Difference between revisions of "Chapter Leader Handbook (OLD)"

From OWASP
Jump to: navigation, search
m
 
(16 intermediate revisions by 5 users not shown)
Line 1: Line 1:
=Chapter Leader Handbook=
+
[[Category:Chapter_Handbook]]
This handbook aims to guide new and experienced chapter leaders in leading an active chapter community.
+
  
==How to Generate Interest==
+
'''Note: this is the OLD chapter handbook. The new [[:Category:Chapter_Handbook|chapter handbook]] is being written by the [[Global Chapter Committee|global chapter committee]] and expected to be ready in Q2 2009.
* Talk to local .edu and involve the university and its computer science students.
+
'''
* Talk to your local information security organizations, such as ISSA, ISACA, FBI/Infragard, HTCIA and other local and international orgs.
+
* Use OWASP chapter mailing lists to alert members of meetings
+
* Conduct a annual survey (use a web form.... what a concept) to get feedback from the mailing list/chapter members what do they want to see?
+
* Do a local talk about a OWASP project that you have been involved with.
+
  
==Sample Action Plan to (re)start your Chapter==
+
This handbook aims to guide new and experienced OWASP Chapter leaders in starting and maintaining an active chapter community. It outlines items that the [[NYNJMetro|NY/NJ Metro Local Chapter]] has done to be successful in its market.
An action plan that you can use is:
+
* Find a location sponsor for first meeting
+
* Enable sponsorship for refreshments from a local source
+
* Always cover OWASP mission, goals and explain the web application security problem in a general way to attract a large crowd.  
+
* send out the invitation and also try to let other local security organizations to announce the meeting as well. These can be local ISSA or ISACA chapters.
+
* try to get some local press attention
+
* hook up with government and academic contacts in your area to relay the invitation and generate some interest.
+
* find out what companies are active in this domain in your area in order to raise their interest and support.
+
* network, network, network, …
+
* The invitation should contain a request to forward it to other interested parties.
+
* be sure to send out this invitation at least one month before the meeting
+
...
+
  
=Chapter Meetings=
+
==Identifying the Chapter Board==
==How many Meetings should be Organized yearly?==
+
On your chapter page, ensure you clearly identify who is on the board of the chapter, including their phone numbers and/or email addresses. The Local Chapter should have a published mailing address. Use a PO Box or one of the board member's (company's) addresses, perhaps.
This depends on the activity level of the local OWASP members. There should be minimum 4 events per year to be a active chapter.
+
  
==Chapter Meeting Check List==
+
It is highly recommended to have at a min. (2) chapter leaders and there are is no limit... in NYC there are 10 chapter leaders and each have a role in the success of the chapter so work with your peers being a chapter leader requires 10+ hrs per month and we are all BUSY
a. PRE EVENT - Obtain primary sponsor for meeting location
+
  
b. PRE EVENT - Obtain co-sponsorship(s) to cover event expenses - encourage raffle item
+
==Generating Interest==
 +
* Talk to local higher education institutions. Involve the university and its computer science students—you might even get access to their lab!
 +
* Talk to the local chapters of information security organizations. For example, [http://www.issa.org/ ISSA], [http://www.isaca.org/ ISACA], [http://www.infragard.net/ FBI/Infragard], [http://www.htcia.org/ HTCIA] and other local and international organizations. Cross-promote and/or join meetings, be a guest speaker and host guest speakers.
 +
* Use OWASP chapter [http://lists.owasp.org/mailman/listinfo mailing lists] to alert members of meetings and monthly events.
 +
* Conduct an annual survey (use a web form) to get feedback from the mailing list/chapter members—what do they want to see in your chapter?
 +
* Ask for help. A successful chapter has several board members (there are no limits) so share the fun and the pain. &smiley;
 +
* Do a local talk about OWASP [[Projects]] that you have been involved with.
  
c. PRE EVENT - Obtain educational topics/speakers for the event with a abstract and bio
+
==(Re-)Starting Your Chapter==
 +
A sample action plan that you can use is:
 +
* Find a location/venue sponsor for a first meeting. This could be a college, a business, a restraunt...
 +
* Enable sponsorship for refreshments from a local source.
 +
* Always cover the OWASP [[About OWASP|mission and goals]]. Explain the web application security problem in a general way to attract a large crowd and to educate the new members and guests.
 +
* Send out an invitation/announcement and also try to let other local security organizations know about the meeting as well. These can be local ISSA, ASIS, Infragard, ISACA or other chapters.
 +
* Try to get some local press attention—free press is great.
 +
* Hook up with government and academic contacts in your area to relay the invitation and generate some interest.
 +
* Find out what companies are active in this domain in your area in order to raise their interest and support.
 +
* Meeting invitations/announcements should contain a request to forward it to other interested parties.
 +
* Be sure to send out this invitation at least one month before the meeting.
 +
* Network, network, network!
  
e. PRE EVENT - Update the RSVP form for each meeting
+
Etc.
  
f.  PRE EVENT - Update the OWASP website to reflect that when, where, who
+
==Chapter Meetings==
 +
===Meeting Frequency===
 +
This depends on the activity level of the local OWASP community and number of members. There should be a minimum of four events per year to be considered an active chapter.
  
g. PRE EVENT x4 - Communicate via email to the mailing list
+
===Chapter Meeting Checklist===
 +
Pre-event:
 +
# Obtain primary sponsor for meeting location.
 +
# Obtain co-sponsorship(s) to cover event expenses; encourage raffle item. <b> Use the DONATE NOW button on your chapter page </b>
 +
# Obtain educational topics/speakers for the event with an abstract and bio.
 +
# Update the RSVP form for each meeting.
 +
# Update the OWASP web site to reflect the when, where, who...
 +
# Communicate via email to the mailing list.
 +
# Communicate to other organizations&mdash;ISSA, ISACA, Infragard, etc.&mdash;to raise awareness, as well as news media, blogs and other mailing lists.
 +
# Line up the refreshment logistics based on RSVP'd attendees.
 +
# Pay for the expenses and submit expenses to Kate Hartman to get your money back.... use a credit card that gives you points ;)
  
h. PRE EVENT x2 -Communicate to other orgs - ISSA, ISACA, INFRAGARD etc... to raise awareness as well as news media, blogs and other
+
At-event:
mailing lists.
+
# Arrive early, set-up meeting location.
 +
# Pre-flight check: A/V, computers, final approval of speaker's PowerPoint (no sales pitch).
 +
# Execute event. (Badges, A/V, etc.)
 +
# Questionnaire/survey/feedback form&mdash;use a survey web form (e.g., [http://www.formsite.com/ formsite.com], [http://www.surveymonkey.com/ surveymonkey.com], [http://www.zoomerang.com/ zoomerang.com], etc.) or build your own.
  
i.  PRE EVENT - Line up the refreshment logistics based on RSVP #
+
Post-event:
 +
# Send out CPE credits to attendees that requested them or explain to them that ISC2 as a example is a self certify
 +
# Review event and ways to improve with the board members.
 +
# Select topic focus for next event based on feedback from attendees or survey.
 +
# What was good, what was bad?
  
j. PRE/EVENT - Pay for the expenses (money has to come from (b))
+
And repeat.
  
k. EVENT - Arrive early set-up meeting location
+
===Chapter Meeting Template===
 +
You can use this "template" on your chapter page for listing meeting details:
  
l.  EVENT - Pre-flight check A/V, Computers, Final APPROVAL of Speaker
+
<div style="text-indent:20px">
PowerPoint's (no sales pitch)
+
====WHEN====
 +
''Fill in date and timeframe''
 +
====WHERE====
 +
''Fill in meeting place''
 +
====AGENDA====
 +
* 18h00 - 18h30: Networking / Food, Drinks
 +
* 18h30 - 19h00: ''Fill in''
 +
* 19h00 - 19h30: ''Fill in''
  
m. EVENT - <EXECUTE EVENT> (Badges/AV/Misc.)
+
</div>
  
n. EVENT -Questionnaire/Survey/Feedback form - Use a survey type webform (example: www.formsite.com or build your own you g33k)
+
Etc.
  
o. POST-EVENT - Send out CPE credits to attendees that requested them.
+
==Frequently Asked Questions==
 +
===''I don't know the list of members.===
 +
You can get the membership for your chapter from the administrative interface for your mailing list. If you've forgotten your password, contact [mailto:kate.hartmann@owasp.org Kate Hartmann] to reset it for you. If you need to contact all the members, you can send a message to the mailing list, and they should all receive it.
  
p. POST-EVENT - Review event and ways to improve with the other board members.
+
===''Does subscribing to a chapter mailing list mean official membership in OWASP?''===
 +
No, Membership details can be found on the [[Membership]] page.
  
q. POST-EVENT - Select topic focus for next event based on feedback from attendees or survey
+
===''How do I update my OWASP Chapter page?''===
 +
First, create your wiki account on the [[:Special:Userlogin|login]] page. Then go to your [[:Category:OWASP Chapter|chapter]] page and click the edit link. You can use the meeting template above to list your next chapter meeting details.
  
r. POST-EVENT - Money in - Money Out, Balance
+
===''I have a great idea to help other chapters!''===
 +
Log in to the wiki and edit this page. Or send an email to the [https://lists.owasp.org/mailman/listinfo/owasp-chapters chapter leaders mail list]. You ''are'' on that list, right?
  
r - REPEAT ABOVE
+
==Further Help==
 +
If you have any questions you can simply email [mailto:owasp@owasp.org owasp@owasp.org] or post a message to the [https://lists.owasp.org/mailman/listinfo/owasp-chapters chapter leaders mail list].
  
==Chapter Meeting Template==
+
[[Category:Chapter Resources]]
This template you can use on your chapter page for listing chapter meeting details:
+
===WHEN===
+
''Fill in date and timing''
+
===WHERE===
+
''Fill in place''
+
===AGENDA===
+
* 18h00 - 18h30: Networking / Food, Drinks <BR>
+
* 18h20 - 18h40: ''Fill in''<BR>
+
&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;'''tbd'''<BR>
+
* 18h45 – 19h00: ''Fill in''<BR>
+
&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;'''tbd'''<BR>
+
* 19h00 - 19h55: ''Fill in''<BR>
+
&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;'''tbd'''<BR>
+
&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;''Presentation + Discussion?''<BR>
+
*20h05 - 21h00: ''Fill in''<BR>
+
&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;'''tbd<BR>
+
&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;''Presentation + Discussion?''<BR>
+
 
+
=Frequently Asked Questions=
+
==''I don't know the list of members. Can you advise how I can stay updated about this?''==
+
You can get the membership for your chapter from the administrative interface for your mailing list.  If you've forgotten your password, please contact Larry Casey (larry.casey@owasp.org) to reset it for you.
+
If you need to contact all the members, you can send a message to the mailing list, and they should all receive it.
+
==''I seem to have forgotten the list admin passwd''==
+
If you've forgotten your password, please contact Larry Casey (larry.casey@owasp.org) to reset it for you.
+
==''How is a chapter funded from the membership fees?''==
+
Chapters are not funded from membership fees, although OWASP is considering just how to share a portion of the membership fees from members that are affiliated with a particular chapter.
+
==''Does enrollment to the mailing list mean official membership to OWASP?''==
+
Membership details are here - http://www.owasp.org/index.php/Membership.
+
=='' How do I update my OWASP Chapter page?''==
+
First, create your Wikimedia account. Then go to your chapter page and hit the edit link. You can use the Chapter Meeting Template above to list your next chapter meeting details.
+

Latest revision as of 07:27, 27 May 2009


Note: this is the OLD chapter handbook. The new chapter handbook is being written by the global chapter committee and expected to be ready in Q2 2009.

This handbook aims to guide new and experienced OWASP Chapter leaders in starting and maintaining an active chapter community. It outlines items that the NY/NJ Metro Local Chapter has done to be successful in its market.

Contents

Identifying the Chapter Board

On your chapter page, ensure you clearly identify who is on the board of the chapter, including their phone numbers and/or email addresses. The Local Chapter should have a published mailing address. Use a PO Box or one of the board member's (company's) addresses, perhaps.

It is highly recommended to have at a min. (2) chapter leaders and there are is no limit... in NYC there are 10 chapter leaders and each have a role in the success of the chapter so work with your peers being a chapter leader requires 10+ hrs per month and we are all BUSY

Generating Interest

  • Talk to local higher education institutions. Involve the university and its computer science students—you might even get access to their lab!
  • Talk to the local chapters of information security organizations. For example, ISSA, ISACA, FBI/Infragard, HTCIA and other local and international organizations. Cross-promote and/or join meetings, be a guest speaker and host guest speakers.
  • Use OWASP chapter mailing lists to alert members of meetings and monthly events.
  • Conduct an annual survey (use a web form) to get feedback from the mailing list/chapter members—what do they want to see in your chapter?
  • Ask for help. A successful chapter has several board members (there are no limits) so share the fun and the pain. &smiley;
  • Do a local talk about OWASP Projects that you have been involved with.

(Re-)Starting Your Chapter

A sample action plan that you can use is:

  • Find a location/venue sponsor for a first meeting. This could be a college, a business, a restraunt...
  • Enable sponsorship for refreshments from a local source.
  • Always cover the OWASP mission and goals. Explain the web application security problem in a general way to attract a large crowd and to educate the new members and guests.
  • Send out an invitation/announcement and also try to let other local security organizations know about the meeting as well. These can be local ISSA, ASIS, Infragard, ISACA or other chapters.
  • Try to get some local press attention—free press is great.
  • Hook up with government and academic contacts in your area to relay the invitation and generate some interest.
  • Find out what companies are active in this domain in your area in order to raise their interest and support.
  • Meeting invitations/announcements should contain a request to forward it to other interested parties.
  • Be sure to send out this invitation at least one month before the meeting.
  • Network, network, network!

Etc.

Chapter Meetings

Meeting Frequency

This depends on the activity level of the local OWASP community and number of members. There should be a minimum of four events per year to be considered an active chapter.

Chapter Meeting Checklist

Pre-event:

  1. Obtain primary sponsor for meeting location.
  2. Obtain co-sponsorship(s) to cover event expenses; encourage raffle item. Use the DONATE NOW button on your chapter page
  3. Obtain educational topics/speakers for the event with an abstract and bio.
  4. Update the RSVP form for each meeting.
  5. Update the OWASP web site to reflect the when, where, who...
  6. Communicate via email to the mailing list.
  7. Communicate to other organizations—ISSA, ISACA, Infragard, etc.—to raise awareness, as well as news media, blogs and other mailing lists.
  8. Line up the refreshment logistics based on RSVP'd attendees.
  9. Pay for the expenses and submit expenses to Kate Hartman to get your money back.... use a credit card that gives you points ;)

At-event:

  1. Arrive early, set-up meeting location.
  2. Pre-flight check: A/V, computers, final approval of speaker's PowerPoint (no sales pitch).
  3. Execute event. (Badges, A/V, etc.)
  4. Questionnaire/survey/feedback form—use a survey web form (e.g., formsite.com, surveymonkey.com, zoomerang.com, etc.) or build your own.

Post-event:

  1. Send out CPE credits to attendees that requested them or explain to them that ISC2 as a example is a self certify
  2. Review event and ways to improve with the board members.
  3. Select topic focus for next event based on feedback from attendees or survey.
  4. What was good, what was bad?

And repeat.

Chapter Meeting Template

You can use this "template" on your chapter page for listing meeting details:

WHEN

Fill in date and timeframe

WHERE

Fill in meeting place

AGENDA

  • 18h00 - 18h30: Networking / Food, Drinks
  • 18h30 - 19h00: Fill in
  • 19h00 - 19h30: Fill in

Etc.

Frequently Asked Questions

I don't know the list of members.

You can get the membership for your chapter from the administrative interface for your mailing list. If you've forgotten your password, contact Kate Hartmann to reset it for you. If you need to contact all the members, you can send a message to the mailing list, and they should all receive it.

Does subscribing to a chapter mailing list mean official membership in OWASP?

No, Membership details can be found on the Membership page.

How do I update my OWASP Chapter page?

First, create your wiki account on the login page. Then go to your chapter page and click the edit link. You can use the meeting template above to list your next chapter meeting details.

I have a great idea to help other chapters!

Log in to the wiki and edit this page. Or send an email to the chapter leaders mail list. You are on that list, right?

Further Help

If you have any questions you can simply email owasp@owasp.org or post a message to the chapter leaders mail list.