Difference between revisions of "OWASP Project Manager Activity Reports/July 08 2013"

From OWASP
Jump to: navigation, search
Line 1: Line 1:
 
== OWASP Projects Manager Report ==
 
== OWASP Projects Manager Report ==
==== Work accomplished since May 13, 2013 ====
+
==== Work accomplished since June 13, 2013 ====
  
*'''Project Numbers'''
+
*'''[https://docs.google.com/spreadsheet/ccc?key=0AllOCxlYdf1AdHBGbDhXQko4akJoVnMtMUpvZnJucVE&usp=sharing Project Numbers]'''
**Active Projects: 154
+
**Active Projects: 161
 
**Inactive Projects: 67
 
**Inactive Projects: 67
  
*'''New Incubator Projects'''
+
*'''New OWASP Projects'''
**[https://www.owasp.org/index.php/OWASP_WS_Amplification_DoS_Project OWASP WS-Amplification DoS Project]
+
**[https://www.owasp.org/index.php/OWASP_Unmaskme_Project OWASP Unmaskme Project]
**[https://www.owasp.org/index.php/OWASP_Mutillidae_2_Project OWASP Mutillidae 2 Project]
+
**[https://www.owasp.org/index.php/OWASP_Skanda_SSRF_Exploitation_Framework OWASP Skanda - SSRF Exploitation Framework]
+
**[https://www.owasp.org/index.php/OWASP_RBAC_Project OWASP RBAC Project]
+
**[https://www.owasp.org/index.php/OWASP_PHP_Security_Project OWASP PHP Security Project]  
+
  
*'''[https://docs.google.com/a/owasp.org/spreadsheet/ccc?key=0Amvv_7Gz8Z7TdHZfWGhHZ0Z4UFFwZU42djBXcVVLSlE#gid=0 Project Applications]'''
+
*'''[https://docs.google.com/spreadsheet/ccc?key=0Amvv_7Gz8Z7TdHZfWGhHZ0Z4UFFwZU42djBXcVVLSlE&usp=sharing Project Applications]'''
**VCR Project
+
**File Format Validation
**Windows Binary Executable Files Security Checks
+
**Androïck
**Wordpress Security Checklist
+
**SafeNuGet
**Simple Host Base Incidence Detection System
+
**Chat Application
+
**Supporting Legacy Web Applications in the Current Environment
+
**SeraphimDroid
+
  
 
*'''Projects Under Review'''
 
*'''Projects Under Review'''
Line 26: Line 18:
 
**[https://www.owasp.org/index.php/OWASP_Java_HTML_Sanitizer_Project OWASP Java HTML Sanitizer Project]
 
**[https://www.owasp.org/index.php/OWASP_Java_HTML_Sanitizer_Project OWASP Java HTML Sanitizer Project]
 
**[https://www.owasp.org/index.php/OWASP_Xenotix_XSS_Exploit_Framework Xenotix XSS Exploit Framework]
 
**[https://www.owasp.org/index.php/OWASP_Xenotix_XSS_Exploit_Framework Xenotix XSS Exploit Framework]
 +
**[https://www.owasp.org/index.php/OWASP_Cornucopia OWASP Cornucopia Project]
 
**Project reviews are on hold until we can fill the [https://www.owasp.org/index.php/Projects/Reviews_Management_Proposal_2013 Technical Project Advisor] [http://owasp.force.com/volunteers/GW_Volunteers__VolunteersJobListing?campaignid=701U0000000AUtE volunteer roles].  
 
**Project reviews are on hold until we can fill the [https://www.owasp.org/index.php/Projects/Reviews_Management_Proposal_2013 Technical Project Advisor] [http://owasp.force.com/volunteers/GW_Volunteers__VolunteersJobListing?campaignid=701U0000000AUtE volunteer roles].  
  

Revision as of 17:46, 2 July 2013

Contents

OWASP Projects Manager Report

Work accomplished since June 13, 2013

Project Manager Q2 2013 Objectives

  1. Identify and target 5-7 specific grants to pursue for 2013.
  2. Develop Brand Usage Guidelines for Projects.
  3. Need for consistent documentation of guidelines (similar to How To Host a Conference) that can apply to various events and venues.
  4. Volunteer Management - identification of skills and supervision required to engage volunteers productively.
  • Ongoing Objectives for 2013
    • Work with Project leaders to reach grant required milestones - ONGOING
    • Develop a project charter outlining appropriate grant revenue spending and grant required milestones. - DUE IN SEPTEMBER - ONGOING
    • Oversight of Marketing and Graphic Design deliverables (Phase 3) provided by 3rd party contractor

Currently Working On

  • OWASP Projects at AppSec Conferences 2013
    • Planning continues for the project event modules for AppSec USA 2013.
    • I continue to work with our project summit participating leaders to work out costs and logistics for their attendance.
    • I am in the process of putting together our project leader workshop materials.
    • The workshop will be a 45 - 50 minute interactive presentation for current and potential OWASP Project Leaders.
    • It will take place at the AppSec USA 2013 conference in New York.
    • I will continue to provide support to the local event planning team for AppSec EU, as needed.
  • Women in Security: AppSec USA 2013
    • The team has finished a first draft of the Sponsorship Document.
    • The plan is to reach out to different organizations for sponsorship.
    • You can find more information on the AppSec USA website.
    • We are currently attempting to raise $3,000.00 for each winner.
    • We plan on having 2 winners for 2013.
    • The total amount we are requesting is $6,000.00 to cover conference fee, training fee, travel and accommodation for both winners.
    • We are working hard to make this a possibility for our 2 potential winners.
  • Determining Active Project Status
    • This is a status update on this initiative.
    • I am reaching out to each leader individually to confirm these pieces of data for all 154 projects.
    • Flagship projects are completed.
    • Labs are completed.
    • Incubator projects are now in the 3rd phase of 4 phases.
  • European Commission Grant Opportunity: Proposal Status
    • Seba and I have finished our work on the OWASP section of the European Commission grant proposal.
    • The grant opportunity has the potential to help a hand full of OWASP projects with resources and funds.
    • Seba and I presented our internal proposal to proceed to the Board of Directors and it was approved.
    • The proposal has now been submitted to the European Commission.
    • We expect to hear back from the EU Commission with a decision towards the end of 2013.
  • Technical Project Advisory Roles
    • I am currently on the 1st stage of the interview process for each candidate.
    • I created job descriptions for each role, and those roles were posted for over a month.
    • We had a good amount of candidates apply for each role.
    • I have sent out e-mails asking each candidate to answer 3 questions regarding their interest in these roles.
    • I will reach out to those individuals that responded to my request by this week.
  • Marketing Phase 3 Update
    • The marketing deliverables are going smoothly.
    • There is quite a bit of work to be done during this phase as this is where the back and forth approval process takes place.
    • The Ops Team is diligently working on this phase with Sisterworks Publishing and Design Foundry.
    • At the moment, we are working on finalizing the copy for several pieces of collateral that are scheduled to be designed.
    • Phase 1 Deliverable
    • Phase 2 Deliverable
      • Note: Phase 2 Deliverable has recommendations made by Sisterworks and Design Foundry based on their research.
      • We are not necessarily moving forward with these recommendations towards implementation.
      • Sisterworks and Design Foundry are helping with our brand consistency and collateral design.
  • Strategic Goals Presentation
    • Ludovic petit has requested that we put together a presentation that the community can use to communicate our 2013 Strategic Goals.
    • Sarah and I have put together a first draft of the deck.
    • We plan to add to it over the coming weeks to make certain we encompass the thinking behind each goals for this year.
    • 2013 Strategic Goals draft
  • Personal Development
    • I am currently reading Board Member Orientation: The Concise and Complete Guide to Non-Profit Board Service by Michael E. Batts.
    • I am still taking my online course from Coursera.
    • The course topic is Information Security and Risk Management in Context.
    • I am currently in week 6 of the course.
    • Additionally, I am going to take a week long course in late June in the UK.
    • The course topic is Intellectual Property Strategy.
    • I will write a report on my learnings for the community after the course ends.

Grants Updates

  1. Amount: $25,000 USD
  2. Status: The first payment has been allocated to our project budgets.
  3. OWASP Development Guide Plan
  4. OWASP Testing Guide Plan
  5. OWASP Code Review Guide Plan
  1. Amount: $25,000 USD
  2. Status: The ESAPI proposal is still being reviewed.
  1. Amount: $30,000 USD
  2. Status: The ModSecurity proposal is still being reviewed.
  • Google Grants Proposal
  1. Amount: $120,000 USD in Adwords Funds
  2. Status: We will discuss possible solutions during our Mid-Term (6-12 month) marketing planning.
  3. Note: There is no link to show the proposal for this grant. There was a form that was submitted to Google, and we did not receive a record of this form.
  • European Commission Grant Proposal
  1. Amount: €250,000
  2. Status: This proposal has been completed and submitted.
  • Total Grant Funds Awarded: $145,000 USD for 2013.

OWASP Projects Manager Weekly Reports

  1. Project Manager Report: June 07 2013
  2. Project Manager Report: June 14 2013
  3. Project Manager Report: June 21 2013 - No Report this week. PM was away at a week long course.
  4. [https://www.owasp.org/index.php/Projects/Reports/2013-28-06 Project Manager Report: June 28 2013