[Governance] OWASP and Commercial

psiinon psiinon at gmail.com
Fri Feb 7 14:01:53 UTC 2014

I have absolutely no problem with OWASP volunteers from making money from
OWASP related activities, such as consultation, training, publications etc.
In fact I'd _rather_ OWASP volunteers make some money in this way than
people who arent OWASP volunteers making money from things like OWASP
related training :)
However care needs to be taken to make sure that it is clear that any such
activities are not seen to be OWASP sanctioned/approved etc.
I also dont have a problem with board members making money in this way
either, although I would of course expect them to abstain from any board
votes that are in any way related to their commercial activities.
Having said that, I would feel uncomfortable with marketing like "Pay $$$
to be trained by OWASP Board member XYZ".


On Fri, Feb 7, 2014 at 10:06 AM, Jim Manico <jim.manico at owasp.org> wrote:

> Folks,
> I work as a freelancer now and make a living delivering onsite
> security training. I'm also working on a book. These are both things
> that OWASP monetizes as well.
> I feel like my efforts at OWASP as a board member and volunteer are in
> conflict with my professional work. It's a pretty clear conflict of
> interest. Would you care to provide guidance or suggestions over this
> matter? I try to take the ethical path but I'd like to check in with
> governance.
> Thank you,
> --
> Jim Manico
> @Manicode
> (808) 652-3805
> _______________________________________________
> Governance mailing list
> Governance at lists.owasp.org
> https://lists.owasp.org/mailman/listinfo/governance

OWASP ZAP <https://www.owasp.org/index.php/ZAP> Project leader
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://lists.owasp.org/pipermail/governance/attachments/20140207/89fb6513/attachment.html>

More information about the Governance mailing list