[Owasp-board] What working session will convince you to come to the Summit

dinis cruz dinis.cruz at owasp.org
Mon Dec 20 17:52:31 UTC 2010

Thanks Jeremiah, you will be missed :(

I'm CCing the Summit team to make sure we capture your ideas.

Team, we need to figure out who should we get to lead such 'Grow the
industry' working session, any ideas?

In some ways, the lack of investment in Application Security (when for
example compared with Network Security) is a good example of the lack of
focus/understanding from the people controlling the budgets.

Dinis Crua

---------- Forwarded message ----------
From: Jeremiah Grossman <jeremiah at whitehatsec.com>
Date: 20 December 2010 17:44
Subject: Re: What working session will convince you to come to the Summit
To: dinis cruz <dinis.cruz at owasp.org>
Cc: Arian Evans <arian.evans at whitehatsec.com>

Hey Dinis,

       Yes, I received Justin's much appreciated invite. Only as explained,
I have a schedule conflict that week and it can't be changed. Arian may have
the time and desire to attend, but he's on vacation right now is a bit slow
in response.

I can't substantively improve on your content or the people attending, much
good work has already been done. What I can tell you are the "needs" of the
appsec industry has I see them. First, it should be an OWASP priority to
GROW the industry. Grow in the number of people/organizations involved, but
perhaps just as or more important than dollars invested.

Secondly, business justification for the aforementioned investment. Do IT
security budgets needs to grow to accommodate appsec... or must dollars be
stolen from existing network/host budgetary items. Either way, the argument
must be made concisely and simply so it can be parroted about. The rest of
everything else is purely and academic exercise.



On Dec 20, 2010, at 4:29 AM, dinis cruz wrote:

> Hey Jeremiah
> I can see that Justin has invited you (
http://www.owasp.org/index.php/Summit_2011_Attendee/Attendee087) so my
questions to you are:
>       • Which Working Session is missing from here:
>       • Who else should be coming:
> We are at the stage were we are creating new working sessions every day,
so maybe, Jeremiah, what about a Working Session on: "Why and How OWASP
should grow the WebAppSec market?"
> Arian, you can't miss this one, given your passion for WebAppSec, this
Summit is going to the place to be :)
> Dinis Cruz
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://lists.owasp.org/pipermail/owasp-board/attachments/20101220/c2cbe4de/attachment-0002.html>

More information about the Owasp-board mailing list