The OWASP DevSlop Project Team Members


Team Leaders

Nicole Becher


Nicole Becher is professional information security consultant. She has been in the cybersecurity space for over ten years working mainly in offensive security capacities. She manages penetration testing and red teams, forensics and incident responders, and malware reverse engineering teams. She has also worked on the cyber policy side for a U.S. Regulator, New York State Department of Financial Services, where she helped develop the first-in-nation regulatory framework for assessing the cybersecurity of large and complex financial institutions. She also helped draft the first-in-nation regulatory and licensing framework for Bitcoin and virtual currencies. Nicole is also as an Adjunct Instructor at New York University, where she teaches courses on offensive and defensive computer security, network security, web application security, and computer forensics. She is a chapter leader for OWASP Brooklyn (Open Web Application Security Project) and has presented both talks and trainings, at various conferences around the world on topics related to her research interests. These include web application security, malware analysis, economics of cybersecurity, cybercrime, and international cyberlaws and regulation. She has also advised Hollywood scriptwriters on cybersecurity and hacking. She is a Cybersecurity fellow of New America, a Washington DC-based think-tank, and is a fellow of the Madison Policy Forum, a cybersecurity-focused policy group bridging military, government and industry. She is a Certified Information Systems Security Professional (CISSP). Nicole is part of the Conservation SMART Technology Security Council is very active in the Animal Rescue and conservation technology movements.


Twitter: TheDeadRobots
GitHub: https://github.com/thedeadrobots

Tanya Janca

Tanya Janca is a senior cloud advocate for Microsoft, specializing in application security; evangelizing software security and advocating for developers through public speaking, her open source project OWASP DevSlop, and various forms of teaching via workshops, blogs and community events. As an ethical hacker, OWASP Project and Chapter Leader, software developer, effective altruist and professional computer geek of 20+ years, she is a person who is truly fascinated by the ‘science’ of computer science.


Twitter: SheHacksPurple
GitHub: https://github.com/shehackspurple
Blog: https://aka.ms/SheHacksPurpleBlog
Slides: https://www.slideshare.net/TanyaJanca

Imran Mohammed


Imran “secfigo” Mohammed is a seasoned security professional with 8 years of experience in helping organizations with their Information Security Programs. He has a diverse background in R&D, consulting and product-based industries with a passion to solve complex security programs. Imran is the founder of Null Singapore, the largest information security community in Singapore where he has organized more than 60 events & workshops to spread security awareness. He was also nominated as community star for being the go-to person in the community whose contribution and knowledge sharing has helped many professionals in the security industry.

Twitter: SecFigo
GitHub: https://github.com/secfigo
Blog: http://secfigo.com
Slides: https://www.slideshare.net/secfigo



Team Members

Franziska Bühler


Franziska Bühler: Franziska.Buehler@owasp.org
Twitter: Franziska
GitHub: https://github.com/franbuehler
Slides: https://www.slideshare.net/franbuehler

Franziska Bühler works as a Systems Engineer for the Swiss Post, where she builds and enhances the reverse proxy platform in a DevOps manner. Her main areas of responsibility are web server security and everything related to the access layer. In addition to building or reorganizing platforms, she also writes and implements security policies. She writes scripts and programs to automatically rebuild and test the platform every night and to monitor policy compliance.

In her spare time Franziska Bühler likes to read technical books about security, DevOps or HTTP. If she is not reading, she disassembles highly optimized regular expressions as described in her blogpost. Or she helps as a developer and committer to enhance the OWASP ModSecurity Core Rule Set. The Core Rule Set is a rule set for the ModSecurity web application firewall. See coreruleset.org.


Mordecai Kraushar: mordecai.kraushar@owasp.org
Twitter: Mordecai



Twitter: OWASP_DevSlop
GitHub: https://github.com/DevSlop
OWASP: DevSlop Wiki Page