[Global_industry_committee] AppSec Industry Table - industry networking event

Konstantinos Papapanagiotou Konstantinos at owasp.org
Wed Jun 13 07:37:03 UTC 2012

I cannot agree with Marco more. This is why originally we wanted to do
a banker's roundtable which in the end turned out to be a PCI Council
We're now thinking to do the same with Greek bankers since it will be
easier for them to attend (no travel required).
I can reserve a room with internet/projector for you guys if you want
to coordinate it and also facilitate by sending out invitations (I can
even have the PCI Council guy participate in the roundtable as well).
We can have at least 2 such roundtables (one on Thursday, one on
The agenda could be:
- A brief presentation of what is OWASP
- How OWASP is helping the industry (key references)
- How OWASP can help YOU (discussion)

I can also have a couple of people from the Greek industry that have
been using OWASP tools/guide to speak as a kind of "case study".

Let's do this!

On Wed, Jun 13, 2012 at 10:32 AM,  <marco.m.morana at gmail.com> wrote:
> Tobias,
> I think networking with Appsec managers in different industry sectors is critical to boost visibility of OWASP to them as well as to gather insight on their specific needs so we can tailor our projects accordingly. The example of luncheons and dinners during OWASP conferences is good one but also organising round tables on specific topics and publicise surveys during theses conferences.
> This is the same reason way in project reboot I am asking OWASP to fund not the project but the socialisation of to specific venues conferences as this I think bring more value ultimately to the project/initiative as well OWASP. One critical point is how to gather the feedback and manage these connections, maybe this should involve also chapter leaders to make sure they are also engaged locally.
> Cheers
> Marco Mirko Morana
> Sent from my iPad
> On 13 Jun 2012, at 07:44, Konstantinos Papapanagiotou <Konstantinos at owasp.org> wrote:
>> Hi,
>> This is an amazing idea. We will be having a formal cocktail during
>> AppSec EU so we won't have a table but we can set up a meeting point
>> during the cocktail.
>> Just let me know. :)
>> Kostas
>> On Wed, Jun 13, 2012 at 2:36 AM, Tobias <tobias.gondrom at owasp.org> wrote:
>>> Hello fellow Global Industry members,
>>> will someone of you be at the upcoming AppSec EU in Greece?
>>> Maybe a small idea, which I tried at the AppSec in APAC and found useful:
>>> Among the OWASP attendees, industry members are usually a smaller subgroup
>>> or even a minority and thus it can be challenging to find their peers in the
>>> crowd for them. To bring the different OWASP attendees from industry
>>> together and give them a good way to connect with each other, how about to
>>> give them a common meeting and networking opportunity.
>>> This has two objectives:
>>> 1. generate value through networking and exchanging ideas among industry
>>> peers
>>> 2. improve communication between OWASP and industry members (what do they
>>> need from OWASP, which projects could OWASP offer they might not be aware of
>>> yet)
>>> E.g. at AppSec APAC, there was a dinner for all attendees and I asked Sarah
>>> to setup one table with a sign "Industry Leaders" (or you could equally use
>>> any other title on the sign....) and prior to the event, I went through the
>>> list of all attendees, carefully selected people from industry companies and
>>> sent them invitations to join this table.
>>> During the evening at the table we had interesting discussions about
>>> industry experiences and they could exchange what they feel works well from
>>> OWASP for their organisations and also what they would like to get from
>>> OWASP. I found that they liked this exchange of ideas with their peers and
>>> many of them also exchanged business cards to later stay in touch and
>>> cooperate with each other.
>>> If there is no common dinner during AppSec EU (or next AppSec US), you could
>>> equally use one evening for an informal dinner/beer evening outside (just
>>> send the email for a meeting point to the select group of industry people).
>>> One thing you need to watch out for when doing this:
>>> Make sure you don't have vendors or consultants on the table.
>>> Generating value for the industry members is the main objective and that
>>> comes from exchanging ideas with their peers and not from people trying to
>>> sell to them during that one evening. (Vendors/services consultants preying
>>> on industry members to acquire customers during that evening would ruin the
>>> whole purpose.) - The only thing that might potentially be mentioned during
>>> that evening could possibly be how to become an OWASP company
>>> member/sponsor, but even that should be mentioned only casually and after
>>> first discussing on how we (OWASP) can help industry companies. So pick the
>>> invited people from the attendee list carefully (and don't allow targeted
>>> vendor sponsoring towards that sub-group).
>>> What do you think? Any volunteer to organise this for AppSec EU?
>>> Btw. I can also provide you with my invitation email from last AppSec to use
>>> as a template, and I am sure Sarah will be most happy to coordinate with you
>>> on how to bring them together (during dinner event, or just informal beer
>>> evening or so).
>>> Best regards, Tobias
>>> _______________________________________________
>>> Global_industry_committee mailing list
>>> Global_industry_committee at lists.owasp.org
>>> https://lists.owasp.org/mailman/listinfo/global_industry_committee
>> _______________________________________________
>> Global_industry_committee mailing list
>> Global_industry_committee at lists.owasp.org
>> https://lists.owasp.org/mailman/listinfo/global_industry_committee

More information about the Global_industry_committee mailing list