Women In AppSec

=WELCOME=

Women in Application Security Committee
The purpose of Women in AppSec (WIA) Committee is to develop leadership, promote active membership and participation, and contributions by women in application security professional communities, globally and locally.

The Women in AppSec program is for anyone who believes that diversity is important to the success of the organization, as well as for women looking to learn more about AppSec or who want to make career connections with like-minded colleagues. This includes female undergraduate and graduate students, instructors, and professionals who are dedicated to information security or application development.

=FIND US=

Email List
WIA List and Archive

Twitter
@OWASPWIA

Slack Channel
WIA Slack Channel

You can get an OWASP Slack invite here: OWASP Slack Invite

=WIA PURPOSE AND SCOPE=

Purpose
The purpose of Women in AppSec (WIA) Committee is to develop leadership, promote active membership and participation, and contributions by women in application security professional communities, globally and locally.

Scope
The scope for OWASP WIA Committee falls into the following areas:


 * 1) Attract women to OWASP, as active members, contributors and leaders.
 * 2) Offer opportunities for women to become engaged in AppSec and related professional communities.
 * 3) Provide inclusive targeted application security programs for all women learners.
 * 4) Provide inclusive training and mentorship for all interested OWASP women.
 * 5) Provide financial support to OWASP women members through scholarships, sponsorships, and grant making.
 * 6) Pursue fundraising, advancement and development to secure financial support for OWASP WIA activities..
 * 7) Integrate WIA track and related activities into OWASP events at all levels.
 * 8) Cultivate women for community leadership, speakers for conferences, thought leadership, learning leaders, and local chapter events.
 * 9) Collaborate with other committees and initiatives as needs present.
 * 10) Collaborate with local OWASP Chapters and Global OWASP leadership, including but not limited to offering advisory support to local and global OWASP leadership for WIA advancement and collaboratively building pro-WIA OWASP communities.
 * 11) Develop other special projects and events designed to further the purpose of WIA.

=MEMBERSHIP=

Voting
Voting Members are members of OWASP who have formally joined the WIA Committee. Voting Members are allowed to vote on Committee business and are allowed to serve in one of the five officer positions of the Committee.

In order to become a Voting Member, you must first become a Participating Member and participate for three months, become an OWASP member in good standing, and obtain a written endorsement from a current Voting Member or an OWASP Board of Director. Once all three criteria are met, you must formally request to join as a Voting Member to the WIA List. The Voting Members then vote via the WIA list, and if you receive a majority affirmative vote, you are then made a Voting Member.

Voting Members have an obligation to maintain participation and to reaffirm their commitment every six months (the Secretary will send an email every six months to affirm commitment, replying "no" or not replying will result in removal).

Participating
Participating Members are anyone that is interested in volunteering time to the WIA Committee or sub-committees. Participating Members are able to participate in all activities, with the exception of voting and serving in one of the five Committee officer roles.

In order to become a Participating member, you must express your volunteering commitment to the Secretary, who will then add you to the Membership List. Participating Members can withdraw their commitment at any time by notifying the Secretary. Participating Members do not need to be OWASP members.

Membership List
Membership List

=GOVERNANCE=

Operating Model
WIA is a formal Committee of OWASP. WIA is governed by the rules set forth in the OWASP Committees 2.0 Operational Model.

Committee Officers

 * 1) Chair
 * 2) Tanya Janca
 * 3) Duties
 * 4) Open/run the meetings
 * 5) Put items to vote and announce the result
 * 6) Oversee progress of committee activities
 * 7) Participates in fundraising activities/sponsorship acquisition
 * 8) Vice-Chair
 * 9) Loredana Mancini
 * 10) Duties
 * 11) Serve in place of the chair when the chair is not available, temporarily or permanently
 * 12) Confirm and validate results of votes
 * 13) Help the chair oversee progress of committee activities
 * 14) Participates in fundraising activities/sponsorship acquisition
 * 15) Run doodles for upcoming meetings
 * 16) Send out meeting invites
 * 17) Secretary
 * 18) Cathy Hall
 * 19) Duties
 * 20) Maintain the WIA membership list and associated bookkeeping
 * 21) Take attendance/minutes at meetings
 * 22) Create an agenda for each meeting, put out a call to members for agenda items
 * 23) Post agendas and meetings
 * 24) Edit/update committee Wiki page
 * 25) Treasurer
 * 26) Cathy Hall
 * 27) Duties
 * 28) Maintain budget
 * 29) Track income and expenses for all committee activities
 * 30) Report at each meeting the expenditures and incoming revenue for the month and the balance of the fund
 * 31) Check the balance of the WIA budget with the OWASP accountant quarterly
 * 32) Participates in fundraising activities/sponsorship acquisition

Note: Only Voting Members may serve as Committee Officers

Sub-Committee Coordinators

 * 1) Volunteer Coordinator
 * 2) Vandana Verma (Asia), Loredana Mancini (Europe), Wendy Istvanick (North America)
 * 3) Duties
 * 4) Recruit new members for WIA/volunteers for specific events
 * 5) Schedule/train volunteers as needed
 * 6) Provides direction and coordination for volunteers
 * 7) Plan for retention and replacement
 * 8) Support in fundraising activities/sponsorship acquisition
 * 9) Connect with other local active groups in security to create volunteer networking
 * 10) Maintain lessons learned in the volunteer recruiting for the different events to improve the recruiting process
 * 11) Keep informal/formal contacts with all the volunteer to be able to reach them in case of new needs
 * 12) Media Relations Coordinator
 * 13) Katherine Cancelado
 * 14) Duties
 * 15) Maintain list of media contacts
 * 16) Maintain list of media articles mentioning WIA
 * 17) Promote WIA to media
 * 18) Prepare talking points, messaging strategy
 * 19) Work with OWASP Global to issue press releases

Note: All Committee Members may serve as Sub-Committee Coordinators

=2017 ELECTIONS=

Timeline

 * June 23, 2017 (Friday) - Call for Candidates closes
 * June 24, 2017 (Saturday) - Election emails send to voting members
 * July 2, 2017 (Sunday) - Election closes
 * July 3, 2017 (Monday) - Election results announced on WIA list

Committee Officers
Positions can only be filled by Voting Members.

Chair

 * Tanya Janca

Vice Chair

 * Loredana Mancini
 * Cathy Hall

Secretary

 * Cathy Hall

Treasurer

 * Cathy Hall

Sub-Committee Coordinators
Positions can be filled by Voting and Participating Members.

Volunteer Coordinator - Asia

 * Vandana Verma

Volunteer Coordinator - Europe

 * Loredana Mancini

Volunteer Coordinator - North America

 * Wendy Istvanick

Media Relations Coordinator

 * Katherine Cancelado

Ballot
This is the ballot that was sent to Voting Members on June 24, 2017

Dear Voting Members of WIA,

This is your 2017 WIA Ballot. You must respond by Sunday, July 2. On Monday, July 3, I will tally the votes and announce the winners. The candidate with the most vote wins. Votes not received by the deadline will not be counted.

To vote, please reply to me with your candidate selections. You may optionally choose to cc Tiffany Long as an extra ballot counter. And you may optionally choose to "reply all" if you want your vote to be transparent to your fellow Voting Members.

Please choose one candidate for each role. You have the option to choose "None" if you do not want to elect any of the listed candidate(s) for that role. Omitting a vote for a role will cause your vote to not be counted.

For candidates running for multiple roles, if the candidate wins more than one position, they will pick the role they want, and for the other role(s), the runner-up candidate is declared the winner. For roles left empty, the incoming leadership team will decide how best to fill the role.

The candidates for 2017 are as follows:

Chair
 * 1) Tanya Janca
 * 2) None

Vice Chair
 * 1) Loredana Mancini
 * 2) Cathy Hall
 * 3) None

Secretary
 * 1) Cathy Hall
 * 2) None

Treasurer
 * 1) Cathy Hall
 * 2) None

Volunteer Coordinator - Asia
 * 1) Vandana Verma
 * 2) None

Volunteer Coordinator - Europe
 * 1) Loredana Mancini
 * 2) None

Volunteer Coordinator - North America
 * 1) Wendy Istvanick
 * 2) None

Media Relations Coordinator
 * 1) Katherine Cancelado
 * 2) None

Please let me know if you have any questions. Otherwise, I look forward to receiving your votes.

- Bil

Committee Officers
Positions can only be filled by Voting Members.

Chair

 * Tanya Janca

Vice Chair

 * Loredana Mancini

Secretary

 * Cathy Hall

Treasurer

 * Cathy Hall

Sub-Committee Coordinators
Positions can be filled by Voting and Participating Members.

Volunteer Coordinator - Asia

 * Vandana Verma

Volunteer Coordinator - Europe

 * Loredana Mancini

Volunteer Coordinator - North America

 * Wendy Istvanick

Media Relations Coordinator

 * Katherine Cancelado

=PREVIOUS WIA ACTIVITIES=

AppSec EU 2017
Women in AppSec is kicking it up a notch at AppSec EU 2017 and we want YOU to join us! Make sure you stop by during the week to check out our events and to learn more about the group.

Events are free to attend and do not require a conference ticket.

Monday, May 8, 2017 6:00-9:00 pm Networking Session

On Monday 8th May at 6:00 pm in the Waterfront Conference Centre, we will have a group of mentors each give a brief talk about their experience followed by an "unconference" event. During the "unconference" event, we will break into groups to discuss popular technical topics. This will be a fantastic opportunity to engage in mentoring relationships and hear from women in the field. You can sign up for this free event on Meetup.com here:   https://www.meetup.com/OWASP-Belfast/events/238434511/

Thursday, May 11, 2017 7:30-8:45 a.m. Mentoring Breakfast

Join us at our pre-conference WiA breakfast in the Waterfront Conference Centre at 7.30 am on Thursday 11th May. A light breakfast will be provided for table discussions on various topics. This will also be a second opportunity to chat with anyone you didn't get to during the Monday evening event. Details to register for this event will be available soon, it will also be free to attend.

Wondering what to expect?
Organisers Michelle and Claire discuss what you can expect here:

https://drive.google.com/open?id=0B3mw0mZ4CcgtbG5FUDJxbzVqX28

Interested in being a Mentor?
We’re looking for mentors to participate in both events. Both men and women are invited to contribute as mentors. This is the commitment we’re asking for: Let us know if you’re interested in joining us!
 * A picture and bio for the website
 * A time commitment of two hours between the two events
 * 30+ minutes at the networking event
 * 1½ hours at the mentoring breakfast

https://docs.google.com/forms/d/e/1FAIpQLSfy0qx9hnkJiCiceeUDmaq78i9aYXeGsHNv9B95Z_ZeN5Z_KA/viewform

Not sure if you’re interested yet? Provide your email address for updates as they become available.

https://docs.google.com/forms/d/e/1FAIpQLSc2DYBKcGzESX6U8-Syohqvm_g7bLLyTBPaw5E7sUj5KO3O4A/viewform

We look forward to seeing you at AppSec EU 2017!

Meet the EU WIA planning team

 * === Michelle Simpson === Security Consultant at NCC Group
 * === Claire Burn === Field Applications Engineer at Titan-IC
 * === Cathy Hall === Principal Consultant at Sila Solutions Group
 * === Owen Pendelbury === Manager Cyber Risk Services - Penetration Testing @ Deloitte
 * === Zoe Braiterman === Business Studies graduate from Drew University
 * === Wendy Istvanick === Object Tactician at ThoughtWorks
 * === Fiona Collins === IT Security Engineer, Staff at Qualcomm
 * === Bev Corwin === Director of Technology at DDC
 * === Loredana Mancini === Chief Operation Officer at ITWAY
 * === Emily Verwee === Online Project Manager at The Arc of the United States
 * === Tiffany Long === Community Manager at OWASP

AppSec USA 2015
AppSec USA 2015 The Women in AppSec (WIA) program is for all OWASP members who believe that diversity is important to the success of an organization, as well as for women who want to make career connections with like-minded colleagues. We encourage you to attend our session on Thursday at 3:30pm in Room F, featuring the founders of InfoSec Girls, Apoorva Giri and Shruthi Kamath. We also invite you to join us for our networking and “Birds of a Feather” sessions on on Thursday in WIA meeting room. Stop by anytime between 10:00am and 3:30pm to meet other members and learn more about the WIA program. You can also suggest a discussion topic on the sign-up at the room entrance. Sponsorship opportunities for commercial organizations and OWASP chapters are also available.

AppSec USA 2015 Currently, there is an effort to plan activities for AppSec USA 2015. Volunteers are eagerly sought to support the program at AppSec USA! We are especially excited to invite the founders of the InfoSec Girls initiative to the AppSec USA 2015 conference. To bring InfoSec Girls to AppSec USA, we need to raise $7500. We are very close to our goal and know that with the support of the OWASP community, we can easily get there! Donations above and beyond our goal will be used for future WIA programs around the world.  Donate now:

AppSec EU 2015
During AppSec EU there was a panel discussion and workshop supported by the Women in AppSec initiative. Through these sessions we hoped to encourage women to pursue a career in AppSec and help them realize it is an option for them. These sessions was be open to all so we can help build support for the women around us. Learn more here: http://2015.appsec.eu/women-in-application-security

Panel: "Women in AppSec - Making it Happen" During this panel session we discussed what can be done to Make it Happen for Women in AppSec going forward. What have those currently working in the field done to Make it Happen for themselves and other women; what tips and advice do they have to help you do to make a career for yourself or encourage those around you (sister, friend, daughter, etc…) to pursue a career in AppSec? What can we as professionals can do to help encourage girls to go for a career in AppSec?

Workshop During the workshop we introduced female attendees of the conference to what a career in App Sec can involve. We discussed application security and the many career paths available. We hope to build relationships that may lead to a mentoring program for these women.

AppSec USA 2013
Learn more about the program here: http://2013.appsecusa.org/2013/activities/owasp-women-in-application-security-appsec-program/index.html

Previous Women in AppSec Winners
Following their experience at AppSec, winners are encouraged to write a short piece about their experience at the conference and their participation in the Women in AppSec program. Here, they outline their experience with the Women in AppSec Program in their own words.

Carrie Schaper, 2013 Winner

Nancy Lornston, 2013 Winner

Tara Wilson, 2011 Winner

Chandni Bhowmik, 2011 Winner