Difference between revisions of "OWASP Project Manager Activity Reports/June 10 2013"

From OWASP
Jump to: navigation, search
Line 40: Line 40:
 
==Currently Working On==   
 
==Currently Working On==   
 
   
 
   
*'''OWASP Projects at AppSec USA & EU'''
+
*'''OWASP Projects at AppSec Conferences 2013'''
**I received the go-ahead to start planning the project event modules for AppSec USA.  
+
**Planning continues for the project event modules for AppSec USA 2013.  
**The local event planning team decided to have the Project Leader Workshop and the OWASP Projects Summit.
+
**I continue to work with our project summit participating leaders to work out costs and logistics for their attendance.  
**The Project Leader Workshop is a three hour event module that brings together current and potential OWASP project leaders to discuss project related issues and topics.
+
**I am in the process of putting together our project leader workshop materials.  
**The OWASP Project Summit is a smaller version of the much larger OWASP Summits. This event module gives our project leaders the opportunity to showcase their project progress, and have attendees sit down and work on project tasks during the event.  
+
**The workshop will be a 45 - 50 minute interactive presentation for current and potential OWASP Project Leaders.  
**I will start preparations for these two modules next week.  
+
**It will take place at the AppSec USA 2013 conference in New York.
**The AppSec EU project modules are still under discussion.
+
**I will continue to provide support to the local event planning team for AppSec EU, as needed.  
**I will reach out to Dirk on May 17th, 2013 to discuss his decision.  
+
  
*'''Determining Active Project Status'''
+
*'''Women in Security: AppSec USA 2013'''
 +
**The team has finished a first draft of the Sponsorship Document.
 +
**The plan is to reach out to different organizations for sponsorship.
 +
**You can find more information on the [http://appsecusa.org/2013/activities/owasp-women-in-application-security-appsec-program/ AppSec USA website].
 +
**We are currently attempting to raise $3,000.00 for each winner.
 +
**We plan on having 2 winners for 2013.
 +
**The total amount we are requesting is $6,000.00 to cover conference fee, training fee, travel and accommodation for both winners.
 +
**We are working hard to make this a possibility for our 2 potential winners.
 +
 
 +
*'''[https://docs.google.com/spreadsheet/ccc?key=0AllOCxlYdf1AdEdCYVJpdmZHaWJYZ055WHROa19qN3c&usp=sharing Determining Active Project Status]'''
 
**This is a status update on this initiative.
 
**This is a status update on this initiative.
**I am reaching out to each leader individually to confirm these pieces of data for all 149 projects.  
+
**I am reaching out to each leader individually to confirm these pieces of data for all 154 projects.  
 
**Flagship projects are completed.
 
**Flagship projects are completed.
**Labs are in the second phase of outreach and confirmation.  
+
**Labs are completed.  
**Outreach and confirmation for Incubator projects are scheduled to start on Monday, May 19th.  
+
**Incubator projects are now in the 3rd phase of 4 phases.  
  
 
*'''European Commission Grant Opportunity: Proposal Status'''
 
*'''European Commission Grant Opportunity: Proposal Status'''
**Seba and I have been working on an European Commission grant opportunity.
+
**Seba and I have finished our work on the OWASP section of the European Commission grant proposal.  
**The grant opportunity has the potential to help a hand full of projects with resources and funds.  
+
**The grant opportunity has the potential to help a hand full of OWASP projects with resources and funds.  
**Seba and I are putting together a proposal for the board of directors.
+
**Seba and I presented our internal proposal to proceed to the Board of Directors last week, and it was approved.  
**We would like to move forward with this initiative, but require board approval before we can commit.  
+
**The proposal has now been submitted to the European Commission.
**We will present our formal proposal to the board before our meeting next week.  
+
**We expect to hear back from the EU Commission with a decision towards the end of 2013.
  
*'''Technical Project Advisors: Status Update on Recruitment'''
+
*'''Technical Project Advisory Roles'''
**I continue to recruit for the Technical Project Advisor volunteer roles.  
+
**I am currently on the 1st stage of the interview process for each candidate.
**My goal is to start interviewing for the six positions by the end of May.  
+
**I have created job descriptions for each role, and I have had those roles posted for over a month.
**I will continue to reach out to the community for applicants and to determine interest.  
+
**We have had a good amount of candidates apply for each role.  
**The advisors will be responsible for developing project review criteria, and for the project reviews process.  
+
**I have sent out e-mails asking each candidate to answer 3 questions regarding their interest in these roles.
 +
**I will reach out to those individuals that responded to my request by next week.  
  
*'''Project Leader Responsibilities & Expectations'''
+
*'''Marketing Phase 3 Update'''
**I have finished putting together documentation that outlines a project leader's responsibilities, and our foundation's expectations of them.
+
**The marketing deliverables are going smoothly.
**This document was written to help project leaders understand their responsibilities as managers of their project(s).  
+
**There is quite a bit of work to be done during this phase as this is where the back and forth approval process takes place.
**This is an ongoing project, and will not be complete until feedback is received from the board and the community.  
+
**The Ops Team is diligently working on this phase with Sisterworks Publishing and Design Foundry. 
 +
**At the moment, we are working on finalizing the copy for several pieces of collateral that are scheduled to be designed.
 +
**[https://www.owasp.org/images/7/7c/OWASP_Background-Research_Phase1_Final_%281%29.pdf Phase 1 Deliverable]
 +
**[https://www.owasp.org/images/c/c5/OWASP_Recommendations-Presentation2-April24.pdf Phase 2 Deliverable]
 +
***Note: Phase 2 Deliverable has recommendations made by Sisterworks and Design Foundry based on their research.
 +
***We are not necessarily moving forward with these recommendations towards implementation.
 +
***Sisterworks and Design Foundry are helping with our brand consistency and collateral design.  
  
*'''Project Leader Cheat Sheet'''
+
*'''Strategic Goals Presentation'''
**I have finished a first draft of the Project Leader Cheat Sheet.  
+
**Ludovic petit has requested that we put together a presentation that the community can use to communicate our 2013 Strategic Goals.
**I hope this document will help project leaders understand how to best leverage the OWASP Project Infrastructure for success.
+
**Sarah and I have put together a first draft of the deck.
**This is an ongoing project, and will not be complete until feedback is received from the board and the community.  
+
**We plan to add to it over the coming weeks to make certain we encompass the thinking behind each goals for this year.
**[https://www.owasp.org/index.php/Projects/Project_Leader_Cheat_Sheet Project Leader Cheat Sheet draft]
+
**[https://www.owasp.org/images/1/13/OWASP_2013_Strategic_Goals.pdf 2013 Strategic Goals draft]
  
*'''OWASP Marketing'''
+
*'''Personal Development'''
**The third phase of our Marketing plan is underway.  
+
**I am currently reading ''Board Member Orientation: The Concise and Complete Guide to Non-Profit Board Service'' by Michael E. Batts.
**During the staff summit, Kate, Kelly, Sarah, Alison, and I had a long discussion about the deliverables expected in phase 3.
+
**I am still taking my online course from Coursera.
**We have given the marketing and design company very clear guidelines and expectations of what our requirements as an organization are for this phase.  
+
**The course topic is Information Security and Risk Management in Context.
**We are now waiting for the first drafts of their deliverables.   
+
**I am currently in week 6 of the course.
 +
**Additionally, I am going to take a week long course in late June in the UK.
 +
**The course topic is Intellectual Property Strategy.
 +
**I will write a report on my learnings for the community after the course ends.   
  
 
==Grants Updates==
 
==Grants Updates==

Revision as of 16:39, 3 June 2013

OWASP Projects Manager Report

Work accomplished since May 13, 2013

  • Project Numbers
    • Active Projects: 154
    • Inactive Projects: 67
  • Project Applications
    • VCR Project
    • Windows Binary Executable Files Security Checks
    • Wordpress Security Checklist
    • Simple Host Base Incidence Detection System
    • Chat Application
    • Supporting Legacy Web Applications in the Current Environment

Project Manager Q2 2013 Objectives

  1. Identify and target 5-7 specific grants to pursue for 2013.
  2. Develop Brand Usage Guidelines for Projects.
  3. Need for consistent documentation of guidelines (similar to How To Host a Conference) that can apply to various events and venues.
  4. Volunteer Management - identification of skills and supervision required to engage volunteers productively.
  • Ongoing Objectives for 2013
    • Work with Project leaders to reach grant required milestones - ONGOING
    • Develop a project charter outlining appropriate grant revenue spending and grant required milestones. - DUE IN SEPTEMBER - ONGOING
    • Oversight of Marketing and Graphic Design deliverables (Phase 3) provided by 3rd party contractor

Currently Working On

  • OWASP Projects at AppSec Conferences 2013
    • Planning continues for the project event modules for AppSec USA 2013.
    • I continue to work with our project summit participating leaders to work out costs and logistics for their attendance.
    • I am in the process of putting together our project leader workshop materials.
    • The workshop will be a 45 - 50 minute interactive presentation for current and potential OWASP Project Leaders.
    • It will take place at the AppSec USA 2013 conference in New York.
    • I will continue to provide support to the local event planning team for AppSec EU, as needed.
  • Women in Security: AppSec USA 2013
    • The team has finished a first draft of the Sponsorship Document.
    • The plan is to reach out to different organizations for sponsorship.
    • You can find more information on the AppSec USA website.
    • We are currently attempting to raise $3,000.00 for each winner.
    • We plan on having 2 winners for 2013.
    • The total amount we are requesting is $6,000.00 to cover conference fee, training fee, travel and accommodation for both winners.
    • We are working hard to make this a possibility for our 2 potential winners.
  • Determining Active Project Status
    • This is a status update on this initiative.
    • I am reaching out to each leader individually to confirm these pieces of data for all 154 projects.
    • Flagship projects are completed.
    • Labs are completed.
    • Incubator projects are now in the 3rd phase of 4 phases.
  • European Commission Grant Opportunity: Proposal Status
    • Seba and I have finished our work on the OWASP section of the European Commission grant proposal.
    • The grant opportunity has the potential to help a hand full of OWASP projects with resources and funds.
    • Seba and I presented our internal proposal to proceed to the Board of Directors last week, and it was approved.
    • The proposal has now been submitted to the European Commission.
    • We expect to hear back from the EU Commission with a decision towards the end of 2013.
  • Technical Project Advisory Roles
    • I am currently on the 1st stage of the interview process for each candidate.
    • I have created job descriptions for each role, and I have had those roles posted for over a month.
    • We have had a good amount of candidates apply for each role.
    • I have sent out e-mails asking each candidate to answer 3 questions regarding their interest in these roles.
    • I will reach out to those individuals that responded to my request by next week.
  • Marketing Phase 3 Update
    • The marketing deliverables are going smoothly.
    • There is quite a bit of work to be done during this phase as this is where the back and forth approval process takes place.
    • The Ops Team is diligently working on this phase with Sisterworks Publishing and Design Foundry.
    • At the moment, we are working on finalizing the copy for several pieces of collateral that are scheduled to be designed.
    • Phase 1 Deliverable
    • Phase 2 Deliverable
      • Note: Phase 2 Deliverable has recommendations made by Sisterworks and Design Foundry based on their research.
      • We are not necessarily moving forward with these recommendations towards implementation.
      • Sisterworks and Design Foundry are helping with our brand consistency and collateral design.
  • Strategic Goals Presentation
    • Ludovic petit has requested that we put together a presentation that the community can use to communicate our 2013 Strategic Goals.
    • Sarah and I have put together a first draft of the deck.
    • We plan to add to it over the coming weeks to make certain we encompass the thinking behind each goals for this year.
    • 2013 Strategic Goals draft
  • Personal Development
    • I am currently reading Board Member Orientation: The Concise and Complete Guide to Non-Profit Board Service by Michael E. Batts.
    • I am still taking my online course from Coursera.
    • The course topic is Information Security and Risk Management in Context.
    • I am currently in week 6 of the course.
    • Additionally, I am going to take a week long course in late June in the UK.
    • The course topic is Intellectual Property Strategy.
    • I will write a report on my learnings for the community after the course ends.

Grants Updates

  1. Amount: $25,000 USD
  2. Status: The first payment has been allocated to our project budgets.
  3. OWASP Development Guide Plan
  4. OWASP Testing Guide Plan
  5. OWASP Code Review Guide Plan
  1. Amount: $25,000 USD
  2. Status: The ESAPI proposal is still being reviewed.
  1. Amount: $30,000 USD
  2. Status: The ModSecurity proposal is still being reviewed.
  • Google Grants Proposal
  1. Amount: $120,000 USD in Adwords Funds
  2. Status: We now have a better idea of the initiatives and tasks we must undertake to better leverage this award. We will discuss possible solutions during our Mid-Term (6-12 month) marketing planning.
  3. Note: There is no link to show the proposal for this grant. There was a form that was submitted to Google, and we did not receive a record of this form.
  • European Commission Grant Proposal
  1. Amount: €250,000
  2. Status: This proposal has been completed and submitted.
  • Total Grant Funds Awarded: $145,000 USD for 2013.

Important OWASP Projects Outcomes and Discussion Points

  1. Project Manager Report: May 10 2013
  2. Project Manager Report: May 17 2013
  3. Project Manager Report: May 24 2013
  4. Project Manager Report: May 31 2013