The OWASP DevSlop Project Team Members

Team Leaders

Nicole Becher

Nicole Becher is professional information security consultant. She has been in the cybersecurity space for over ten years working mainly in offensive security capacities. She manages penetration testing and red teams, forensics and incident responders, and malware reverse engineering teams. She has also worked on the cyber policy side for a U.S. Regulator, New York State Department of Financial Services, where she helped develop the first-in-nation regulatory framework for assessing the cybersecurity of large and complex financial institutions. She also helped draft the first-in-nation regulatory and licensing framework for Bitcoin and virtual currencies. Nicole is also as an Adjunct Instructor at New York University, where she teaches courses on offensive and defensive computer security, network security, web application security, and computer forensics. She is a chapter leader for OWASP Brooklyn (Open Web Application Security Project) and has presented both talks and trainings, at various conferences around the world on topics related to her research interests. These include web application security, malware analysis, economics of cybersecurity, cybercrime, and international cyberlaws and regulation. She has also advised Hollywood scriptwriters on cybersecurity and hacking. She is a Cybersecurity fellow of New America, a Washington DC-based think-tank, and is a fellow of the Madison Policy Forum, a cybersecurity-focused policy group bridging military, government and industry. She is a Certified Information Systems Security Professional (CISSP). Nicole is part of the Conservation SMART Technology Security Council is very active in the Animal Rescue and conservation technology movements.

Twitter: TheDeadRobots

Tanya Janca

Tanya Janca is a senior cloud advocate for Microsoft, specializing in application and cloud security; evangelizing software security and advocating for developers and operations folks alike through public speaking, her open source project OWASP DevSlop, and various forms of teaching via workshops, blogs, public speaking and community events. As an ethical hacker, OWASP Project Leader, Women of Security (WoSEC) chapter leader, software developer and professional computer geek of 20+ years, she is a person who is truly fascinated by the ‘science’ of computer science.

Twitter: SheHacksPurple
Dev.TO Blog:
Medium Blog:

Team Members

Franziska Bühler

Franziska Bühler:
Twitter: Franziska

Franziska is currently working as an architect for the Swiss company Puzzle ITC, where she combines her passion for IT-security, DevOps and open source software. She is highly experienced in reverse proxy platform and WAF (web application firewalls), from her extensive experience at the Swiss post and as a co-developer of the OWASP ModSecurity Core Rule Set. As part of the OWASP DevSlop team, Franziska integrated CRS into DevSlop's pixi-crs module, a Continuous Integration pipeline, to provide developers the chance to tune their WAF earlier in the SDLC. She also blogs, speaks at conferences and provides technical training, at conferences throughout Europe. When she isn't disassembling highly optimized regexes or study technical books, she enjoys spending time with her family.

Nancy Gariché

Twitter: NanzgTweets
Website: Secure That Cert!

In the early 2000's, Nancy joined the Canadian federal government as a computer science CO-OP student and never left. In 2009, she moved to Ottawa from Montreal, her beloved hometown, to land her first IT security job as a security analyst. This multi-hatted role gave her the opportunity to take on duties in multiple disciplines ranging from incident handling, to project and risk management. Involved in her local infosec community, she aspires to welcome and empower a new generation of industry professionals into the workforce. She is currently leading her federal Department’s Security Assessment and Authorization Program and she is the co-founder of Secure That Cert! a community that helps cybersecurity professionals and enthusiasts obtain the skills and certifications required to kickstart or level up their career.

Project Contributors

Abel Wang: Twitter: AbelSquidHead

Manuel Lopez Arredondo

Mordecai Kraushar: Twitter: Mordecai


Marco Tietz
Patxi Gortázar

Twitter: OWASP_DevSlop
Twitter: YouTube
Twitter: Mixer
Twitter: Twitch
OWASP: DevSlop Wiki Page