[Owasp-board] Background check for Global Board members

Jim Manico jim.manico at owasp.org
Tue Sep 23 04:13:46 UTC 2014


Andrew,

By all means your feedback is encouraged and appreciated. I agree that 
the more complex issue will be dealing with this idea internationally. 
You think Australian privacy laws are tight, try Germany. :)

I am hoping that Virtual can advise us on this issue. We shall keep you 
posted.

Aloha,
Jim

On 9/22/14, 10:21 PM, Andrew van der Stock wrote:
> Apologies for my $0.05c.
>
> Although I have a history in the US, so you can inspect the 2.5 years 
> I lived there, good luck getting a national background check in 
> Australia. Only government agencies are allowed to request it and I 
> don't get the results. And our privacy system lies between the EU and 
> US in terms of approach.
>
> Again, as a current non-board member, I think a by-law change to 
> prevent felons joining the Board is a good idea, but it may be 
> impractical to obtain a background check in many countries. If you are 
> drafting new by laws, it should be flexible in approach to ensure 
> folks aren't knocked out because national laws override OWASP's by laws.
>
> Generally, if governments require a background check or clearance, 
> they will ask for you to go through it for the purposes of the 
> clearance. I wouldn't jump the gun unless specifically required. There 
> is a push on right now to reduce the total number of folks with 
> clearances to improve the quality of clearances and background checks, 
> so we shouldn't be adding to the burden unless there is a specific 
> issue the Board is trying to prevent.
>
> Again, apologies for sticking my nose in. Carry on.
>
> thanks
> Andrew
>
> On Tue, Sep 23, 2014 at 9:14 AM, Jim Manico <jim.manico at owasp.org 
> <mailto:jim.manico at owasp.org>> wrote:
>
>     Fair point, Eoin. This issue is governed very differently from
>     country-to-country. I consider this "operations" and think we
>     should simply ask Paul his opinion and experience here and go from
>     there.
>
>     Glad you brought this up, Fabio.
>
>     Aloha,
>     --
>     Jim Manico
>     @Manicode
>     (808) 652-3805 <tel:%28808%29%20652-3805>
>
>     On Sep 22, 2014, at 5:26 PM, Eoin Keary <eoin.keary at owasp.org
>     <mailto:eoin.keary at owasp.org>> wrote:
>
>>     We have an EU entity also.
>>
>>     Eoin Keary
>>     Owasp Global Board
>>     +353 87 977 2988 <tel:%2B353%2087%20977%202988>
>>
>>
>>     On 22 Sep 2014, at 21:40, Fabio Cerullo <fcerullo at owasp.org
>>     <mailto:fcerullo at owasp.org>> wrote:
>>
>>>     Eoin, the Foundation is based in the US so the background check
>>>     should be originated there.
>>>
>>>     Jim, thanks for the support on this initiative... I also believe
>>>     is reasonable to vet staff/Board.
>>>
>>>     Josh, regarding scope we could use the same as currently used
>>>     for OWASP staff.
>>>
>>>     Paul, could you please provide an insight into how this is done
>>>     for staff?
>>>
>>>     Thanks
>>>     Fabio
>>>
>>>     On Mon, Sep 22, 2014 at 2:22 PM, Jim Manico
>>>     <jim.manico at owasp.org <mailto:jim.manico at owasp.org>> wrote:
>>>
>>>         Good point, international rules are very wonky about this topic.
>>>
>>>         But in general, when we can, background checks for board and
>>>         staff seem reasonable.
>>>
>>>         - Jim
>>>
>>>
>>>         On 9/22/14, 4:00 PM, Eoin Keary wrote:
>>>>         FYI,
>>>>
>>>>         Background checking in Ireland is limited to protect privacy
>>>>
>>>>         http://www.dataprotection.ie/docs/Data-Protection-in-the-Workplace/1239.htm
>>>>
>>>>
>>>>
>>>>         Eoin Keary
>>>>         Owasp Global Board
>>>>         +353 87 977 2988 <tel:%2B353%2087%20977%202988>
>>>>
>>>>
>>>>         On 22 Sep 2014, at 18:11, Josh Sokol <josh.sokol at owasp.org
>>>>         <mailto:josh.sokol at owasp.org>> wrote:
>>>>
>>>>>         I'm fine with this, but we would need to determine in
>>>>>         advance what is deemed acceptable or unacceptable as it's
>>>>>         not like a background check is a binary response
>>>>>         (Good/Bad, Yes/No).
>>>>>
>>>>>         ~josh
>>>>>
>>>>>         On Mon, Sep 22, 2014 at 11:22 AM, Jim Manico
>>>>>         <jim.manico at owasp.org <mailto:jim.manico at owasp.org>> wrote:
>>>>>
>>>>>             I'm thinking safely and protection of the org. We do
>>>>>             not want a felon running for the board, I think. I'm
>>>>>             still reading about this and it looks fairly standard
>>>>>             to background check those with legal duty in the
>>>>>             organization, which includes potential staff hires and
>>>>>             board....
>>>>>
>>>>>             --
>>>>>             Jim Manico
>>>>>             @Manicode
>>>>>             (808) 652-3805 <tel:%28808%29%20652-3805>
>>>>>
>>>>>             On Sep 22, 2014, at 11:54 AM, Eoin Keary
>>>>>             <eoin.keary at owasp.org <mailto:eoin.keary at owasp.org>>
>>>>>             wrote:
>>>>>
>>>>>>             Fabio, to quote you:
>>>>>>
>>>>>>             "As we are gradually becoming more involved with
>>>>>>             government bodies in the US and abroad,.."
>>>>>>
>>>>>>             Level of commitment? By getting a background check?
>>>>>>
>>>>>>             Whatever suits the majority, I feel it is a waste of
>>>>>>             time, has this been requested yet?
>>>>>>
>>>>>>
>>>>>>
>>>>>>
>>>>>>             Eoin Keary
>>>>>>             Owasp Global Board
>>>>>>             +353 87 977 2988 <tel:%2B353%2087%20977%202988>
>>>>>>
>>>>>>
>>>>>>             On 22 Sep 2014, at 15:27, Fabio Cerullo
>>>>>>             <fcerullo at owasp.org <mailto:fcerullo at owasp.org>> wrote:
>>>>>>
>>>>>>>             Eoin,
>>>>>>>
>>>>>>>             This goes beyond the government bodies and shows a
>>>>>>>             level of commitment from the Global Board elected
>>>>>>>             representatives. It actually aligns quite nicely
>>>>>>>             with what has been agreed about HR training for
>>>>>>>             Board members in our last Board meeting.
>>>>>>>
>>>>>>>             I'm looking forward to your feedback.
>>>>>>>
>>>>>>>             Thanks
>>>>>>>             Fabio
>>>>>>>
>>>>>>>             On Mon, Sep 22, 2014 at 8:02 AM, Eoin Keary
>>>>>>>             <eoin.keary at owasp.org <mailto:eoin.keary at owasp.org>>
>>>>>>>             wrote:
>>>>>>>
>>>>>>>                 I think the government in question would request
>>>>>>>                 a background check if necessary.
>>>>>>>
>>>>>>>                 Eoin Keary
>>>>>>>                 Owasp Global Board
>>>>>>>                 +353 87 977 2988 <tel:%2B353%2087%20977%202988>
>>>>>>>
>>>>>>>
>>>>>>>                 On 22 Sep 2014, at 10:25, Fabio Cerullo
>>>>>>>                 <fcerullo at owasp.org <mailto:fcerullo at owasp.org>>
>>>>>>>                 wrote:
>>>>>>>
>>>>>>>>                 Guys,
>>>>>>>>
>>>>>>>>                 As we are gradually becoming more involved with
>>>>>>>>                 government bodies in the US and abroad, I think
>>>>>>>>                 is important to run a background check for new
>>>>>>>>                 and current Global Board members going forward.
>>>>>>>>
>>>>>>>>                 Here is some background info on the subject:
>>>>>>>>
>>>>>>>>                 *Background Checks, Screening and Your Nonprofit*
>>>>>>>>                 http://www.nonprofitrisk.org/library/articles/backgroundchecks.shtml
>>>>>>>>                 *
>>>>>>>>                 *
>>>>>>>>                 *Screening and Background Checking*
>>>>>>>>                 https://www.nonprofitrisk.org/advice/faqs/screening2.shtml
>>>>>>>>
>>>>>>>>                 Please let me know your thoughts.
>>>>>>>>
>>>>>>>>                 Thanks
>>>>>>>>                 Fabio
>>>>>>>>
>>>>>>>>
>>>>>>>>                 _______________________________________________
>>>>>>>>                 Owasp-board mailing list
>>>>>>>>                 Owasp-board at lists.owasp.org
>>>>>>>>                 <mailto:Owasp-board at lists.owasp.org>
>>>>>>>>                 https://lists.owasp.org/mailman/listinfo/owasp-board
>>>>>>>
>>>>>>>
>>>>>>             _______________________________________________
>>>>>>             Owasp-board mailing list
>>>>>>             Owasp-board at lists.owasp.org
>>>>>>             <mailto:Owasp-board at lists.owasp.org>
>>>>>>             https://lists.owasp.org/mailman/listinfo/owasp-board
>>>>>
>>>>>             _______________________________________________
>>>>>             Owasp-board mailing list
>>>>>             Owasp-board at lists.owasp.org
>>>>>             <mailto:Owasp-board at lists.owasp.org>
>>>>>             https://lists.owasp.org/mailman/listinfo/owasp-board
>>>>>
>>>>>
>>>
>>>
>>>         _______________________________________________
>>>         Owasp-board mailing list
>>>         Owasp-board at lists.owasp.org <mailto:Owasp-board at lists.owasp.org>
>>>         https://lists.owasp.org/mailman/listinfo/owasp-board
>>>
>>>
>
>     _______________________________________________
>     Owasp-board mailing list
>     Owasp-board at lists.owasp.org <mailto:Owasp-board at lists.owasp.org>
>     https://lists.owasp.org/mailman/listinfo/owasp-board
>
>

-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://lists.owasp.org/pipermail/owasp-board/attachments/20140923/be90f126/attachment-0001.html>


More information about the Owasp-board mailing list