Difference between revisions of "Chapter Leader Handbook (OLD)"

From OWASP
Jump to: navigation, search
m
Line 1: Line 1:
 
This handbook aims to guide new and experienced OWASP Chapter leaders in starting and maintaining an active chapter community. It outlines items that the [[NYNJMetro|NY/NJ Metro Local Chapter]] has done to be successful in its market.
 
This handbook aims to guide new and experienced OWASP Chapter leaders in starting and maintaining an active chapter community. It outlines items that the [[NYNJMetro|NY/NJ Metro Local Chapter]] has done to be successful in its market.
  
==First Things First==
+
==Identifying the Chapter Board==
On your chapter page, ensure you clearly identify who is on the board of the chapter, the phone numbers for them and email addresses. The local chapter should have a published mailing address (use a PO Box or one of the board member's addresses perhaps).
+
On your chapter page, ensure you clearly identify who is on the board of the chapter, including their phone numbers and/or email addresses. The Local Chapter should have a published mailing address. Use a PO Box or one of the board member's (company's) addresses, perhaps.
  
==How to Generate Interest==
+
==Generating Interest==
* Talk to local .edu and involve the university and its computer science students - you might even get access to the lab!
+
* Talk to local higher education institutions. Involve the university and its computer science students—you might even get access to their lab!
* Talk to your local information security organizations, such as ISSA, ISACA, FBI/Infragard, HTCIA and other local and international orgs., to cross-promote and joint meetings ~ be a guest speaker.
+
* Talk to the local chapters of information security organizations. For example, [http://www.issa.org/ ISSA], [http://www.isaca.org/ ISACA], [http://www.infragard.net/ FBI/Infragard], [http://www.htcia.org/ HTCIA] and other local and international organizations. Cross-promote and/or join meetings, be a guest speaker and host guest speakers.
* Use OWASP chapter mailing lists to alert members of meetings and monthly events.
+
* Use OWASP chapter [http://lists.owasp.org/mailman/listinfo mailing lists] to alert members of meetings and monthly events.
* Conduct a annual survey (use a web form.... what a concept) to get feedback from the mailing list/chapter members what do they want to see in your chapter.
+
* Conduct an annual survey (use a web form) to get feedback from the mailing list/chapter members—what do they want to see in your chapter?
* Ask for help, a successful chapter has several board members (there are no limits) so share the fun and the pain ;)
+
* Ask for help. A successful chapter has several board members (there are no limits) so share the fun and the pain. &smiley;
* Do a local talk about a OWASP project that you have been involved with.
+
* Do a local talk about OWASP [[Projects]] that you have been involved with.
  
==Sample Action Plan to (re)start your Chapter==
+
==(Re-)Starting Your Chapter==
An action plan that you can use is:
+
A sample action plan that you can use is:
* Find a location/venue sponsor for first meeting, this could be a college a business, a restraunt
+
* Find a location/venue sponsor for a first meeting. This could be a college, a business, a restraunt...
* Enable sponsorship for refreshments from a local source
+
* Enable sponsorship for refreshments from a local source.
* Always cover OWASP mission, goals and explain the web application security problem in a general way to attract a large crowd and to educate the new members.
+
* Always cover the OWASP [[About OWASP|mission and goals]]. Explain the web application security problem in a general way to attract a large crowd and to educate the new members and guests.
* Send out the invitation and also try to let other local security organizations to announce the meeting as well. These can be local ISSA, ASIS, Infragard or ISACA chapters.  
+
* Send out an invitation/announcement and also try to let other local security organizations know about the meeting as well. These can be local ISSA, ASIS, Infragard, ISACA or other chapters.
* Try to get some local press attention free press is great  
+
* Try to get some local press attention—free press is great.
* Hook up with government and academic contacts in your area to relay the invitation and generate some interest.  
+
* Hook up with government and academic contacts in your area to relay the invitation and generate some interest.
* Find out what companies are active in this domain in your area in order to raise their interest and support.  
+
* Find out what companies are active in this domain in your area in order to raise their interest and support.
* Network, network, network, …
+
* Meeting invitations/announcements should contain a request to forward it to other interested parties.
* The invitation should contain a request to forward it to other interested parties.  
+
* Be sure to send out this invitation at least one month before the meeting.
* Be sure to send out this invitation at least one month before the meeting  
+
* Network, network, network!
...
+
  
=Chapter Meetings=
+
Etc.
==How many Meetings should be Organized yearly?==
+
This depends on the activity level of the local OWASP members. There should be minimum 4 events per year to be a active chapter.
+
  
==Chapter Meeting Check List==
+
==Chapter Meetings==
a. PRE EVENT - Obtain primary sponsor for meeting location
+
===Meeting Frequency===
 +
This depends on the activity level of the local OWASP community and number of members. There should be a minimum of four events per year to be considered an active chapter.
  
b. PRE EVENT - Obtain co-sponsorship(s) to cover event expenses - encourage raffle item
+
===Chapter Meeting Checklist===
 +
Pre-event:
 +
# Obtain primary sponsor for meeting location.
 +
# Obtain co-sponsorship(s) to cover event expenses; encourage raffle item.
 +
# Obtain educational topics/speakers for the event with an abstract and bio.
 +
# Update the RSVP form for each meeting.
 +
# Update the OWASP web site to reflect the when, where, who...
 +
# Communicate via email to the mailing list.
 +
# Communicate to other organizations—ISSA, ISACA, Infragard, etc.—to raise awareness, as well as news media, blogs and other mailing lists.
 +
# Line up the refreshment logistics based on RSVP'd attendees.
 +
# Pay for the expenses (hopefully money comes from sponsor).
  
c. PRE EVENT - Obtain educational topics/speakers for the event with a abstract and bio
+
At-event:
 +
# Arrive early, set-up meeting location.
 +
# Pre-flight check: A/V, computers, final approval of speaker's PowerPoint (no sales pitch).
 +
# Execute event. (Badges, A/V, etc.)
 +
# Questionnaire/survey/feedback form—use a survey web form (e.g., [http://www.formsite.com/ formsite.com], [http://www.surveymonkey.com/ surveymonkey.com], [http://www.zoomerang.com/ zoomerang.com], etc.) or build your own.
  
e. PRE EVENT - Update the RSVP form for each meeting
+
Post-event:
 +
# Send out CPE credits to attendees that requested them.
 +
# Review event and ways to improve with the board members.
 +
# Select topic focus for next event based on feedback from attendees or survey.
 +
# Money in, money out—balance.
  
f. PRE EVENT - Update the OWASP website to reflect that when, where, who
+
And repeat.
  
g. PRE EVENT x4 - Communicate via email to the mailing list
+
===Chapter Meeting Template===
 +
You can use this "template" on your chapter page for listing meeting details:
 +
====WHEN====
 +
''Fill in date and timeframe''
 +
====WHERE====
 +
''Fill in meeting place''
 +
====AGENDA====
 +
* 18h00 - 18h30: Networking / Food, Drinks
 +
* 18h30 - 19h00: ''Fill in''
 +
* 19h00 - 19h30: ''Fill in''
  
h. PRE EVENT x2 -Communicate to other orgs - ISSA, ISACA, INFRAGARD etc... to raise awareness as well as news media, blogs and other
+
Etc.
mailing lists.
+
  
i. PRE EVENT - Line up the refreshment logistics based on RSVP #
+
==Frequently Asked Questions==
 +
===''I don't know the list of members.===
 +
You can get the membership for your chapter from the administrative interface for your mailing list. If you've forgotten your password, contact [mailto:larry.casey@owasp.org Larry Casey] to reset it for you. If you need to contact all the members, you can send a message to the mailing list, and they should all receive it.
  
j. PRE/EVENT - Pay for the expenses (money has to come from (b))
+
===''How is a chapter funded, from the membership fees?''===
 +
Chapters are not funded from membership fees. Chapter leaders should seek corporate/local sponsors to cover expenses.
  
k. EVENT - Arrive early set-up meeting location
+
===''Does subscribing to a chapter mailing list mean official membership in OWASP?''===
 +
Membership details can be found on the [[Membership]] page.
  
l.  EVENT - Pre-flight check A/V, Computers, Final APPROVAL of Speaker
+
===''How do I update my OWASP Chapter page?''===
PowerPoint's (no sales pitch)
+
First, create your wiki account on the [[:Special:Userlogin|login]] page. Then go to your [[:Category:OWASP Chapter|chapter]] page and click the edit link. You can use the meeting template above to list your next chapter meeting details.
  
m. EVENT - <EXECUTE EVENT> (Badges/AV/Misc.)
+
===''I have a great idea to help other chapters!''===
 +
Log in to the wiki and edit this page. Or send an email to the [https://lists.owasp.org/mailman/listinfo/owasp-chapters chapter leaders mail list]. You ''are'' on that list, right?
  
n. EVENT -Questionnaire/Survey/Feedback form - Use a survey type webform (example: www.formsite.com or build your own you g33k)
+
==Further Help==
 
+
If you have any questions you can simply email [mailto:owasp@owasp.org owasp@owasp.org] or post a message to the [https://lists.owasp.org/mailman/listinfo/owasp-chapters chapter leaders mail list].
o. POST-EVENT - Send out CPE credits to attendees that requested them.
+
 
+
p. POST-EVENT - Review event and ways to improve with the other board members.
+
 
+
q. POST-EVENT - Select topic focus for next event based on feedback from attendees or survey
+
 
+
r. POST-EVENT - Money in - Money Out, Balance
+
 
+
r - REPEAT ABOVE
+
 
+
==Chapter Meeting Template==
+
This template you can use on your chapter page for listing chapter meeting details:
+
===WHEN===
+
''Fill in date and timing''
+
===WHERE===
+
''Fill in place''
+
===AGENDA===
+
* 18h00 - 18h30: Networking / Food, Drinks <BR>
+
* 18h20 - 18h40: ''Fill in''<BR>
+
&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;'''tbd'''<BR>
+
* 18h45 – 19h00: ''Fill in''<BR>
+
&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;'''tbd'''<BR>
+
* 19h00 - 19h55: ''Fill in''<BR>
+
&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;'''tbd'''<BR>
+
&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;''Presentation + Discussion?''<BR>
+
*20h05 - 21h00: ''Fill in''<BR>
+
&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;'''tbd<BR>
+
&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;''Presentation + Discussion?''<BR>
+
 
+
=Frequently Asked Questions=
+
==''I don't know the list of members. Can you advise how I can stay updated about this?''==
+
You can get the membership for your chapter from the administrative interface for your mailing list.  If you've forgotten your password, please contact Larry Casey (larry.casey@owasp.org) to reset it for you.
+
If you need to contact all the members, you can send a message to the mailing list, and they should all receive it.
+
==''I seem to have forgotten the list admin passwd''==
+
If you've forgotten your password, please contact Larry Casey (larry.casey@owasp.org) to reset it for you.
+
==''How is a chapter funded from the membership fees?''==
+
Chapters are not funded from membership fees, although OWASP is considering just how to share a portion of the membership fees from members that are affiliated with a particular chapter.
+
==''Does enrollment to the mailing list mean official membership to OWASP?''==
+
Membership details are here - http://www.owasp.org/index.php/Membership.
+
=='' How do I update my OWASP Chapter page?''==
+
First, create your Wikimedia account. Then go to your chapter page and hit the edit link. You can use the Chapter Meeting Template above to list your next chapter meeting details.
+
 
+
=='' I have a great idea that has worked to help other chapters''==
+
Well you just need to login to the wiki and edit this page, you may then want to send a email to the chapter leaders email list... you are on that list right?
+
 
+
If you have any questions you can simply email owasp@owasp.org or contact one of the other chapter leaders.
+

Revision as of 22:19, 26 July 2008

This handbook aims to guide new and experienced OWASP Chapter leaders in starting and maintaining an active chapter community. It outlines items that the NY/NJ Metro Local Chapter has done to be successful in its market.

Contents

Identifying the Chapter Board

On your chapter page, ensure you clearly identify who is on the board of the chapter, including their phone numbers and/or email addresses. The Local Chapter should have a published mailing address. Use a PO Box or one of the board member's (company's) addresses, perhaps.

Generating Interest

  • Talk to local higher education institutions. Involve the university and its computer science students—you might even get access to their lab!
  • Talk to the local chapters of information security organizations. For example, ISSA, ISACA, FBI/Infragard, HTCIA and other local and international organizations. Cross-promote and/or join meetings, be a guest speaker and host guest speakers.
  • Use OWASP chapter mailing lists to alert members of meetings and monthly events.
  • Conduct an annual survey (use a web form) to get feedback from the mailing list/chapter members—what do they want to see in your chapter?
  • Ask for help. A successful chapter has several board members (there are no limits) so share the fun and the pain. &smiley;
  • Do a local talk about OWASP Projects that you have been involved with.

(Re-)Starting Your Chapter

A sample action plan that you can use is:

  • Find a location/venue sponsor for a first meeting. This could be a college, a business, a restraunt...
  • Enable sponsorship for refreshments from a local source.
  • Always cover the OWASP mission and goals. Explain the web application security problem in a general way to attract a large crowd and to educate the new members and guests.
  • Send out an invitation/announcement and also try to let other local security organizations know about the meeting as well. These can be local ISSA, ASIS, Infragard, ISACA or other chapters.
  • Try to get some local press attention—free press is great.
  • Hook up with government and academic contacts in your area to relay the invitation and generate some interest.
  • Find out what companies are active in this domain in your area in order to raise their interest and support.
  • Meeting invitations/announcements should contain a request to forward it to other interested parties.
  • Be sure to send out this invitation at least one month before the meeting.
  • Network, network, network!

Etc.

Chapter Meetings

Meeting Frequency

This depends on the activity level of the local OWASP community and number of members. There should be a minimum of four events per year to be considered an active chapter.

Chapter Meeting Checklist

Pre-event:

  1. Obtain primary sponsor for meeting location.
  2. Obtain co-sponsorship(s) to cover event expenses; encourage raffle item.
  3. Obtain educational topics/speakers for the event with an abstract and bio.
  4. Update the RSVP form for each meeting.
  5. Update the OWASP web site to reflect the when, where, who...
  6. Communicate via email to the mailing list.
  7. Communicate to other organizations—ISSA, ISACA, Infragard, etc.—to raise awareness, as well as news media, blogs and other mailing lists.
  8. Line up the refreshment logistics based on RSVP'd attendees.
  9. Pay for the expenses (hopefully money comes from sponsor).

At-event:

  1. Arrive early, set-up meeting location.
  2. Pre-flight check: A/V, computers, final approval of speaker's PowerPoint (no sales pitch).
  3. Execute event. (Badges, A/V, etc.)
  4. Questionnaire/survey/feedback form—use a survey web form (e.g., formsite.com, surveymonkey.com, zoomerang.com, etc.) or build your own.

Post-event:

  1. Send out CPE credits to attendees that requested them.
  2. Review event and ways to improve with the board members.
  3. Select topic focus for next event based on feedback from attendees or survey.
  4. Money in, money out—balance.

And repeat.

Chapter Meeting Template

You can use this "template" on your chapter page for listing meeting details:

WHEN

Fill in date and timeframe

WHERE

Fill in meeting place

AGENDA

  • 18h00 - 18h30: Networking / Food, Drinks
  • 18h30 - 19h00: Fill in
  • 19h00 - 19h30: Fill in

Etc.

Frequently Asked Questions

I don't know the list of members.

You can get the membership for your chapter from the administrative interface for your mailing list. If you've forgotten your password, contact Larry Casey to reset it for you. If you need to contact all the members, you can send a message to the mailing list, and they should all receive it.

How is a chapter funded, from the membership fees?

Chapters are not funded from membership fees. Chapter leaders should seek corporate/local sponsors to cover expenses.

Does subscribing to a chapter mailing list mean official membership in OWASP?

Membership details can be found on the Membership page.

How do I update my OWASP Chapter page?

First, create your wiki account on the login page. Then go to your chapter page and click the edit link. You can use the meeting template above to list your next chapter meeting details.

I have a great idea to help other chapters!

Log in to the wiki and edit this page. Or send an email to the chapter leaders mail list. You are on that list, right?

Further Help

If you have any questions you can simply email owasp@owasp.org or post a message to the chapter leaders mail list.