[Global_education_committee] FW: GEC meeting minutes

Sebastien Gioria sebastien.gioria at owasp.org
Tue Dec 8 16:07:48 EST 2009


Nishi,

I've read you slides and something coming to my mind.

I think you're document is very good level for Project Manager, but
when you talk to executives, you have 5 minutes and don't need to deep
going to demo and so one.

It's why I propose to you the following TOC for the executive/Manager
document: :

1 - Why securing
 =>you're approach + perhaps legal risks ?
2 - Myths and reality of Security in a AppWeb World
3 - Short extract of the Top10 2010 because it's risk based
4 - Methodology to secure dev, methodology to secure review,
methodology to secure architecture, ... => Ref to OWASP guide, ASVS,
....

Perhaps i missunderstand what you think of manager ?
Anyway, I'm pleased to contibute with you in the OWASP-CBT.

Just to let you know, we (French guys
http://www.clusif.fr/fr/production/ouvrages/resume.asp?id=211 ) have
made a document to manager and executive (who will be translate in
english for the beginning of January 2010).

S.
-- 
OWASP French Chapter Leader
GSM: +33 6 23 04 00 51


More information about the Global_education_committee mailing list