kate.hartmann at owasp.org
Fri Mar 18 14:03:22 EDT 2011
John, again, I commend you on your efforts and I understand your arguments
for requiring paid membership to participate on the chapter board.
But ... our current set of values and principles explicitly states that
membership is NOT REQUIRED for participation. So, while you are not being
unfair or too strict to ask that your chapter leaders set a good example by
becoming paid members, it cannot be held up as a requirement for
As Andrea pointed out, many of our chapter leaders voluntarily contribute
the $50 membership fee because it is the right thing to do. We do not,
however, make that a prerequisite for chapter leadership or participation.
From: jsteven at maladjustment.org [mailto:jsteven at maladjustment.org] On Behalf
Of John Steven
Sent: Friday, March 18, 2011 1:42 PM
To: Kate Hartmann
Cc: owasp-leaders at lists.owasp.org
Subject: Re: OWASP-verify
A lot of good data there. And, I certainly understand that membership is not
a pre-requisite for consumption or production of info/attention/etc. in the
OWASP eco-system. I just wonder if, on a chapter level, it doesn't make
sense for me to demand that ppl. who want to participate at the board level
pay a membership. Consider it a benefit or simply a concrete show of
commitment--but I don't like the idea of a board member who doesn't have
skin in the game (I take this opinion from well-run private companies where
they want their managers to have 'skin in the optimal long-term operation of
Am I being too strict? Am I being unfair? Or, am I being reasonable, setting
a good example, nominally driving up membership?
In the end, if NoVA folk didn't "like it", they could always start their own
chapter or "de-throne" me and change the rule--right?
On Fri, Mar 18, 2011 at 11:48 AM, Kate Hartmann <kate.hartmann at owasp.org>
> The OWASP values and principles do not require or demand that an
> individual be a recognized member to participate in OWASP. Currently,
> there are "benefits" associated with membership like the opportunity
> to help shape the foundation's future through the voting process and
> other tangible benefits like discounts at events. Any individual, who
> wants to donate their time and talent to OWASP will not be required to
sign up as a paid member.
> To demand membership to participate in the local chapter would
> contradict our openness. However, those candidates who would be
> stepping up to leadership positions within the local chapter should,
> of course, lead by example and become members.
> The individual membership roster would be the best way to verify
> We do have some members who have made the decision to not be listed on
> the roster, however, so if you need confirmation on someone who is NOT
> listed, please contact either Alison or me.
> Kate Hartmann
> Operations Director
> Skype: Kate.hartmann1
> -----Original Message-----
> From: jsteven at maladjustment.org [mailto:jsteven at maladjustment.org] On
> Behalf Of John Steven
> Sent: Friday, March 18, 2011 10:33 AM
> To: Kate Hartmann
> Cc: owasp-leaders at lists.owasp.org
> Subject: OWASP-verify
> We're setting up elections in the OWASP NoVA chapter. I detest the
> notion of "Chapter President"--so I want to establish a proper chapter
> board. Taking a cue from some of Manico's board suggestions, we're
> going to establish board with the following responsibilities:
> * Providing governance for chapter and member activities in terms
> chapter mission and OWASP code of ethics
> * Recruiting OWASP membership
> * Driving OWASP NoVA Chapter attendance and involvement
> * Deferring to, facilitating, and supporting the activities and
> projects of chapter membership
> * Eliciting, scheduling, and coordinating chapter panels, speakers,
> and other sessions
> * Scouting, clearing, and scheduling chapter meeting venues and
> * Identifying opportunities for collaboration between chapter
> membership, OWASP global committees, and other organizations
> * Collecting and auditing use of chapter funds
> * Voting on chapter matters
> In making membership (*1) a high priority, I feel it only fair to
> demand as an eligibility requirement that those standing as candidates
> be OWASP members in good standing. Is the individual roster (*2) the
> best way to verify membership?
> On a more general note: is this something other chapters have done?
> Are there pitfalls associated with it I perhaps haven't considered?
> Phone: 703.727.4034
> Web: http://goo.gl/Y5d2y
> (*1) - Dan, we need a sproingy-haired-update to this video:
> (*2) -
More information about the OWASP-Leaders