[Owasp-board] Items for DC board meeting
matt.tesauro at owasp.org
Thu Nov 4 15:40:58 UTC 2010
Agreed (@ Richard) and also that there is prep work that needs to be
done by the board.
I have some material for review by the board prior to his call next
Tuesday. He's sent the following questions and would appreciate the
board members considering them and bringing ideas/answers to the call.
We won't finalize anything on this call but this should help the board
start to firm up our ideas on this issue as well as set a common
vocabulary for the discussion. The goal of the call is to determine if
the board is ready to take the next action(s) on setting goals for OWASP.
The questions are:
1) Is there Board consensus and commitment to leading OWASP to the next
2) What will/should OWASP be like 5 and 15 years from today?
3) What are the OWASP core values and core purpose that will guide the
transition to the desired future state?
4) What are the OWASP available people and financial resources required
to reach the desired future state?
Additionally, he requested everyone read the short PDF attached. Its a
Harvard Business Journal article "Building Your Company's Vision" by
James Collins. Its only ~16 pages and the key information is on the
first page (after the title page).
-- Matt Tesauro
OWASP Board Member
OWASP WTE Project Lead
http://AppSecLive.org - Community and Download site
On 11/04/2010 10:14 AM, Eoin wrote:
> Great idea!!!!
> I believe we can learn something from Richard, he comes from great
> pedigree (Ernst & Young). :0)
> I think it makes strategic sense to discuss options with him and to gain
> some of his insight.
> We need to agree what we actually want in order to communicate our
> objectives to Richard effectively. I believe we need to do this before
> Richard talks to us (this may be the derailment jeff was talking about)
> otherwise he may not understand context and limitations of our options,
> gameplan etc.
> On 4 November 2010 14:43, Matt Tesauro <matt.tesauro at owasp.org
> <mailto:matt.tesauro at owasp.org>> wrote:
> 1) Rackspace offers both supported and unsupported hosts - the specific
> breakdown of what they are offering are the very details to be worked
> out. They also have a hybrid model where we can mix and match fully
> supported and unsupported hosts. My understanding is that Larry doesn't
> want to admin OWASP boxes going forward and I am taking that into
> account in my planning. If my assumptions about Larry's future
> involvement are incorrect, I need to know that. In general, we're
> looking at getting ~10 cloud hosts (all Linux) to run the various bits
> of our infrastructure plus have spares to experiment on.
> 2) The purpose of the Skype call is not to actually do the facilitation
> but to make sure both parties are on the same page. Additionally, it
> will ensure both the Board and Richard want to move forward to do the
> actual work. Assuming there is mutual agreement, then we'd need to set
> a time for the actual meeting on goals for the board / OWASP.
> -- Matt Tesauro
> OWASP Board Member
> OWASP WTE Project Lead
> http://AppSecLive.org <http://appseclive.org/> - Community and
> Download site
> On 11/04/2010 12:11 AM, Jeff Williams wrote:
> > Matt,
> > 1) Do you know how the Rackspace solution stacks up against our
> > requirements? Obviously the price is right, but will they provide any
> > support? Will this help offload Larry's support to OWASP or will
> it just
> > make things more difficult for him?
> > 2) I like the concept of getting someone to facilitate identifying
> > goals for the board. I suspect that this will massively derail
> the meeting
> > though. Should we schedule some specific time just for this
> > --Jeff
> > -----Original Message-----
> > From: owasp-board-bounces at lists.owasp.org
> <mailto:owasp-board-bounces at lists.owasp.org>
> > [mailto:owasp-board-bounces at lists.owasp.org
> <mailto:owasp-board-bounces at lists.owasp.org>] On Behalf Of Matt Tesauro
> > Sent: Wednesday, November 03, 2010 11:34 PM
> > To: OWASP Foundation Board List
> > Subject: [Owasp-board] Items for DC board meeting
> > I have a couple of items for the DC board meeting. I will be
> adding these
> > (and some more details) to the agenda over the weekend.
> > (1) I have a tentative "hand-shake" agreement from the CSO of
> Rackspace for
> > them to provide OWASP hosting on their cloud infrastructure in
> exchange for
> > a corporate membership + some verbiage along the lines of "hosted by
> > Rackspace Cloud" on the www.owasp.org <http://www.owasp.org/>.
> There are still specific details to
> > work out but it looks my second go at Rackspace is going to solve our
> > hosting issues.
> > (2) I have planned to have Richard Tesauro (my father) Skype into
> our board
> > meeting to discuss working with the board to define some short,
> medium and
> > long term goals. I have mentioned this several times in the past
> and really
> > think its time to get this done especially with the Summit
> approaching in
> > 2011. I've attached his bio/vita to this email so you can get an
> idea of
> > his background. He has agreed to do the work for a nominal hourly
> > (more then 80% off his normal rate) if the board truly wants to
> engage his
> > services.
> > Thoughts?
> > --
> > -- Matt Tesauro
> > OWASP Board Member
> > OWASP WTE Project Lead
> > http://www.owasp.org/index.php/Category:OWASP_Live_CD_Project
> > http://AppSecLive.org <http://appseclive.org/> - Community and
> Download site
> Owasp-board mailing list
> Owasp-board at lists.owasp.org <mailto:Owasp-board at lists.owasp.org>
> Eoin Keary
> OWASP Global Board Member
> OWASP Code Review Guide Lead Author
> Sent from my i-Transmogrifier
-------------- next part --------------
A non-text attachment was scrubbed...
Name: Building Your Company's Vision - Jim Collins.pdf
Size: 529722 bytes
Desc: not available
More information about the Owasp-board