About OWASP The story so far and beyond

Зарегистрируйтесь, чтобы просмотреть полный документ!

About OWASP The story so far and beyond. Part 2 Jason Li & Dinis Cruz (remotely) Jason. li@owasp. org , dinis. cruz@owasp. org August 16, 2008 OWASP App. Sec India Aug 2008 Copyright © 2007 - The OWASP Foundation This work is available under the Creative Commons SA 2. 5 license The OWASP Foundation http: //www. owasp. org

Governance

OWASP Structure < OWASP Board < OWASP leaders (Tools, Chapters & Working Groups) < OWASP Members < Subscribers to mailing lists < Anonymous consumers OWASP 3

OWASP Board < OWASP Board members: 4 Jeff Williams: Chair, Wiki, Management 4 Dave Wichers: Conferences, Financials 4 Tom Brennan: OWASP Governance 4 Sebastien Deleersnyder: OWASP Chapters and Projects 4 Dinis Cruz: Firehose of Ideas and Money spender < OWASP Board ‘power’ 4 OWASP Financials (where does the money goes to), 4 leadership assignment, 4 conferences locations, 4 WIKI home page, 4 bank account details : ) < The rest is ‘soft power’ 4 i. e. we have it until we screw up OWASP 4

OWASP Employees <Alison Mc. Namee - Admin and Accounts (2 days week) <Paulo Coimbra - Owasp Projects & Summer of Code Management <Kate Hartmann - Operations manager <These are the only ones directly paid by OWASP, apart from Seasons of Code sponsorships no Board Member, Project leader or chapter leader is paid OWASP 5

How OWASP Works < Q: Do you have a project on XYZ at OWASP? 4 A: Nope, do you want to do it? < Q: Why don’t you do XYZ at OWASP? 4 A: There is nobody allocated to that, do you want to do it? < Q: Is there an OWASP chapter at XYZ? 4 A: Nope, do you want to do start one? < Q: The project/chapter XYZ is dead!!! 4 A: Ok, do you want to take over its leadership? < I want to start a project on XYZ, what happens next 4 A: Read the new project guidelines, create the wiki page and contact Paulo OWASP 6

Improved Project Management OWASP

Assessment Scale for OWASP TOOLS Projects – Release Quality OWASP

Assessment Scale for OWASP TOOLS Projects – Beta Quality OWASP

Assessment Scale for OWASP TOOLS Projects – Alpha Quality OWASP

Project management in practice: So. C 08 OWASP

Finances and Grants Revenue source: Members • All membership fees are used to fund grants 100% Revenue source: Conferences 55% • Grants 45% • OWASP employees • Conferences costs • OWASP Admin OWASP 12

OWASP finances: Balance 03/Mar/08 <Note: these are un-audited numbers (doesn’t include committed expenses such as So. C 08 & OWASP employees) <The good news is that OWASP is doing OK financially <Any good ideas on where to invest next? OWASP

Membership

OWASP Membership < Members have the ability to allocate their membership fees to projects, working groups or chapters they are interested in < Members will have the ability to vote of specific OWASP governance issues (Tom to figure this out) < Membership makes a public statement of support to OWASP < Very importart: There is no ‘member-only content’ Apart from the (under construction) OWASP Member packs, there is NOTHING that an member gets that it doesn’t already have (i. e. all OWASP materials and participation are available to everybody (members and non members)) OWASP 15

Categories of Membership OWASP

Benefits of Membership OWASP

OWASP Corporate Members – Jul 2008 OWASP 18

Next Conferences

Israel: Sep 14 th OWASP

USA – New York : Sept 24 th 25 th OWASP

App. Sec USA NYC, Day 1 OWASP

App. Sec USA NYC, Day 2 OWASP

App. Sec USA NYC, Training OWASP

App. Sec USA NYC, Training (cont) OWASP

OWASP EU Summit 08, Portugal: Nov 4 th 7 th OWASP

Participate

Join an OWASP project OWASP

Join an owasp mailing list OWASP

Start a new project OWASP

Start a new chapter OWASP

Please Help OWASP Grow <Push us to do better! <Be an active contributor 4 OWASP Chapter Leaders 4 OWASP Project Leaders, Participants and Reviewer 4 OWASP Conference Committee 4 Stub articles – wiki contributions 4 New technologies to analyze <Be an OWASP members 4 Corporate Members 4 Individual Members <Please join us and share what you know! OWASP 32

Questions and Answers OWASP App. Sec India Aug 2008 Copyright © 2007 - The OWASP Foundation This work is available under the Creative Commons SA 2. 5 license The OWASP Foundation http: //www. owasp. org

Скачать презентацию About OWASP The story so far and beyond

4ce2cc1aee50fb52891f6c5fdeb51b68.ppt

Количество слайдов: 33