Difference between revisions of "Chapter Leader Handbook (OLD)"

From OWASP
Jump to: navigation, search
m
 
(15 intermediate revisions by 5 users not shown)
Line 1: Line 1:
=Chapter Leader Handbook=
+
[[Category:Chapter_Handbook]]
This handbook aims to guide new and experienced chapter leaders in leading an active chapter community and outlines items that NY/NJ Metro has done to be successful in that market.
+
  
1. On your chapter page, ensure you clearly identify who is on the board of the chapter, the phone numbers for them and email addresses. The local chapter should have a published mailing address (use a PO Box or one of the board members addresses perhaps.
+
'''Note: this is the OLD chapter handbook. The new [[:Category:Chapter_Handbook|chapter handbook]] is being written by the [[Global Chapter Committee|global chapter committee]] and expected to be ready in Q2 2009.
 +
'''
  
==How to Generate Interest==
+
This handbook aims to guide new and experienced OWASP Chapter leaders in starting and maintaining an active chapter community. It outlines items that the [[NYNJMetro|NY/NJ Metro Local Chapter]] has done to be successful in its market.
* Talk to local .edu and involve the university and its computer science students - you might even get access to the lab!
+
* Talk to your local information security organizations, such as ISSA, ISACA, FBI/Infragard, HTCIA and other local and international orgs., to cross-promote and joint meetings ~ be a guest speaker.
+
* Use OWASP chapter mailing lists to alert members of meetings and monthly events.
+
* Conduct a annual survey (use a web form.... what a concept) to get feedback from the mailing list/chapter members what do they want to see in your chapter.
+
* Ask for help, a successful chapter has several board members (there are no limits) so share the fun and the pain ;)
+
* Do a local talk about a OWASP project that you have been involved with.
+
  
==Sample Action Plan to (re)start your Chapter==
+
==Identifying the Chapter Board==
An action plan that you can use is:
+
On your chapter page, ensure you clearly identify who is on the board of the chapter, including their phone numbers and/or email addresses. The Local Chapter should have a published mailing address. Use a PO Box or one of the board member's (company's) addresses, perhaps.
* Find a location/venue sponsor for first meeting, this could be a college a business, a restraunt
+
* Enable sponsorship for refreshments from a local source
+
* Always cover OWASP mission, goals and explain the web application security problem in a general way to attract a large crowd and to educate the new members.
+
* Send out the invitation and also try to let other local security organizations to announce the meeting as well. These can be local ISSA, ASIS, Infragard or ISACA chapters.
+
* Try to get some local press attention free press is great
+
* Hook up with government and academic contacts in your area to relay the invitation and generate some interest.
+
* Find out what companies are active in this domain in your area in order to raise their interest and support.  
+
* Network, network, network, …
+
* The invitation should contain a request to forward it to other interested parties.  
+
* Be sure to send out this invitation at least one month before the meeting
+
...
+
  
=Chapter Meetings=
+
It is highly recommended to have at a min. (2) chapter leaders and there are is no limit... in NYC there are 10 chapter leaders and each have a role in the success of the chapter so work with your peers being a chapter leader requires 10+ hrs per month and we are all BUSY
==How many Meetings should be Organized yearly?==
+
This depends on the activity level of the local OWASP members. There should be minimum 4 events per year to be a active chapter.
+
  
==Chapter Meeting Check List==
+
==Generating Interest==
a. PRE EVENT - Obtain primary sponsor for meeting location
+
* Talk to local higher education institutions. Involve the university and its computer science students—you might even get access to their lab!
 +
* Talk to the local chapters of information security organizations. For example, [http://www.issa.org/ ISSA], [http://www.isaca.org/ ISACA], [http://www.infragard.net/ FBI/Infragard], [http://www.htcia.org/ HTCIA] and other local and international organizations. Cross-promote and/or join meetings, be a guest speaker and host guest speakers.
 +
* Use OWASP chapter [http://lists.owasp.org/mailman/listinfo mailing lists] to alert members of meetings and monthly events.
 +
* Conduct an annual survey (use a web form) to get feedback from the mailing list/chapter members—what do they want to see in your chapter?
 +
* Ask for help. A successful chapter has several board members (there are no limits) so share the fun and the pain. &smiley;
 +
* Do a local talk about OWASP [[Projects]] that you have been involved with.
  
b. PRE EVENT - Obtain co-sponsorship(s) to cover event expenses - encourage raffle item
+
==(Re-)Starting Your Chapter==
 +
A sample action plan that you can use is:
 +
* Find a location/venue sponsor for a first meeting. This could be a college, a business, a restraunt...
 +
* Enable sponsorship for refreshments from a local source.
 +
* Always cover the OWASP [[About OWASP|mission and goals]]. Explain the web application security problem in a general way to attract a large crowd and to educate the new members and guests.
 +
* Send out an invitation/announcement and also try to let other local security organizations know about the meeting as well. These can be local ISSA, ASIS, Infragard, ISACA or other chapters.
 +
* Try to get some local press attention—free press is great.
 +
* Hook up with government and academic contacts in your area to relay the invitation and generate some interest.
 +
* Find out what companies are active in this domain in your area in order to raise their interest and support.
 +
* Meeting invitations/announcements should contain a request to forward it to other interested parties.
 +
* Be sure to send out this invitation at least one month before the meeting.
 +
* Network, network, network!
  
c. PRE EVENT - Obtain educational topics/speakers for the event with a abstract and bio
+
Etc.
  
e. PRE EVENT - Update the RSVP form for each meeting
+
==Chapter Meetings==
 +
===Meeting Frequency===
 +
This depends on the activity level of the local OWASP community and number of members. There should be a minimum of four events per year to be considered an active chapter.
  
f. PRE EVENT - Update the OWASP website to reflect that when, where, who
+
===Chapter Meeting Checklist===
 +
Pre-event:
 +
# Obtain primary sponsor for meeting location.
 +
# Obtain co-sponsorship(s) to cover event expenses; encourage raffle item. <b> Use the DONATE NOW button on your chapter page </b>
 +
# Obtain educational topics/speakers for the event with an abstract and bio.
 +
# Update the RSVP form for each meeting.
 +
# Update the OWASP web site to reflect the when, where, who...
 +
# Communicate via email to the mailing list.
 +
# Communicate to other organizations&mdash;ISSA, ISACA, Infragard, etc.&mdash;to raise awareness, as well as news media, blogs and other mailing lists.
 +
# Line up the refreshment logistics based on RSVP'd attendees.
 +
# Pay for the expenses and submit expenses to Kate Hartman to get your money back.... use a credit card that gives you points ;)
  
g. PRE EVENT x4 - Communicate via email to the mailing list
+
At-event:
 +
# Arrive early, set-up meeting location.
 +
# Pre-flight check: A/V, computers, final approval of speaker's PowerPoint (no sales pitch).
 +
# Execute event. (Badges, A/V, etc.)
 +
# Questionnaire/survey/feedback form&mdash;use a survey web form (e.g., [http://www.formsite.com/ formsite.com], [http://www.surveymonkey.com/ surveymonkey.com], [http://www.zoomerang.com/ zoomerang.com], etc.) or build your own.
  
h. PRE EVENT x2 -Communicate to other orgs - ISSA, ISACA, INFRAGARD etc... to raise awareness as well as news media, blogs and other
+
Post-event:
mailing lists.
+
# Send out CPE credits to attendees that requested them or explain to them that ISC2 as a example is a self certify
 +
# Review event and ways to improve with the board members.
 +
# Select topic focus for next event based on feedback from attendees or survey.
 +
# What was good, what was bad?
  
i. PRE EVENT - Line up the refreshment logistics based on RSVP #
+
And repeat.
  
j.  PRE/EVENT - Pay for the expenses (money has to come from (b))
+
===Chapter Meeting Template===
 +
You can use this "template" on your chapter page for listing meeting details:
  
k. EVENT - Arrive early set-up meeting location
+
<div style="text-indent:20px">
 +
====WHEN====
 +
''Fill in date and timeframe''
 +
====WHERE====
 +
''Fill in meeting place''
 +
====AGENDA====
 +
* 18h00 - 18h30: Networking / Food, Drinks
 +
* 18h30 - 19h00: ''Fill in''
 +
* 19h00 - 19h30: ''Fill in''
  
l.  EVENT - Pre-flight check A/V, Computers, Final APPROVAL of Speaker
+
</div>
PowerPoint's (no sales pitch)
+
  
m. EVENT - <EXECUTE EVENT> (Badges/AV/Misc.)
+
Etc.
  
n. EVENT -Questionnaire/Survey/Feedback form - Use a survey type webform (example: www.formsite.com or build your own you g33k)
+
==Frequently Asked Questions==
 +
===''I don't know the list of members.===
 +
You can get the membership for your chapter from the administrative interface for your mailing list. If you've forgotten your password, contact [mailto:kate.hartmann@owasp.org Kate Hartmann] to reset it for you. If you need to contact all the members, you can send a message to the mailing list, and they should all receive it.
  
o. POST-EVENT - Send out CPE credits to attendees that requested them.
+
===''Does subscribing to a chapter mailing list mean official membership in OWASP?''===
 +
No, Membership details can be found on the [[Membership]] page.
  
p. POST-EVENT - Review event and ways to improve with the other board members.
+
===''How do I update my OWASP Chapter page?''===
 +
First, create your wiki account on the [[:Special:Userlogin|login]] page. Then go to your [[:Category:OWASP Chapter|chapter]] page and click the edit link. You can use the meeting template above to list your next chapter meeting details.
  
q. POST-EVENT - Select topic focus for next event based on feedback from attendees or survey
+
===''I have a great idea to help other chapters!''===
 +
Log in to the wiki and edit this page. Or send an email to the [https://lists.owasp.org/mailman/listinfo/owasp-chapters chapter leaders mail list]. You ''are'' on that list, right?
  
r. POST-EVENT - Money in - Money Out, Balance
+
==Further Help==
 +
If you have any questions you can simply email [mailto:owasp@owasp.org owasp@owasp.org] or post a message to the [https://lists.owasp.org/mailman/listinfo/owasp-chapters chapter leaders mail list].
  
r - REPEAT ABOVE
+
[[Category:Chapter Resources]]
 
+
==Chapter Meeting Template==
+
This template you can use on your chapter page for listing chapter meeting details:
+
===WHEN===
+
''Fill in date and timing''
+
===WHERE===
+
''Fill in place''
+
===AGENDA===
+
* 18h00 - 18h30: Networking / Food, Drinks <BR>
+
* 18h20 - 18h40: ''Fill in''<BR>
+
&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;'''tbd'''<BR>
+
* 18h45 – 19h00: ''Fill in''<BR>
+
&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;'''tbd'''<BR>
+
* 19h00 - 19h55: ''Fill in''<BR>
+
&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;'''tbd'''<BR>
+
&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;''Presentation + Discussion?''<BR>
+
*20h05 - 21h00: ''Fill in''<BR>
+
&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;'''tbd<BR>
+
&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;''Presentation + Discussion?''<BR>
+
 
+
=Frequently Asked Questions=
+
==''I don't know the list of members. Can you advise how I can stay updated about this?''==
+
You can get the membership for your chapter from the administrative interface for your mailing list.  If you've forgotten your password, please contact Larry Casey (larry.casey@owasp.org) to reset it for you.
+
If you need to contact all the members, you can send a message to the mailing list, and they should all receive it.
+
==''I seem to have forgotten the list admin passwd''==
+
If you've forgotten your password, please contact Larry Casey (larry.casey@owasp.org) to reset it for you.
+
==''How is a chapter funded from the membership fees?''==
+
Chapters are not funded from membership fees, although OWASP is considering just how to share a portion of the membership fees from members that are affiliated with a particular chapter.
+
==''Does enrollment to the mailing list mean official membership to OWASP?''==
+
Membership details are here - http://www.owasp.org/index.php/Membership.
+
=='' How do I update my OWASP Chapter page?''==
+
First, create your Wikimedia account. Then go to your chapter page and hit the edit link. You can use the Chapter Meeting Template above to list your next chapter meeting details.
+
 
+
If you have any questions you can simply email owasp@owasp.org or contact one of the other chapter leaders.
+

Latest revision as of 07:27, 27 May 2009


Note: this is the OLD chapter handbook. The new chapter handbook is being written by the global chapter committee and expected to be ready in Q2 2009.

This handbook aims to guide new and experienced OWASP Chapter leaders in starting and maintaining an active chapter community. It outlines items that the NY/NJ Metro Local Chapter has done to be successful in its market.

Contents

Identifying the Chapter Board

On your chapter page, ensure you clearly identify who is on the board of the chapter, including their phone numbers and/or email addresses. The Local Chapter should have a published mailing address. Use a PO Box or one of the board member's (company's) addresses, perhaps.

It is highly recommended to have at a min. (2) chapter leaders and there are is no limit... in NYC there are 10 chapter leaders and each have a role in the success of the chapter so work with your peers being a chapter leader requires 10+ hrs per month and we are all BUSY

Generating Interest

  • Talk to local higher education institutions. Involve the university and its computer science students—you might even get access to their lab!
  • Talk to the local chapters of information security organizations. For example, ISSA, ISACA, FBI/Infragard, HTCIA and other local and international organizations. Cross-promote and/or join meetings, be a guest speaker and host guest speakers.
  • Use OWASP chapter mailing lists to alert members of meetings and monthly events.
  • Conduct an annual survey (use a web form) to get feedback from the mailing list/chapter members—what do they want to see in your chapter?
  • Ask for help. A successful chapter has several board members (there are no limits) so share the fun and the pain. &smiley;
  • Do a local talk about OWASP Projects that you have been involved with.

(Re-)Starting Your Chapter

A sample action plan that you can use is:

  • Find a location/venue sponsor for a first meeting. This could be a college, a business, a restraunt...
  • Enable sponsorship for refreshments from a local source.
  • Always cover the OWASP mission and goals. Explain the web application security problem in a general way to attract a large crowd and to educate the new members and guests.
  • Send out an invitation/announcement and also try to let other local security organizations know about the meeting as well. These can be local ISSA, ASIS, Infragard, ISACA or other chapters.
  • Try to get some local press attention—free press is great.
  • Hook up with government and academic contacts in your area to relay the invitation and generate some interest.
  • Find out what companies are active in this domain in your area in order to raise their interest and support.
  • Meeting invitations/announcements should contain a request to forward it to other interested parties.
  • Be sure to send out this invitation at least one month before the meeting.
  • Network, network, network!

Etc.

Chapter Meetings

Meeting Frequency

This depends on the activity level of the local OWASP community and number of members. There should be a minimum of four events per year to be considered an active chapter.

Chapter Meeting Checklist

Pre-event:

  1. Obtain primary sponsor for meeting location.
  2. Obtain co-sponsorship(s) to cover event expenses; encourage raffle item. Use the DONATE NOW button on your chapter page
  3. Obtain educational topics/speakers for the event with an abstract and bio.
  4. Update the RSVP form for each meeting.
  5. Update the OWASP web site to reflect the when, where, who...
  6. Communicate via email to the mailing list.
  7. Communicate to other organizations—ISSA, ISACA, Infragard, etc.—to raise awareness, as well as news media, blogs and other mailing lists.
  8. Line up the refreshment logistics based on RSVP'd attendees.
  9. Pay for the expenses and submit expenses to Kate Hartman to get your money back.... use a credit card that gives you points ;)

At-event:

  1. Arrive early, set-up meeting location.
  2. Pre-flight check: A/V, computers, final approval of speaker's PowerPoint (no sales pitch).
  3. Execute event. (Badges, A/V, etc.)
  4. Questionnaire/survey/feedback form—use a survey web form (e.g., formsite.com, surveymonkey.com, zoomerang.com, etc.) or build your own.

Post-event:

  1. Send out CPE credits to attendees that requested them or explain to them that ISC2 as a example is a self certify
  2. Review event and ways to improve with the board members.
  3. Select topic focus for next event based on feedback from attendees or survey.
  4. What was good, what was bad?

And repeat.

Chapter Meeting Template

You can use this "template" on your chapter page for listing meeting details:

WHEN

Fill in date and timeframe

WHERE

Fill in meeting place

AGENDA

  • 18h00 - 18h30: Networking / Food, Drinks
  • 18h30 - 19h00: Fill in
  • 19h00 - 19h30: Fill in

Etc.

Frequently Asked Questions

I don't know the list of members.

You can get the membership for your chapter from the administrative interface for your mailing list. If you've forgotten your password, contact Kate Hartmann to reset it for you. If you need to contact all the members, you can send a message to the mailing list, and they should all receive it.

Does subscribing to a chapter mailing list mean official membership in OWASP?

No, Membership details can be found on the Membership page.

How do I update my OWASP Chapter page?

First, create your wiki account on the login page. Then go to your chapter page and click the edit link. You can use the meeting template above to list your next chapter meeting details.

I have a great idea to help other chapters!

Log in to the wiki and edit this page. Or send an email to the chapter leaders mail list. You are on that list, right?

Further Help

If you have any questions you can simply email owasp@owasp.org or post a message to the chapter leaders mail list.