OWASP Initiatives Global Strategic Focus

= Welcome =



Focus Overview
OWASP recognizes the extraordinary contribution of our global community by engaging them to provide input in seven areas of strategic focus. Within each of these defined areas, there are opportunities to contribute and participate. As with everything in OWASP, these discussions and decisions are open to everyone.

Each volunteer team will focus on a key function or geographic region, such as OWASP projects, conferences, local chapters, membership and industry outreach. Local Chapters, Project Leaders, questions about hosting a conference or starting a chapter should contact the appropriate Focus Leader or Staff Member for assistance, guidance or to suggest best practice.

Global Initiatives
Each Item listed has links to the related documents, focus group information, discussion pages, and voting opportunities if appropriate, along with decision dates. Please review the provided documentation prior to submitting your vote to ensure the decisions made are based on educated and informed community input.

Each volunteer team will focus on a key function or geographic region, such as OWASP projects, conferences, local chapters, membership and industry outreach. Local Chapters, Project Leaders, questions about hosting a conference or starting a chapter should contact the appropriate Focus Leader or Staff Member for assistance, guidance or to suggest best practice.

START YOUR OWN INITIATIVE
Sign up for a current initiative

Related Documents
Google Docs Folder with Meeting Agendas, Notes, and Presentations

Previous Meetings

February 28, 2013 - Mandatory Chapter Rules and Code of Ethics


 * Recording of the 2/28 webinar PPT for Discussion - Mandatory Chapter Rules and Code of Ethics

February 14, 2013


 * Recording of February 14, 2013 Webinar

January 24, 2013 - Overview of OWASP Projects - past, present, and future roadmap


 * Recording of the January 24, 2013 Webinar

January 10, 2013 - A discussion of current and future committee structure and processes and a walkthrough of the Global Initiatives pages, in particular, how to get involved.


 * Recording of the Jan 10th 9am Webinar


 * Recording of the Jan 10th 9pm Webinar

= Membership =



Membership Activities
Membership is an important aspect of OWASP, as the organization would be nothing without its dedicated members. Membership helps OWASP grow, creates OWASP Projects and creates a community of open source innovation to share. OWASP needs dedicated volunteers to help grow the organization in individual and corporate membership. A membership volunteer would work on various activities depending upon their region and level of time dedication. Volunteering to promote membership would require as much time as the individual wanted to put in, and would never ask for more time than an individual could give.

Related opportunities will be available as necessary:


 * OWASP Election Policy & Procedure


 * Quarterly Membership Drives


 * Biannual Corporate Fundraising Drives


 * Annual Global Elections


 * Annual WASPY awards

Get Involved
Tell us what you would like to do

Join in the Discussion
Discussion Pages

= Education =



Group Purpose
The Global Education Committee was created during the OWASP EU Summit in Portugal 2008 to work with the OWASP Education Project to provide educational materials for both internal and external users, develop liaisons with educational institutions worldwide, provide awareness, training and educational resources to corporate government and educational institutions on application security, and to move OWASP educational material globally available as a well known resource in easily consumable form mapped to a framework tied specifically to user.

Ongoing Education Activities
Opportunities will be posted as they become available.


 * OWASP Training


 * OWASP Academies


 * OWASP Education Project


 * Winter Code Sprint

Get Involved
Tell us what you would like to do

Join the Discussion
Discussion Pages

= Chapters =



Group Purpose
To provide the support required by the local chapters to thrive and contribute to the overall mission and goals of OWASP.

Ongoing Chapter Activities

 * Chapter Leader Handbook


 * Chapter Mentoring Program


 * OWASP on the Move


 * Chapter Leader Workshops

Get Involved
You may either visit a chapter page (via the above links) to view available volunteer activities at your local chapter, or click one of the following links:

Volunteer For A Chapter Initiative

Start a Chapter

Tell us what you would like to do

Join in the Discussion
Discussion Pages

= Conferences =



Group Purpose
OWASP Global Conferences bring thousands of security professionals together to collaborate on security solutions. OWASP hosts 4 Global events annually - one in each quarter - in 4 geographic regions: North America, South America, Asia Pacific, and Europe. These conferences are primarily organized and managed by volunteers and there are many opportunities to get involved in events.

Ongoing Conference Activities

 * How to Host a Conference - The comprehensive guide for hosting an OWASP event.


 * Booth in a Box


 * OWASP Conference Track

Get Involved
Sign up To Volunteer for AppSec USA 2013

Tell us what you would like to do

Join in the Discussion
Discussion Pages

= Projects =



Group Purpose
The OWASP Global Projects Group is responsible for developing policies, procedures, and strategies for all of our open source projects worldwide. Currently the group is developing the global operational infrastructure that will be used to facilitate participation and success for all of our OWASP Project Leaders.

Project Task Force
The OWASP Project Task Force is focused on cleaning up the Projects lists, starting first with the Incubator projects. Learn more about the current goals of the OWASP Project Task Force here: Project Task Force

OWASP Cyber Security Startup Initiative
The aim of the OWASP Cyber Security Startup Initiative (CSSI) is to catalyse opportunities for innovation in application security by promoting the creation of prototypes of open source tools produced by entrepreneur-lead teams seeking to form cyber-security start-ups. Learn more about the more about this initiative here: Cyber Security Startup Initiative

2014 OWASP Projects Handbook
Download the 2014 OWASP Projects Handbook

OWASP Project Inventory
All OWASP tools, document, and code library projects are organized into the following categories:


 * Incubator Projects: OWASP Incubator projects represent the experimental playground where projects are still being fleshed out, ideas are still being proven, and development is still underway.


 * Lab Projects: OWASP Labs projects represent projects that have produced an OWASP reviewed deliverable of value.


 * Flagship Projects: The OWASP Flagship designation is given to projects that have demonstrated superior maturity, established quality, and strategic value to OWASP and application security as a whole.

Get Involved
You may either sign up for a currently active project by reviewing the project pages (via the listings above) and clicking on the Get Involved tab, or visit the following links:

Start a New Project

Tell us what you would like to do

Join the Discussion
Discussion Pages

= Social Media and Communications =



Group Purpose
The OWASP Connections Committee was created during the OWASP AppSec DC 2009 conference to help facilitate OWASP foundation communication both internally and externally.

Wiki Cleanup
The OWASP wiki is most important aspect of spreading information to the OWASP community. As the years have gone by, there are several pages that have become outdated or abandoned. The task of the Wiki Cleanup Initiative is to wade through the various OWASP wiki pages and remove outdated and fix the disorganized wiki pages that plague the site. To find out about the Wiki Cleanup Initiative and to volunteer your time, check out the wiki page: Wiki Cleanup Initiative

Security Podcast
Listen as interviews are conducted with OWASP volunteers, industry experts and leaders within the field of software security: OWASP Podcasts

"OWASP 24/7" is series of recorded broadcasts, highlighting OWASP projects and people from around the world. With over 43,000 members in 100 countries, the OWASP 24/7 channel is available on demand, at anytime, anywhere on the planet. You are welcome to embed the broadcasts on your page, download them for your personal listening or keep up to date by subscribing to the iTunes channel.

OWASP on YouTube
As part of the OWASP Media Project, an official YouTube channel is maintain featuring session recordings from OWASP AppSec events. View the full playlist on YouTube, where you can sort by event: OWASP YouTube

OWASP Foundation Social Media

 * LinkedIn


 * Twitter


 * Google+


 * Facebook


 * NING


 * StackOverFlow

Get Involved
Sign up for a current initiative

Tell us what you would like to do

Join In the Discussion
Discussion Pages

= Industry Relationships =



Group Purpose
The Global Industry Committee was created during the OWASP EU Summit in Portugal. The OWASP Global Industry Committee (GIC) shall expand awareness of and promote the inclusion of software security best practices in Industry, Government, Academia and regulatory agencies and be a voice for industry. This will be accomplished through outreach; including presentations, development of position papers and collaborative efforts with other entities.

Ongoing Industry Initiatives

 * Industry Outreach Sessions at OWASP AppSec Conferences


 * AppSec Guide For CISOs


 * OWASP CISO Survey


 * OWASP Citations - References to OWASP in official, or otherwise important, documents.

Get Involved
Tell us what you would like to do

Join in the Discussion
Discussion Pages

= Research =



Group Purpose
OWASP Research is an initiative to start developing OWASP projects in the field of innovative research, specifically new ways to protect web applications by applying out of the box concepts and technological developments.

Ongoing Research Initiatives

 * OWASP Research
 * OWASP Benchmark
 * OWASP Python Security Project
 * OWASP IoT Embedded Web Interface (new)
 * Securing NodeJS (new)

Get Involved
Tell us what you would like to do

Join in the Discussion
Discussion Pages

= Active Initiatives = Here is the list of our active initiatives:

RFP OWASP Needs Assessment

Needs Assessment Q & A

February 3, 2016 - RFP Released

February 29, 2016 Proposal Deadline

February 29 - March 15 - Internal review

March 21 - Top 3 proposals selected

March 24 - Calls with Top 3 companies

March 25, 2016 Decision Deadline

May 31 Assessment and Written Report Completed

June 1 - 15 Evaluate Recommendations and Draft Phase II

June 16 - Begin Execution on Phase II - TBD based on recommendations received

Membership

 * Global Board of Directors Election


 * Annual WASPY awards

Education

 * OWASP Training


 * OWASP Academies


 * OWASP Education Project


 * Winter Code Sprint

Chapters

 * Chapter Leader Handbook


 * OWASP on the Move

Conferences

 * How to Host a Conference

Projects

 * Project Task Force


 * Cyber Security Startup Initiative

Social Media and Communications

 * Wiki Cleanup

Industry Relationships

 * AppSec Guide For CISOs


 * OWASP Citations

Research

 * OWASP Research
 * OWASP Benchmark
 * OWASP Python Security Project
 * OWASP IoT Embedded Web Interface (new)
 * Securing NodeJS (new)

=Wiki Template= For initiative wiki pages, we recommend using the following template. Tabs for Road Map and Getting Involved and Initiative About can be added in the wiki markup under the news and events section. Let us know if you need any assistance when using the wiki.



{| style="padding: 0;margin:0;margin-top:10px;text-align:left;" |-
 * valign="top" style="border-right: 1px dotted gray;padding-right:25px;" |

OWASP XX Initiative
Give an introductory sentence.

Description
Add several paragraphs describing the initiative.


 * valign="top" style="padding-left:25px;width:200px;border-right: 1px dotted gray;padding-right:25px;" |

Presentation Materials
Add presentation materials

Initiative Events
Insert events items

Initiative Leader(s)
Insert name(s) of leader(s) and emails

Mailing List
Insert link to mailing list


 * }

= Contact Us =

Contact
Contact us with any questions or ideas you may have concerning the OWASP Global Initiatives: Contact Us