[Owasp-board] Fwd: Request for 150K USD seed fund for the OWASP-DevSecCon Summit in April 2017 in the UK

Tobias Gondrom tobias.gondrom at owasp.org
Tue Nov 8 20:13:15 UTC 2016

I support this initiative. 

This would be good to do!

Best, Tobias



From: owasp-board-bounces+tobias.gondrom=owasp.org at lists.owasp.org [mailto:owasp-board-bounces+tobias.gondrom=owasp.org at lists.owasp.org] On Behalf Of Seba
Sent: Monday, November 7, 2016 09:17
To: Michael Coates <michael.coates at owasp.org>
Cc: dinis <dinis at owasp.org>; OWASP Foundation Board List <owasp-board at lists.owasp.org>; Francois <francois at devseccon.com>
Subject: Re: [Owasp-board] Fwd: Request for 150K USD seed fund for the OWASP-DevSecCon Summit in April 2017 in the UK




I have added this as an extra topic on the agenda:



In the coming weeks I will create a detailed budget plan together with the team and Andrew/Laura.

At this state we are looking for the approval under the condition that a detailed budget will be provided by the next board call.


Available for questions on Skyp/mobile in the coming days.

I will not be able to join the call, as it will be midnight for me then ...


Kind regards,



On Tue, Oct 25, 2016 at 9:52 PM Michael Coates <michael.coates at owasp.org <mailto:michael.coates at owasp.org> > wrote:

Acknowledged. We've got it now via the thread history.


The correct list is 

OWASP Foundation Board List <owasp-board at lists.owasp.org <mailto:owasp-board at lists.owasp.org> >


In a previous email you sent it to a defunct owasp.org <http://owasp.org>  address that I believe was created as part of gmail. I don't recall why.

Michael Coates | @_mwc <https://twitter.com/intent/user?screen_name=_mwc> 

OWASP Global Board





On Tue, Oct 25, 2016 at 2:40 AM, Seba <seba at owasp.org <mailto:seba at owasp.org> > wrote:

Got an email that this is the correct email address?
Weird, as I already sent this to the email below.
Can hou confirm reception of this email?



---------- Forwarded message ---------
From: Seba <seba at owasp.org <mailto:seba at owasp.org> >

Date: Mon, 24 Oct 2016 at 14:00
Subject: Request for 150K USD seed fund for the OWASP-DevSecCon Summit in April 2017 in the UK
To: Laura Grau <laura.grau at owasp.org <mailto:laura.grau at owasp.org> >, owasp-board at owasp.org <mailto:owasp-board at owasp.org>  <owasp-board at owasp.org <mailto:owasp-board at owasp.org> >
Cc: dinis <dinis at owasp.org <mailto:dinis at owasp.org> >, psiinon <psiinon at gmail.com <mailto:psiinon at gmail.com> >, Francois <francois at devseccon.com <mailto:francois at devseccon.com> >


Dear Laura, Board,


Last week I attended DevSecCon in London together with a couple of other OWASP leaders (Dinis, Simon) and was excited about the positive atmosphere, content, workshops and attendees (both from development as from security backgrounds).


Together with Francois Raynaud (founder of DevSecCon, in cc) we would like to organise a summit with as main focus and theme: grouping the DevOps, Security and OWASP communities to work on actionable and automated solutions for secure development and operations of software.


We submitted the following event as Summit in OCMS as proposal for next year.


Owasp-DevSecCon Summit, England, April 2017


OWASP is joining forces with DevSecCon to create a Summit focused on the collaboration between 

Developers and Application Security. 

This is not a conference with uni-directional presentations, this is a working summit with working sessions on areas like: Secure Coding, Security Testing/TDD, DevOps, Threat Modeling, Mobile Security, IoT, Risk & Governance, Privacy & CTO/CISO requirements, Secure Design, Bug-bounties, Browser Security, AI for Attack & Defence, DDoS, Cyber Warfare, AppSec Standards; and of course, working sessions on popular OWASP projects (lead by its leaders) such as: Zap, Top 10, Dependency Checker, OwaspSAMM, OWASP Guides (Testing, ASVS, Core Review), AppSensor and dozens more.


Using the same model as the past two OWASP Summits in Portugal, this 5 day event will be a 16h day high energy experience, where the attendees are expected to work and collaborate really hard. Every working session will be thoroughly prepared and focused on actionable outcomes.


If you care about Application Security and want to collaborate with the key players in this industry, this is the event to be.


The Summit will occur in England, April 2017, with an entry ticket of $2000 (covering travel + hotel + accommodation + event fee). OWASP is funding a large number of its leaders and other deserving individuals to attend, so if you feel you can't afford this fee, or your company is not in a position to sponsor you, please contact the event organisers.



In terms of budget we ask for a seed fund of 150K USD (first draft budget attached in the OCMS request).


Our objective is to lower the financial impact (and possibly get this to 0 or even make it a budget positive event) through sponsoring (externally and from projects/chapters) and have participant's organisations cover the costs.

Nevertheless, we ask this seed fund to get the ball rolling and focus on content, speakers, workshops and tracks. In parallel we will involve Laura, the staff and our community to co-organize this as a professional event and submit a detailed budget in the following cycles.


Our main question is:

1) your approval to reserve this summit seed fund (either by email or on your next board meeting 9-November).

+ your support to make this a great summit!


Available for any questions/remarks thru email or other means.


Thank you


Kind regards



OWASP SAMM project

OWASP Belgium chapter





Owasp-board mailing list
Owasp-board at lists.owasp.org <mailto:Owasp-board at lists.owasp.org> 

-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://lists.owasp.org/pipermail/owasp-board/attachments/20161108/c01c78d8/attachment-0001.html>

More information about the Owasp-board mailing list