[Owasp-board] OAS Cyber Security Program

Tom Brennan - proactiveRISK tomb at proactiverisk.com
Wed May 7 02:19:18 UTC 2014

Feedback from board is the agreement looks good; can you clarify what the spirit of this means?

"4.1 Each party agrees to take all necessary measures to maintain the confidentiality of information provided by the other party, including where it involves their representatives, employees, sub-contractors and, more generally, their officers"

We are radically transparent so this clarification is important. What information? Everything we do is open-source

Tom Brennan

> On May 6, 2014, at 10:05 PM, "Contreras, Belisario" <BContreras at oas.org> wrote:
> Dear Tom,
> I hope everything is well. We were wondering if you have any news about this?
> Best, 
> Belisario
> From: <Contreras>, Belisario Contreras <bcontreras at oas.org>
> Date: Wednesday, April 30, 2014 at 9:46 AM
> To: "tom.brennan at owasp.org" <tom.brennan at owasp.org>
> Cc: Fabio Cerullo <fcerullo at owasp.org>, "mauro.flores at owasp.org" <mauro.flores at owasp.org>, "carlos.allendes at owasp.org" <carlos.allendes at owasp.org>, John Vargas <john.vargas at owasp.org>, "Subero, Diego" <DSubero at oas.org>, "jvilla at oas.org" <jvilla at oas.org>, "Dito, Brian" <BDito at oas.org>
> Subject: OAS Cyber Security Program
> Dear Tom,
> Once again many thanks for your time over the phone. As I mentioned, the OAS Cyber Security Program is really interested in establishing a partnership with OWASP. As we explained, our Member States has given us the mandates to promote the development of National CSIRTs; Provision of Technical Training; Implementation of Crisis Management Exercises; Capacity building on Industrial Control Systems (ICS); the development of National Cyber Security Strategies (with a Multi-stakeholder approach); promotion a “culture of cyber security”, among other relevant issues.
> The OAS would like to establish an agreement with OWASP with the purpose of increasing the level of awareness about the need of developing “secure applications”, and as well to establish a mechanism that would allow both organizations to deliver training activities together. In the past two years, our Program has invited OWASP representatives to participate as trainers in our events, and we would like to explore the possibility of increasing the level of participation in our activities throughout the region. We will be more than glad to promote OWASP initiatives in the Americas, and you might have the chance to promote the establishment of new chapters in Latin America and the Caribbean.
> We believe that there are several possibilities of collaboration and we are totally open to include OWASP in OAS initiatives. If you agree, we could arrange  more are detailed conversation over the phone or in our Headquarters in Washington DC. I am attaching a description of our Program and a recent MOU that we signed (just as a reference).
> We look forward to hear from you.
> Best regards,
> Belisario Contreras
> Program Manager
> Inter-American Committee against Terrorism
> Secretariat for Multidimensional Security
> Organization of American States
> 1889 F St. , NW -Washington D.C.
> T: (202) 370-4674
> F: (202) 458-3857
> bcontreras at oas.org 
> www.cicte.oas.org
> www.oas.org/cyber
>  <image003.jpg>
> <image003.jpg>

WARNING: E-mail transmission cannot be guaranteed to be secure or 
error-free as information could be intercepted, corrupted, lost, destroyed, 
arrive late or incomplete, or contain viruses. The sender therefore does 
not accept liability for any errors or omissions in the contents of this 
message, which arise as a result of e-mail transmission. No employee or 
agent is authorized to conclude any binding agreement on behalf of 
proactiveRISK with another party by email.

-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://lists.owasp.org/pipermail/owasp-board/attachments/20140506/063dcfab/attachment-0001.html>

More information about the Owasp-board mailing list