Difference between revisions of "September 10, 2012 SB Report"

From OWASP
Jump to: navigation, search
(Created page with "Sarah Baso - Report of Conference Activity for August 2012 (Prepared for September 10, 2012 Board Meeting)<br> ''To view report of employee activity for August 14 to September...")
 
 
(3 intermediate revisions by one user not shown)
Line 1: Line 1:
 
Sarah Baso - Report of Conference Activity for August 2012 (Prepared for September 10, 2012 Board Meeting)<br>
 
Sarah Baso - Report of Conference Activity for August 2012 (Prepared for September 10, 2012 Board Meeting)<br>
''To view report of employee activity for August 14 to September 10, 2012: https://docs.google.com/a/owasp.org/document/d/1-k_ocmfbXUIykKeJXrW6zr6PMtGWC9xkQOx2duu1Gf8/edit click here]''
+
 
  
 
==Conferences Committee==
 
==Conferences Committee==
Line 59: Line 59:
 
'''AppSec USA 2012''' - Global
 
'''AppSec USA 2012''' - Global
 
* Current conference profit estimate: $25,000 ([https://docs.google.com/a/owasp.org/spreadsheet/ccc?key=0Ag1W2qFZ-xDGdE0tMGFtSms1bFBsZmRrMURhWGprNUE#gid=0 Budget])
 
* Current conference profit estimate: $25,000 ([https://docs.google.com/a/owasp.org/spreadsheet/ccc?key=0Ag1W2qFZ-xDGdE0tMGFtSms1bFBsZmRrMURhWGprNUE#gid=0 Budget])
*Sponsorships = $118,150 - new sponsorships include: Adobe (Diamond), Veracode (Gold), Symplified (Silver), Whitehat Security (Silver), and Blueinfy Silver)
+
*Sponsorships = $180,000 - new sponsorships include: NTObjectives (Platinum), Akamai (Silver), Rapid7 (Silver), RSA (Silver), Security Innovation (Silver + reception)
* Call For Papers ended on Saturday, August 11, 2012. Speaker Selection Committee will review over 130 submissions received and we expect to begin contacting speakers on or before Monday, August 27, 2012.
+
* Training courses posted: http://www.appsecusa.org/schedule/trainings/
* CFT deadline was July 6 & [http://www.appsecusa.org/schedule/trainings/ Trainings are posted]:
+
*Jim Manico & Eoin Keary are offering 2 Free, half day training courses targeted at the developer community: Registration through Eventbrite:
**No Crack Required: Cryptanalysis in Real-World Applications (Timothy D. Morgan)
+
**Morning session: http://appsectrainingmorning.eventbrite.com/
**Elite Web Application Secure Defensive Coding Bootcamp (Jim Manico and Eoin Keary)
+
**Afternoon session: http://appsectrainingafternoon.eventbrite.com/
**CISO Training: Managing Web & Application Security – OWASP for Senior Managers (Tobias Gondrom)
+
* Speaker selection complete and schedule posted: http://appsecusa2012.sched.org/
**The Art of Exploiting SQL Injection (Sumit Siddharth)
+
*Currently finalizing details on: Open Source Showcase, CFT, University Challenge/Hackademic Challenge, & Social Events
**Tactical Defense with ModSecurity (Josh Amishav-Zlatin)
+
* Extra-curricular conference events:
**Building a Software Security Program On Open Source Tools (Dan Cornell)
+
** Conference Attendee Social Event (Thursday evening after conference talks until 8pm)
**Android/iOS Hacking and Securing (Patrick Szeto)
+
** Movie sneak peak: Reboot - http://www.appsecusa.org/schedule/reboot/ (Thursday evening 8-10pm)
**Advanced Threat Tactics (Raphael Mudge)
+
** 5k Race - Friday Morning
**Hands on Web Application Testing: Assessing Web Apps the OWASP Way (Matt Tesauro)
+
* Current Registration: 174 Paid + 264 Comps (Sponsors, Speakers, Trainers, OWASP Leaders, Giveaways, etc) = '''438'''
**Writing Secure J2EE Code (Sherif Koussa)
+
* Estimated Event Profit: $120,000
**.NET Secure Coding (Erez Metula)
+
 
+
* Registration (through Cvent) open and early early registration push (discounts to past attendee from Lascon and LY AppSec USA who registered before June 30 & early bird discount ending July 15) - ''' 175 currently registered'''
+
  
  
 
'''AppSec Brazil 2012''' - Regional
 
'''AppSec Brazil 2012''' - Regional
 
*Event cancelled - was to be hosted by [[Paraiba|OWASP Paraíba Chapter]] but Chapter Leader (who was the main person driving the event) had to drop out due to personal reasons.  
 
*Event cancelled - was to be hosted by [[Paraiba|OWASP Paraíba Chapter]] but Chapter Leader (who was the main person driving the event) had to drop out due to personal reasons.  
*It was suggested that the [[Florianopolis]] Chapter turn their [[OWASP Floripa Day 2012]] into the AppSec Brasil event, but due to the short time until the event (1 month away) - it was decided that no changes would be made.
 
  
  
Line 90: Line 86:
 
**2 days of conference talks: Nov. 20-21 (2 Tracks)
 
**2 days of conference talks: Nov. 20-21 (2 Tracks)
 
* 4 Keynotes confirmed: Jerry Hoff, Pravir Chandra, Cristian Borghello, and Hernan M. Racciatti
 
* 4 Keynotes confirmed: Jerry Hoff, Pravir Chandra, Cristian Borghello, and Hernan M. Racciatti
* [https://docs.google.com/a/owasp.org/spreadsheet/viewform?formkey=dHNFa3NyTV82VFNiVVh5VnllU2tfQnc6MA CFP] and [https://docs.google.com/a/owasp.org/spreadsheet/viewform?formkey=dEYzOW1pRzFqelhBSElUdC01dzFGNEE6MQ CFT] opened
+
* [https://docs.google.com/a/owasp.org/spreadsheet/viewform?formkey=dHNFa3NyTV82VFNiVVh5VnllU2tfQnc6MA CFP] and [https://docs.google.com/a/owasp.org/spreadsheet/viewform?formkey=dEYzOW1pRzFqelhBSElUdC01dzFGNEE6MQ CFT] deadline was Friday, hope to have decisions on schedule within 1 week.
* Completed [https://www.owasp.org/images/3/37/AppSec_LATAM_2012_Sponsorship.pdf revised sponsorship document]
+
* [https://www.owasp.org/images/3/37/AppSec_LATAM_2012_Sponsorship.pdf Sponsorship Opportunities] - a 25% discount will be offered to sponsors who sign on by the end of September 2012.
 +
*In the process of finalizing hotel room block
  
  
Line 101: Line 98:
 
*[https://ocms.owasp.org/events/140/ Hamburg, Germany] ([https://docs.google.com/a/owasp.org/folder/d/0B5Z9zE0hx0LNeWd5alNidGJmY1E/edit related documents])
 
*[https://ocms.owasp.org/events/140/ Hamburg, Germany] ([https://docs.google.com/a/owasp.org/folder/d/0B5Z9zE0hx0LNeWd5alNidGJmY1E/edit related documents])
 
* Local team working to finalize dates within the next week
 
* Local team working to finalize dates within the next week
* Conference/Project management set up in [https://pm.appsec.eu/redmine Redmine], local team & Sarah had meeting last Friday (August 10) to give overview on how Redmine will work and next steps to move forward.
+
* Conference/Project management set up in [https://pm.appsec.eu/redmine Redmine]
  
  
==Outreach Events==
+
==Upcoming Outreach Events==
* BlackHat USA (Post-event report pending)
+
  
 
+
* Brucon
Upcoming:
+
* ISC2 - Secure Brazil
+
 
* Hacker Halted USA
 
* Hacker Halted USA
 
* BSidesDFW
 
* BSidesDFW
 
 
In negotiation/under review:
 
* RSA Europe 2012 and RSA USA 2013
 
* MN Cyber Security Summit 2012
 
* AISA National Conference
 
* (ISC)2 Security Congress
 
 
* Hacker Halted Asia Pacific 2012
 
* Hacker Halted Asia Pacific 2012
 
* Malaysia Open Source Conference 2012  
 
* Malaysia Open Source Conference 2012  
Line 125: Line 112:
  
 
==Other Activities==
 
==Other Activities==
* Marketing:
+
* Marketing:  
 
** [https://www.owasp.org/images/4/49/OWASP_Brochure_-_Global.pdf Global Membership Handout] (Template created by PR with Brains for NY Chapter, and modified for use at BlackHat Booth)
 
** [https://www.owasp.org/images/4/49/OWASP_Brochure_-_Global.pdf Global Membership Handout] (Template created by PR with Brains for NY Chapter, and modified for use at BlackHat Booth)
**Kate had in-person meeting with Patrick Calder at Design Foundry last Thursday and we have call this afternoon with Patrick and his business partner to discuss next steps.
+
**Contract with Patrick Calder at Design Foundry & DeNita Morris at Sisterworks Publishing to fulfill needs as outlined in [https://docs.google.com/a/owasp.org/document/d/13v1Jw9dNCi1Ev9wbkv95aOEOSWaJRAsUD69eNCJ8vRA/edit Marketing RFP]. Sarah has ongoing weekly status calls to discuss progress & next steps.
* Worked with Kate to consolidate Q3 goals [https://docs.google.com/a/owasp.org/document/d/138rYpR-Z41rtCjyoCEte6nZUynTPauC9YUT5EzYf73U/edit].
+
 
+
  
  

Latest revision as of 09:28, 10 September 2012

Sarah Baso - Report of Conference Activity for August 2012 (Prepared for September 10, 2012 Board Meeting)


Contents

Conferences Committee

General Committee Info

  • Committee Membership: no changes, currently 8 members: Mark Bristow, Ralph Durkee, Richard Greenberg, Lucas Ferreira, John Wilander, Mohd Fazli Azran, Lorna Alamri, and Benny Ketelslegers.
  • Committee Chair: Mark Bristow
  • Recurring meeting time: the third Wednesday of the month at 3pm GMT/UTC. 'Next Meetings scheduled for:
    • Wednesday, Septembeer 19, 2012 at 3:00 PM (15:00) UTC/GMT
    • Wednesday, October 17, 2012 at 3:00 PM (15:00) UTC/GMT

Major Activities/Projects (in addition to attending monthly committee meetings, taking & posting meeting minutes):

  • Working with committee on setting goals for 2013, drafting committee budget for 2013, and drafting proposed revenue goals for 2013 Global AppSec Events
  • Proposals for the 2013 AppSec USA event - one submission received from NYC. Submission to be reviewed/decided at September meeting.
  • Soliciting proposals for the 2013 AppSec Latam Event
  • Requested comments from committee on conference planning documents drafted by Sarah Baso:
  • Ongoing - Updated and monitored google form for tracking schwag requests and monitor OCMS for events that have requested schwag but not entered request into google form.
  • Ongoing - Work with Konik, Kate, Rocksport, Zazzle, Lulu, and other misc. vendors to fulfull merchandise and conference requests.


OWASP Events

AppSec India 2012 - Regional


AppSec Ireland 2012 - Regional

  • Approx 100 people registered through cvent
  • Conference Schedule posted on event website: appsecireland.org
  • Sponsors: F5, WhiteHat Security, BCC Risk Advisory
  • Other orgs/supporters: (ISC)2, irishdev, Pentest Magazine, Google Developer Group Dublin, Irish Internet Association, Irish Computer Society, British Computer Society, Irish Reporting and Information Security Service
  • Event attended by Samantha Groves (staff), Michael Coates (Board), Eoin Keary (organizer, Board)


OWASP Israel 2012 - Regional

  • Event website: https://www.owasp.org/index.php/OWASP_Israel_2012
  • Free event with over 450 people registered to attend through cvent
  • Sponsors
    • Gold: Quotium, Imperva, Ernst & Young, Akamai, IBM, Radware
    • Silver: GRSec, Liveperson, RSA, Foresight, Komodo Consulting, Secoz, HP, Rafael Co
  • Event projected to make a profit, no details have been received from local team as of 10-Sept-2012


AppSec USA 2012 - Global

  • Current conference profit estimate: $25,000 (Budget)
  • Sponsorships = $180,000 - new sponsorships include: NTObjectives (Platinum), Akamai (Silver), Rapid7 (Silver), RSA (Silver), Security Innovation (Silver + reception)
  • Training courses posted: http://www.appsecusa.org/schedule/trainings/
  • Jim Manico & Eoin Keary are offering 2 Free, half day training courses targeted at the developer community: Registration through Eventbrite:
  • Speaker selection complete and schedule posted: http://appsecusa2012.sched.org/
  • Currently finalizing details on: Open Source Showcase, CFT, University Challenge/Hackademic Challenge, & Social Events
  • Extra-curricular conference events:
    • Conference Attendee Social Event (Thursday evening after conference talks until 8pm)
    • Movie sneak peak: Reboot - http://www.appsecusa.org/schedule/reboot/ (Thursday evening 8-10pm)
    • 5k Race - Friday Morning
  • Current Registration: 174 Paid + 264 Comps (Sponsors, Speakers, Trainers, OWASP Leaders, Giveaways, etc) = 438
  • Estimated Event Profit: $120,000


AppSec Brazil 2012 - Regional

  • Event cancelled - was to be hosted by OWASP Paraíba Chapter but Chapter Leader (who was the main person driving the event) had to drop out due to personal reasons.


AppSec Latam 2012 - Global

  • http://appseclatam.org
  • Fabio Cerullo is serving as their GCC liaison
  • Event logistics (location and date) finalized:
    • Hosted at Antel National Telco Building in Montevideo, Uruguay
    • 2 days of training: Nov. 18-19
    • 2 days of conference talks: Nov. 20-21 (2 Tracks)
  • 4 Keynotes confirmed: Jerry Hoff, Pravir Chandra, Cristian Borghello, and Hernan M. Racciatti
  • CFP and CFT deadline was Friday, hope to have decisions on schedule within 1 week.
  • Sponsorship Opportunities - a 25% discount will be offered to sponsors who sign on by the end of September 2012.
  • In the process of finalizing hotel room block


AppSec APAC 2013 - Global

  • Sarah working with local team to set up status calls


AppSec EU/Research 2013 - Global


Upcoming Outreach Events

  • Brucon
  • Hacker Halted USA
  • BSidesDFW
  • Hacker Halted Asia Pacific 2012
  • Malaysia Open Source Conference 2012
  • HITBSecConf2012


Other Activities

  • Marketing:
    • Global Membership Handout (Template created by PR with Brains for NY Chapter, and modified for use at BlackHat Booth)
    • Contract with Patrick Calder at Design Foundry & DeNita Morris at Sisterworks Publishing to fulfill needs as outlined in Marketing RFP. Sarah has ongoing weekly status calls to discuss progress & next steps.


Resource Pages