decisions
    -- How to approach threat modeling for third-party and custom mobile apps
    -- Creating a rubric for evaluating mobile apps for corporate use
  • Cutting out the middleman: Mobile man-in-the-middle attacks and prevention Recorded: Jun 13 2017 42 mins
    Michael Krueger, Solutions Engineer at NowSecure & Tony Ramirez, Software Support Engineer at NowSecure
    A mobile app that’s vulnerable to man-in-the-middle (MITM) attacks can allow an attacker to capture, view, and modify sensitive traffic sent and received between the app and backend servers. At NowSecure, Michael Krueger and Tony Ramirez spend their days performing penetration tests on Android and iOS apps, which include exploiting MITM vulnerabilities and helping developers fix them. Join Michael and Tony for a 30-minute talk about MITM attacks on mobile apps and how to prevent them that will cover:

    -- Identifying man-in-the-middle vulnerabilities in mobile apps
    -- How to execute a mobile man-in-the-middle attack
    -- Right and wrong ways to implement certificate validation and certificate pinning
  • Mobile DevSecOps 101: Common slip-ups in embedding mobile app security testing Recorded: May 25 2017 32 mins
    Brian Lawrence, NowSecure Solutions Engineer & Keith Mokris, NowSecure Product Marketing Leader
    Developers and DevOps engineers want to fail fast, iterate, and continuously improve. If security practioners want to join in the fun, they need to integrate security assessments into existing mobile DevOps workflows and toolchains. This webinar will teach security professionals, developers, and DevOps engineers how to avoid common mistakes in embedding automated app security testing into mobile DevOps practices.

    Join NowSecure Solutions Engineer Brian Lawrence and Product Marketing Leader Keith Mokris to learn how to do things like:

    -- Address DevOps stakeholders' worries and concerns about integrating security testing
    -- Determine the right depth of analysis for continuous mobile app security testing
    -- Track mobile DevSecOps metrics over time to measure success
  • Trends in Fintech Security - Mobile Payment Apps, Risks & Cybersecurity Recorded: May 18 2017 75 mins
    Ted Eull (NowSecure), JP Bourget (Syncurity), RJ Gazarek (Thycotic), Jason Kent (AsTech)
    Fintech may still be in its early stages, but it's seen tremendous growth and is expected to see global investments exceed $150 billion in 2017. With the proliferation of mobile apps, cybersecurity is extremely important. Trust is a key difference maker for customers, so fintech companies need to ensure that their sensitive client information stays secure.

    Join this panel roundtable of cyber security experts as they discuss:
    - The top cyber threats financial institutions are facing
    - Ransomware, data loss & BCDR
    - Mobile banking apps and security vulnerabilities
    - Recommendations on improving security and establishing consumer trust

    Speakers:
    - JP Bourget, CSO of Syncurity
    - Ted Eull, VP Privacy and Risk at NowSecure
    - RJ Gazarek, Product Manager at Thycotic
    - Jason Kent, CTO of AsTech Consulting
  • Delivering secure mobile financial services (MFS): “Frictionless” vs. diligence Recorded: May 2 2017 43 mins
    Ted Eull, NowSecure VP of Risk & Privacy
    Consumers want more mobile-friendly financial services, and they want them now -- without any security or privacy compromises. These expectations create tension in the delivery of mobile financial services and apps. What’s the best way to strike a balance between a frictionless mobile experience and the security diligence customers demand?

    Learn how to answer this question for your enterprise during a webinar with Ted Eull, NowSecure VP of Risk and Privacy. Ted will apply insights from mobile security engagements with NowSecure customers in the financial services industry, explain best practices, and provide guidance on topics such as:

    -- Where do you draw the line between frictionless mobile UX and authentication?
    -- What constitutes good two-factor authentication for financial services apps that doesn’t hinder adoption or inconvenience users?
    -- How can FFIEC guidance help enterprises develop secure financial services apps?
  • Next-level mobile app security: A programmatic approach Recorded: Apr 18 2017 47 mins
    Katie Strzempka, VP Customer Success & Services at NowSecure
    Name a mobile app security challenge and chances are Katie Strzempka, VP Customer Success and Services at NowSecure, has developed and implemented a solution. Fresh off the publication of her Mobile App Security Program Management Handbook, Katie will share her experiences helping numerous enterprises design, build, and improve their mobile app security programs. Join Katie for this webinar and take your mobile app security program to the next level.

    Here’s a sampling of what you’ll learn from this webinar:
    -- How to unite a disarray of tasks into a mobile app security testing process
    -- How to choose the right mobile app security testing tools for your maturity
    -- How to establish buy-in and collaborate with developers and your DevOps team
  • Mobile Penetration Testing Trilogy: Episode III – Attack of the Code Recorded: Jan 19 2017 53 mins
    Michael Krueger, Solutions Engineer & Jake Van Dyke, Security Researcher
    In the third and final installment of our mobile penetration testing trilogy, we dive deep to find security flaws in mobile apps by dissecting the code with reverse-engineering and code analysis.
  • Mobile Penetration Testing Trilogy: Episode II – Return of the Back-end/Network Recorded: Dec 15 2016 52 mins
    Michael Krueger, Solutions Engineer
    In the second episode of our mobile penetration testing trilogy, NowSecure Solutions Engineer Michael Krueger takes you beyond the device. Michael will explain how to perform network and web services/API testing to capture data exposed in transit between apps and backend services - some of the highest risk security flaws around.
  • Mobile Penetration Testing Trilogy: Episode I – The Forensic Menace Recorded: Dec 6 2016 41 mins
    Katie Strzempka, Director of Services
    Whether you’ve never performed mobile app penetration testing or need a refresher course, join us for an intensive tutorial explaining how to conduct penetration testing on Android and iOS apps. Director of Services Katie Strzempka will lead this accelerated instructional session. Katie has conducted mobile forensic investigations and app security assessments for almost a decade and leads the NowSecure team of expert penetration testers.
The Ultimate Tools for Mobile App Security Testing
NowSecure is the mobile app security technology company enterprises trust to help them deliver secure customer experiences through mobile apps and manage risk associated with mobile-centric workforces using dual-use devices. We deliver mobile app security testing, mobile app certification, third-party mobile app vetting, incident response, and compliance solutions.

Embed in website or blog

Successfully added emails: 0
Remove all
  • Title: 5 Mobile App Security MUST-DOs in 2018
  • Live at: Dec 5 2017 7:00 pm
  • Presented by: Andrew Hoog (Founder) // Katie Strzempka (VP of Customer Success & Services) // Brian Reed (Chief Mobility Officer)
  • From:
Your email has been sent.
or close