[Owasp-board] [Owasp-leaders] OWASP 2014 - Strategic Goals

Matt Tesauro matt.tesauro at owasp.org
Mon Nov 11 21:37:17 UTC 2013

A strategy isn't (and shouldn't be) a plan.  Board decides on strategy, and
the OWASP employees turn those into plans with quarterly goals and all that
good stuff.

For good info and some clarity in the difference:

-- Matt Tesauro
OWASP WTE Project Lead
http://AppSecLive.org - Community and Download site
OWASP OpenStack Security Project Lead

On Mon, Nov 11, 2013 at 1:11 AM, Dennis Groves <dennis.groves at owasp.org>wrote:

> On Nov 10, 2013, at 8:01 PM, Jeff Williams <jeff.williams at owasp.org>
> wrote:
> I wasn't suggesting that the organization-focused goals aren't important.
> I'm thrilled to see OWASP continue to grow. Just saying a few of the
> strategic goal ideas for 2014 should be focused on our domain...
> I have to agree with Jeff.
> My greatest lessons in life come from the experience of founding OWASP.  I
> believe all great things start with a shared vision - a really big dream -
> a purpose that unites everybody in their participation. I made some very
> lofty statements in the early days that absolutely permeate the OWASP
> culture even today. Though the ‘vision’ have never been achieved, that is
> not the purpose of the vision - the purpose is to aim the ship.
> Other Examples:
>    - Imagine a world in which every single person on the planet is given
>    free access to the sum of all human knowledge. That's what we're doing.
>    ~Jimmy Wales
>    - A computer on every desktop. ~Bill Gates
>    - World Domination. ~Linus Torvalds
>    - Mark Shuttleworth seems to want to create “commercial quality free
>    software.”
> After the shared vision is agreed, then and only then can any meaningful
> strategic and organizational goals be set to move the community closer
> toward the lofty vision...
> Jeff’s ideas are closer to what I would feel are strategic goals, while
> the other suggestions I have read seem to be much closer to operational and
> business goals. Those are for the staff to work out, but they will work
> them out according to the vision you set.  I believe the role of the Board
> members is the ‘aiming of the ship.’  Strategic goals are part of that
> aiming. For example can OWASP really achieve the measurement of security in
> 2014? I very, very much doubt it - but we could move the needle in some
> very big ways!
> I encourage you all to think big, and dream bigger.
> If you aim low, you will certainly get there.
> If you aim for the impossible you will be very surprised at how much you
> will achieve in your struggles to get there.
> Cheers,
>> Dennis Groves <http://about.me/dennis.groves>, MSc<http://www.rhul.ac.uk/isg/prospectivestudents/prospectivestudents-msc/home.aspx>
> Stay in touch via email <dennis.groves at owasp.org> or schedule a meeting<http://goo.gl/8sPIy>
> .
> *“The things most people want to know about are usually none of their
> business.” *
> – George Orwell, 1984
> _______________________________________________
> Owasp-board mailing list
> Owasp-board at lists.owasp.org
> https://lists.owasp.org/mailman/listinfo/owasp-board
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://lists.owasp.org/pipermail/owasp-board/attachments/20131111/9512a683/attachment-0001.html>

More information about the Owasp-board mailing list