Cost: FREE
Possible CPE Credit: 1 CPE for full attendance
Format: Online Webinar
Registration Link: https://www.eventbrite.com/e/isaca-ntx-meeting-virtual-april-17th-tickets-1978295593374?aff=oddtdtcreator&keep_tld=true
ISACA North Texas Monthly Meeting (Virtual) April 17th
Join us for the ISACA North Texas Monthly Meeting! This exciting event will be held virtually, allowing you to participate from the comfort of your own home. Connect with industry professionals, expand your network, and gain valuable insights into the latest trends and developments in the field. Don't miss this opportunity to stay up-to-date and engage with like-minded individuals. Mark your calendar and be ready for an informative and interactive session. See you there!
Session Title: Understand and Auditing the OWASP Top Ten
Session Details: OWASP released a major update to the Top Ten in December 2025, introducing new categories, refined definitions, and a clearer focus on web application risks. What changed? What stayed the same? And what does it mean for auditors? “Understanding and Auditing the OWASP Top Ten” delivers a practical, risk‑driven exploration of the most critical web application security vulnerabilities recognized by the Open Web Application Security Project (OWASP).
Speaker Details: Tanya Baccam, Consultant, Senior SANS Instructor, CISSP, CPA, CITP, CISA, CISM, GPPA, GCIH, OCP DBA
Tanya Baccam has extensive experience performing audits and assessments including application reviews, system audits, vulnerability and penetration tests, as well as providing training around application and software development risks. She is skilled in reviewing the security architecture for clients including assessing firewalls, applications, web sites, network infrastructure, operating systems, routers, and databases. She has conducted multiple network penetration engagements, vulnerability assessments and risk assessments using an arsenal of tools including commercially available and open-source tools. She has developed and reviewed policies and procedures, as well as developing and providing security awareness training. Tanya has been responsible for conducting, scheduling and managing numerous security assessment engagements. Additionally, she has provided advice and guidance to multiple companies on how to build successful auditing practices. During her career in Information Technology, Tanya has become an expert in network and application security services. She has functioned in management, training and consulting roles. She has vast experience including support of Novell, UNIX, Windows, and Oracle platforms. Tanya is a Senior Certified Instructor and courseware author for SANS (Sysadmin, Audit, Network, Security) where she has developed and delivered training in security auditing, incident handling, hacker exploits, database security and perimeter protection, as well as being an authorized grader for some of the GIAC certifications. She is also a member of ISACA (Information Systems Audit and Control Association).
Company: Baccam Consulting
LinkedIN: https://www.linkedin.com/in/tanya-baccam-cpa-cissp-cisa-cism-a902732