September 21, 2016

Time

 * Date/Time: September,21 2016/7am-8:30am PDT
 * TimeZone Converter

Location
Teleconference Information:

https://www3.gotomeeting.com/join/861328838

International Toll Free Calling Information

Attendance Tracker
Board Meeting Attendance Tracker

Notice of Recording

 * Notice to all attendees - board meetings are recorded and publicly available as of March, 2013
 * Joining the call acknowledges your awareness of recording and consent to be recorded and public dissemination of the recording.

Meeting Minutes

 * - August 23, 2016 Meeting Minutes
 * - July 27, 2016 Meeting Minutes

= Reading Material = It is a requirement as a board member to fully read all material prior to the start of the meeting

= Meeting Agenda =

Call to Order /OWASP Mission

 * Administrative: List of attendees and Agenda bashing (only if last-minute changes to the agenda are needed) (5 min)

Chair's Report - Matt Konda

 * Staff OKR
 * Staff meetings
 * Bill payments / Contract Approvals (Many)

Vice Chair's Report - Josh Sokol

 * I've got nothing major to report here so let's save the time for some of the bigger discussions that we need to have.

Financial information

 * July financial package


 * - 2016_07_OWASP_July_Financial_Report_submitted_8.18.16.xlsx
 * - 7.16_YTD_US_P%26L_vs_Bud.pdf
 * - 7.16_US_BS.pdf
 * - 7.16_APSEC_EU_P&L.pdf


 * August Financial Package

AUGUST 2016 FINANCIAL REPORT

Updated from Members at Large - Tom Brennan, Michael Coates, and Tobias Gondrom

 * Coates - Chapters


 * Carter - Governance


 * Brennan - Projects

Staff Reports

 * Director/Operations Update - Kate
 * Financial Update - Andrew/Tom - See above
 * Conference Manager Report - Laura Grau
 * | Project Coordinator Update - Claudia Casanovas & Matt Tesauro
 * Community Initiative Reports - Tiffany Long - TBA
 * Membership Report - Kelly Santalucia
 * IT Update - TBA - TBA

Old Business
All active board proposals are listed here


 * Co-Marketing Agreements with other conferences
 * - https://www.owasp.org/index.php/Owasp_Conference_Management_System
 * - https://www.owasp.org/index.php/Category:OWASP_AppSec_Conference


 * Motion to invest a portion of unused funds in a ladder CD arrangement
 * - https://docs.google.com/document/d/1cZOMYzaRnWW_oQd4ON7kBNQcmlx3V4u33Szm8jH2cgU/edit#


 * Motion to approve changes to FY17 membership rates
 * - https://docs.google.com/a/owasp.org/document/d/1RBy7yRl-qVo49lDL1JeKmhwLElcazrJ7tY4OO5Wwb6U/edit?usp=sharing


 * Motion to establish a pay anything membership class, eliminate honorary membership and establish an annual Paul Ritchie Memorial Award
 * - https://docs.google.com/a/owasp.org/document/d/1GTcff47NFDgFCnnFTvaEehdecc-TU2PWjAqc9x470Vw/edit?usp=sharing


 * Motion to create an OWASP open training platform
 * - https://docs.google.com/document/d/1dZ-6eJyNj5iiTTo9AS5NC77PYwOF0D9aTHz8dmcJGJ0/edit#

New Business

 * AppSec USA - Update from Laura

Please go over the last status update from Laura in the reading material, and see for yourselves where we are at in terms of registrations. This last week, registrants paying for their tickets couldn't register for training. Now, I only see 9 training classes, which considering the outstanding success of training profitability in AppSec EU, is going to result in a disappointing profitability for this event. I would like to understand our status as of today, what we can do to fix the registration issue for those 260+ who bought a ticket, but couldn't buy training classes, what we can do to promote the event, and what assistance we can provide the organisers to make this a great event.


 * OWASP / NYU University, CSAW Co-Marketing Agreement 12k - Motion for Vote for Funding (Tom)

CSAW'16 Bronze Level Sponsorship - $12,000

Judging opportunity at NYU Tandon CSAW (Nov. 11) and at NYU Abu Dhabi CSAW

OWASP branded Travel Award (OWASP funding supports the travel for US Capture the Flag finalists)

OWASP collaboration with OSIRIS Lab students on open-source projects in the 16/17 academic year

OWASP membership materials included in the CSAW conference bag (NYU Tandon)

OWASP table at CSAW Industry Fair (NYU Tandon)

OWASP logo on CSAW global website, US conference materials and signage

Public recognition at Awards Ceremony

4 free tickets to the Security Open Source Workshop (NYU Tandon, Nov. 10)


 * WEBSITE Project

Status Report (Tom)


 * Projects and external funding - interpretation

Anyone, including OWASP Project Leaders, are able to take OWASP projects and generate revenue for themselves as long as they abide by the license terms of that project. If a project leader can convince others to pay them for something involving their project that doesn't violate the license, then such activity does not negatively impact their project's standing with the OWASP Foundation. As long as the project remains Open Source (FLOSS) and healthy per the OWASP Project Handbook, it can remain an OWASP project. It is recommended that the project name not match any external offering to avoid confusion and, in cases where such a external offering is provided, a disclaimer will be placed on the project page.

Note: This does not change the long standing policy that OWASP Foundation project funds cannot be spent on the project leader directly (aka pay them directly) but must, instead, be spent on items to enhance the project such as graphic art, editing, travel expenses to a project summit, etc.

Adjournment

 * Next meeting date/time: October 11