John DiLeo

Application Security Architect, Orion Health

John DiLeo has worked and taught in computing and information technology for 30 years. Starting out in simulation development as an engineer with the US Army, John has progressed through several changes in focus, eventually arriving in Application Security. In his most recent roles, he has been charged with formalising, expanding, and managing enterprise Software Assurance programs.

OWASP Activities

  • OWASP New Zealand Chapter Co-Leader
  • SAMM 2.0

Sponsored By:

Participant's team(s):

John DiLeo Daily Schedule

Monday Tuesday Wednesday Thursday Friday
AM-1
10:30 - 12:30
Time slot over-subscribed
SAMMv2 working session - Governance
311 - OWASP SAMM villa
Security Ethics Checklist
Montague room
SAMMv2 working session - Operations
311 - OWASP SAMM villa
Time slot over-subscribed
SAMM Project Meeting
311 - OWASP SAMM villa
Integrating Security Tools in the SDL
Maulden room
DS-2
12:30 - 13:30
Implementing the OWASP responsible disclosure Maturity Model
Table 3
PM-1
13:30 - 15:00
Integrating Security Tools in the SDL using OWASP DevSecOps Studio
Maulden room
Time slot over-subscribed
SAMMv2 working session - Design
311 - OWASP SAMM villa
DevSecOps Maturity Model (DSOMM)
Maulden room
SAMMv2 working session - Verification
311 - OWASP SAMM villa
Time slot over-subscribed
Using the OWASP Maturity Model tool
PM-2
15:30 - 16:30
SAMM - Best Practices
Portland room
Time slot over-subscribed
SAMMv2 working session - Implementation
311 - OWASP SAMM villa
Time slot over-subscribed
Creating an open 3rd Party Supplier Questionnaire and maturity model
311 - OWASP SAMM villa
JIRA Risk Workflow
Portland room
PM-3
16:30 - 17:30
SAMM Round Table
Portland room
SAMMv2 Establish the Document Model
311 - OWASP SAMM villa
SAMM benchmarking
311 - OWASP SAMM villa
Eve-1
19:30 - 21:00
SAMM DevSecOps Version
311 - OWASP SAMM villa

Participating sessions details

Title Description type When Time Acting as
SAMM - Best Practices User session on how to use Owasp SAMM user-session Mon PM-2 participant
SAMM Round Table Round table session with SAMM users user-session Mon PM-3 participant
SAMM DevSecOps Version Create a totally new SAMM DevSecOps version working-session Mon Eve-1 participant
SAMMv2 working session - Governance multiple working sessions on the new SAMMv2 working-session Tue AM-1 participant
SAMMv2 working session - Design multiple working sessions on the new SAMMv2 working-session Tue PM-1 participant
SAMMv2 working session - Implementation multiple working sessions on the new SAMMv2 working-session Tue PM-2 participant
SAMMv2 working session - Operations multiple working sessions on the new SAMMv2 working-session Wed AM-1 participant
SAMMv2 working session - Verification multiple working sessions on the new SAMMv2 working-session Wed PM-1 participant
SAMMv2 Establish the Document Model Define SAMMv2 document Model working-session Wed PM-3 participant
SAMM2 Kickoff Kickoff session for the summit working-session participant
SAMM Project Meeting Project meeting to review the status and update the plan for SAMM2 working-session Thu AM-1 participant
SAMM benchmarking Define objectives for the SAMM benchmarking project as part of SAMMv2 working-session Thu PM-3 participant
Using the OWASP Maturity Model tool Practical session on using the OWASP Maturity Model tool user-session Thu PM-1 participant
Implementing the OWASP responsible disclosure Maturity Model Hand-on session on creating the OWASP responsible disclosure Maturity Model user-session Wed DS-2 participant
Creating an open 3rd Party Supplier Questionnaire and maturity model Create a common 3rd Party Supplier Maturity Model working-session Thu PM-2 participant
DevSecOps Maturity Model (DSOMM) DevSecOps Maturity Model (DSOMM) working-session Tue PM-1,PM-2,PM-3 participant
Integrating Security Tools in the SDL Integrate security tools as part of CI/CD pipeline to find/fix issues early in SDL working-session Thu AM-1, PM-1 participant
JIRA Risk Workflow This Working Session should result in an improved JIRA Risk Workflow working-session Thu PM-2 participant
Security Ethics Checklist working-session Tue AM-1 participant
Integrating Security Tools in the SDL using OWASP DevSecOps Studio Using DevSecOps studio to learn and teach Integrating security tools in the SDL user-session Mon PM-1 participant

Register as organizer

To register as an organizer of an session or track:

  • add your name to the organizers metadata field (in this case John DiLeo)


Back to list of all Participants