[Owasp-board] Whistleblower for 2014

Josh Sokol josh.sokol at owasp.org
Wed Dec 18 14:48:07 UTC 2013


I was unaware of this previous discussion.  Very well then.  I withdraw my
nomination of Jim to serve as Compliance Officer and nominate Dennis Groves
instead.

~josh


On Mon, Dec 16, 2013 at 4:12 PM, Dennis Groves <dennis.groves at owasp.org>wrote:

> To the Board,
>
> I love Jim and would support his appointment 100%.
>
> However, I would like to remind everyone we agreed the following is
> conflict of interest:
>
> > From: "Dennis Groves" <dennis.groves at owasp.org>
> > Cc: governance at lists.owasp.org
> > Subject: Re: [Governance] proposed Whistleblower and Anti-retaliation
> > policy
> > Date: Sun, 13 Oct 2013 16:13:40 -0700
>
> > My concern is that it specifies a "chairman of the board" as the
> > enforcement point. If the chairman of the board is on the board,
> > which is the case by definition - then there is a conflict of
> > interest between protection of the board and the OWASP foundation.
> > Thus, I recommend that the position of enforcement lie outside of the
> > foundation and the board; so that the position may arbitrate in the
> > best interest of everybody without any conflicts of interest.
>
> Remember OWASP's brand value is that peopl are able to trust us as
> objective precisely due to our neutrality.
>
> Is Jim planning to step down from the board and from OWASP?
>
> I certainly hope not! Jim is a very valuable member of the community
> who in fact would be the ideal person to manage the relationship with
> the neutral third party!
>
>
> Cheers,
>
> Dennis
>
>
> On Mon, 16 Dec 2013 13:55:37 -0600
> Josh Sokol <josh.sokol at owasp.org> wrote:
>
> > I nominate Jim Manico to serve as Compliance Officer.
> >
> > ~josh
> >
> >
> > On Mon, Dec 16, 2013 at 1:47 PM, Sarah Baso <sarah.baso at owasp.org>
> > wrote:
> >
> > > Board members -
> > >
> > > One more unresolved item that needs to be finalized by the end of
> > > the year is a decision on Compliance Officer per Whistleblower
> > > Policy - "A Compliance Officer shall be identified by the Board of
> > > Directors and approved by a unanimous vote by January 1 of each
> > > year. If the Board of Directors is not able to unanimously agree on
> > > the Compliance Officer, a neutral, third-party executive ombuds
> > > services will be contracted to serve in this role."
> > >
> > >  https://www.owasp.org/index.php/Governance/Whistleblower_Policy
> > >
> > > Thoughts on this?
> > > Sarah
> > >
> > > --
> > > Executive Director
> > > OWASP Foundation
> > >
> > > sarah.baso at owasp.org
> > > +1.312.869.2779
> > >
> > >
> > >
> > >
> > >
> > > _______________________________________________
> > > Owasp-board mailing list
> > > Owasp-board at lists.owasp.org
> > > https://lists.owasp.org/mailman/listinfo/owasp-board
> > >
> > >
>
>
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://lists.owasp.org/pipermail/owasp-board/attachments/20131218/c9302b6b/attachment.html>


More information about the Owasp-board mailing list