jim.manico at owasp.org
Thu Feb 20 07:11:38 UTC 2014
And Dennis, I'm a security vendor. Completely.
But I have stated my conflict of interest on several occasions and
even checked in with the Governance list.
I stand by my actions around treating OWASP as a charity and I do my
best to keep "work" and "charity" separate. I constantly re-evaluate
my stance as well. If you see incidents where I am abusing my role,
then say something as you have done in the past.
The division between "consultants" and "product vendors" is absolutely
irrelevant. Leaders especially must respect the brand regardless of
The big secret to my success is that taking a strong ethical stance is
not just good morality or good charitable behavior, but it also builds
trust and is good for business. Do The Right Thing and seriously
contribute to OWASP and watch what happens to your life and career.
So Dennis, as a founding member of OWASP, what OWASP projects can you
dive in and help more with? I see per your OWASP bio
"https://www.owasp.org/index.php/User:Dennis_Groves that you are a
"well known thought leader in application security" and I for one
would like to see that thought leadership translate into OWASP
projects that help spread application security awareness.
More information about the Owasp-board