Difference between revisions of "Projects/Reports/2013-10-05"

From OWASP
Jump to: navigation, search
(Created page with "__TOC__ = OWASP Global Projects Report = *'''[https://docs.google.com/spreadsheet/ccc?key=0AllOCxlYdf1AdHBGbDhXQko4akJoVnMtMUpvZnJucVE&usp=sharing Project Numbers]''' **Activ...")
 
Line 5: Line 5:
 
**Active Projects: 149
 
**Active Projects: 149
 
**Inactive Projects: 67
 
**Inactive Projects: 67
 
*'''New OWASP Projects'''
 
**[https://www.owasp.org/index.php/OWASP_iMAS_iOS_Mobile_Application_Security_Project OWASP iMAS - iOS Mobile Application Security Project]
 
**[https://www.owasp.org/index.php/OWASP_Scytale_Project OWASP Scytale Project]
 
 
*'''[https://docs.google.com/a/owasp.org/spreadsheet/ccc?key=0Amvv_7Gz8Z7TdHZfWGhHZ0Z4UFFwZU42djBXcVVLSlE#gid=0 Project Applications]'''
 
**OWASP WS-Amplification DoS Project
 
**OWASP Mutillidae 2 (Codename: NOWASP) Project
 
**OWASP Skanda - SSRF Exploitation Framework Project
 
  
 
*'''Projects Under Review'''
 
*'''Projects Under Review'''
Line 23: Line 14:
 
==Currently Working On==     
 
==Currently Working On==     
  
*'''OWASP Projects at AppSec USA'''
+
*'''OWASP Projects at AppSec USA & EU'''
 
**I received the go-ahead to start planning the project event modules for AppSec USA.  
 
**I received the go-ahead to start planning the project event modules for AppSec USA.  
 
**The local event planning team decided to have the Project Leader Workshop and the OWASP Projects Summit.
 
**The local event planning team decided to have the Project Leader Workshop and the OWASP Projects Summit.
Line 29: Line 20:
 
**The OWASP Project Summit is a smaller version of the much larger OWASP Summits. This event module gives our project leaders the opportunity to showcase their project progress, and have attendees sit down and work on project tasks during the event.  
 
**The OWASP Project Summit is a smaller version of the much larger OWASP Summits. This event module gives our project leaders the opportunity to showcase their project progress, and have attendees sit down and work on project tasks during the event.  
 
**I will start preparations for these two modules next week.  
 
**I will start preparations for these two modules next week.  
 +
**The AppSec EU project modules are still under discussion.
 +
**I will reach out to Dirk on May 17th, 2013 to discuss his decision.
  
 
*'''Determining Active Project Status'''
 
*'''Determining Active Project Status'''
Line 42: Line 35:
 
**Seba and I are putting together a proposal for the board of directors.
 
**Seba and I are putting together a proposal for the board of directors.
 
**We would like to move forward with this initiative, but require board approval before we can commit.  
 
**We would like to move forward with this initiative, but require board approval before we can commit.  
**I have scheduled a call for all those interested in participating on Tuesday, May 7th at 8:30pm CET.
+
**We will present our formal proposal to the board before our meeting next week.  
**To join the meeting: https://www3.gotomeeting.com/join/530902214
+
  
 
*'''Technical Project Advisors: Status Update on Recruitment'''
 
*'''Technical Project Advisors: Status Update on Recruitment'''
Line 51: Line 43:
 
**The advisors will be responsible for developing project review criteria, and for the project reviews process.  
 
**The advisors will be responsible for developing project review criteria, and for the project reviews process.  
  
*'''Personal Development'''
+
*'''Project Leader Responsibilities & Expectations'''
**This quarter, Q2, I am focusing on increasing my Information Security knowledge and understanding.  
+
**I have finished putting together documentation that outlines a project leader's responsibilities, and our foundation's expectations of them.
**To do this, I am taking a 7 week course on [https://www.coursera.org/course/inforiskman Information Security and Risk Management in Context].
+
**This document was written to help project leaders understand their responsibilities as managers of their project(s).
**The course is made available through Coursera.  
+
**This is an ongoing project, and will not be complete until feedback is received from the board and the community.
**I am currently in week 5 of the course.  
+
 
**Additionally, I have finished reading: The Ultimate Board Member's Book by Kay Sprinkel Grace.  
+
*'''Project Leader Cheat Sheet'''
**The staff were encourage to read this by the board so we can all be on the same page.  
+
**I have finished a first draft of the Project Leader Cheat Sheet.
 +
**I hope this document will help project leaders understand how to best leverage the OWASP Project Infrastructure for success.
 +
**This is an ongoing project, and will not be complete until feedback is received from the board and the community.
 +
**[https://www.owasp.org/index.php/Projects/Project_Leader_Cheat_Sheet Project Leader Cheat Sheet draft]
 +
 
 +
*'''OWASP Marketing'''
 +
**The third phase of our Marketing plan is underway.  
 +
**During the staff summit, Kate, Kelly, Sarah, Alison, and I had a long discussion about the deliverables expected in phase 3.
 +
**We have given the marketing and design company very clear guidelines and expectations of what our requirements as an organization are for this phase.  
 +
**We are now waiting for the first drafts of their deliverables.
  
 
*'''Daily Project based queries and requests'''
 
*'''Daily Project based queries and requests'''
Line 90: Line 91:
  
 
*'''LSEC Web Attack Proposal'''
 
*'''LSEC Web Attack Proposal'''
#Amount: TBD (Will be in Euros)
+
#Amount: €250,000
 
#Status: This proposal is currently being put together by a grant partner. We are still in the process of writing the proposal to the board and working out logistics.  
 
#Status: This proposal is currently being put together by a grant partner. We are still in the process of writing the proposal to the board and working out logistics.  
  
  
 
*'''Total Grant Funds Awarded: $145,000 for 2013.'''
 
*'''Total Grant Funds Awarded: $145,000 for 2013.'''

Revision as of 17:25, 10 May 2013

Contents

OWASP Global Projects Report

Currently Working On

  • OWASP Projects at AppSec USA & EU
    • I received the go-ahead to start planning the project event modules for AppSec USA.
    • The local event planning team decided to have the Project Leader Workshop and the OWASP Projects Summit.
    • The Project Leader Workshop is a three hour event module that brings together current and potential OWASP project leaders to discuss project related issues and topics.
    • The OWASP Project Summit is a smaller version of the much larger OWASP Summits. This event module gives our project leaders the opportunity to showcase their project progress, and have attendees sit down and work on project tasks during the event.
    • I will start preparations for these two modules next week.
    • The AppSec EU project modules are still under discussion.
    • I will reach out to Dirk on May 17th, 2013 to discuss his decision.
  • Determining Active Project Status
    • This is a status update on this initiative.
    • I am reaching out to each leader individually to confirm these pieces of data for all 149 projects.
    • Flagship projects are completed.
    • Labs are in the second phase of outreach and confirmation.
    • Outreach and confirmation for Incubator projects are scheduled to start on Monday, May 19th.
  • European Commission Grant Opportunity: Proposal Status
    • Seba and I have been working on an European Commission grant opportunity.
    • The grant opportunity has the potential to help a hand full of projects with resources and funds.
    • Seba and I are putting together a proposal for the board of directors.
    • We would like to move forward with this initiative, but require board approval before we can commit.
    • We will present our formal proposal to the board before our meeting next week.
  • Technical Project Advisors: Status Update on Recruitment
    • I continue to recruit for the Technical Project Advisor volunteer roles.
    • My goal is to start interviewing for the six positions by the end of May.
    • I will continue to reach out to the community for applicants and to determine interest.
    • The advisors will be responsible for developing project review criteria, and for the project reviews process.
  • Project Leader Responsibilities & Expectations
    • I have finished putting together documentation that outlines a project leader's responsibilities, and our foundation's expectations of them.
    • This document was written to help project leaders understand their responsibilities as managers of their project(s).
    • This is an ongoing project, and will not be complete until feedback is received from the board and the community.
  • Project Leader Cheat Sheet
    • I have finished a first draft of the Project Leader Cheat Sheet.
    • I hope this document will help project leaders understand how to best leverage the OWASP Project Infrastructure for success.
    • This is an ongoing project, and will not be complete until feedback is received from the board and the community.
    • Project Leader Cheat Sheet draft
  • OWASP Marketing
    • The third phase of our Marketing plan is underway.
    • During the staff summit, Kate, Kelly, Sarah, Alison, and I had a long discussion about the deliverables expected in phase 3.
    • We have given the marketing and design company very clear guidelines and expectations of what our requirements as an organization are for this phase.
    • We are now waiting for the first drafts of their deliverables.
  • Daily Project based queries and requests
    • This has not changed much since I began the post: questions are very similar in nature.
    • Global AppSec questions.
    • Funding queries.
    • Travel availability.
    • Project based administrative help.
    • Project status information.
    • Several project donations questions.
    • Marketing questions.
    • Grant funding questions.
    • OWASP Social Media Updates.
    • What's happening with projects, questions.

Grants Updates

  • Guidebooks Grant
  1. Amount: $25,000
  2. Status: The first payment has been allocated to our project budgets.
  • ESAPI Proposal
  1. Amount: $25,000
  2. Status: The ESAPI proposal is still being reviewed.
  • ModSecurity Grant Writing
  1. Amount: $30,000
  2. Status: The ModSecurity proposal is still being reviewed.
  • Google Grants Proposal
  1. Amount: $120,00 in Adwords Funds
  2. Status: We now have a better idea of the initiatives and tasks we must undertake to better leverage this award. We will discuss possible solutions during our Mid-Term (6-12 month) marketing planning.
  • LSEC Web Attack Proposal
  1. Amount: €250,000
  2. Status: This proposal is currently being put together by a grant partner. We are still in the process of writing the proposal to the board and working out logistics.


  • Total Grant Funds Awarded: $145,000 for 2013.