[Owasp-board] [Owasp-leaders] Feedback Requested 2019 General Chapters/Project fund

Sherif Mansour sherif.mansour at owasp.org
Sun Dec 9 13:21:13 UTC 2018


No problem

Here is a doc on the approach - would love the community's feedback before
the vote in 2 weeks:
https://docs.google.com/document/d/1RqexhbnBkmJnNe21gb7HmB1kacLrxih34LigZK4NH3s/edit?usp=sharing

On Wed, Dec 5, 2018 at 10:48 AM John Patrick Lita <
john.patrick.lita at owasp.org> wrote:

> Hi thank you looking forward 😁
>
> On Wed, Dec 5, 2018, 6:44 PM Sherif Mansour <sherif.mansour at owasp.org
> wrote:
>
>> Thanks John, my hope is to have a lightweight process otherwise it won't
>> scale. I want us to move away from doing appsec to keep a foundation to ->
>> We have a foundation to do appsec. At the moment it feels the other way
>> round.
>>
>> FYI I have placed to board proposal here for the next vote (Dec 19):
>> https://www.owasp.org/index.php/December_2018
>> Once that is done I will get the ball rolling with the staff - on thing
>> we also need to work on is better guidlines on what you can expense and how
>> etc..
>>
>> -Sherif
>>
>> On Wed, Dec 5, 2018 at 5:04 AM John Patrick Lita <
>> john.patrick.lita at owasp.org> wrote:
>>
>>> Hi All
>>>
>>> Just an Idea, since my chapter here in Manila PH is deactivated, and one
>>> of the reason is the same "Funds" , in my view and experience here in my
>>> country, most of the company is not aware in software security like having
>>> an SSDLC, DevSecOps and other stuff, i have a lot of work to do to make
>>> software security more visible here.
>>>
>>> my suggestion is:
>>>
>>>    1. Lets have a Project Plan for each chapter for us to determine how
>>>    much budget they need.
>>>    2. once the project plan for each chapter is done, the board should
>>>    review each project plan to ensure the output is feasible or not
>>>    3. then if the project plan is approve from the board the chapter
>>>    should follow the project plan is being executed and delivered in the date
>>>    or output committed by the chapter leader.
>>>    4. if the chapter leader failed to deliver the project plan like
>>>    there is a deviation or any delayed the chapter leader should create a
>>>    Incident Report (IR) to explain why the project, event, is cancelled or why
>>>    the budget is needed to increase this should be explained well so that we
>>>    can see what is the problem on the chapter and the leader.
>>>    5. then the chapter leader should send a report after the event, for
>>>    us chapter leader can share what are the lesson learns and problems so that
>>>    we can improve and help the chapter.
>>>    6. if the chapter leader is failed to deliver all the project plan
>>>    that he/she submitted to the board, then there should be consequence, like
>>>    not chapter funds for next year or should we propose to double up the
>>>    effort to make it more fair for both parties.
>>>
>>> This is just my suggestion, my chapter page is deactivated and all the
>>> effort i've done is remove, since most of the event and expenses came from
>>> my own pocket and i was disappointed.
>>>
>>>
>>> *John Patrick Lita *
>>> john.patrick.lita at owasp.org | OWAS Manila
>>> jaypee.lita at cspcert.ph | Director of Red Team Operations
>>> <https://lists.owasp.org/mailman/listinfo/owasp-manila>*|| Every master
>>> was once a beginner ||*
>>>
>>>
>>> On Wed, Dec 5, 2018 at 5:10 PM Dinis Cruz <dinis.cruz at owasp.org> wrote:
>>>
>>>> yap, a shared fund for the chapters is an idea that I've talked many
>>>> times as the best way to solve the curremt chapter funds situation
>>>>
>>>> so go for it :)
>>>>
>>>> On Sun, 18 Nov 2018, 12:10 Sherif Mansour <sherif.mansour at owasp.org
>>>> wrote:
>>>>
>>>>> Hi all,
>>>>>
>>>>> Would very much like your feedback and if you have alternative
>>>>> suggestions please let me know.
>>>>>
>>>>> I have been thinking about the way we do our annual project/chapter
>>>>> budgets and wanted to run something by you.
>>>>>
>>>>> Why don’t we ask all the chapters/projects/committee for funds they
>>>>> *want/need* for initiatives for 2019 and for the foundation to have a
>>>>> general pool
>>>>> of funds for larger chapters + foundation to contribute & *raise*
>>>>> funds.
>>>>>
>>>>> This does a few things:
>>>>> 1) It would create more activity and highlight which parts of the
>>>>> community need funds to take on thise activities
>>>>>
>>>>> 2) it helps distribute funds in a simple way - because there is a
>>>>> general pool and we have identified all/most of the demand we know how much
>>>>> money needs to be in the pool / how much funds we need to raise
>>>>>
>>>>> 3) It shifts the conversation from - how do larger chapters keep the
>>>>> funds already earned - to how chapters can contribute to
>>>>> chapters/projects/committees can utilise funds to further the mission on
>>>>> the foundation.
>>>>>
>>>>> 4) These demands identified can also help act as the basis of
>>>>> foundation fund raising efforts. I.e. if there are not enough funds we go
>>>>> out and ask for it.
>>>>>
>>>>> -Sherif
>>>>> --
>>>>>
>>>>> Sherif Mansour
>>>>> OWASP Global Board Member & OWASP London Chapter Leader
>>>>> Site: https://www.owasp.org/index.php/London
>>>>> Email: sherif.mansour at owasp.org
>>>>> Follow OWASP London Chapter on Twitter: @owasplondon  <https://twitter.com/OWASPLondon>
>>>>> "Like" us on Facebook: https://www.facebook.com/OWASPLondon
>>>>> Subscribe to our (lightweight) mailing list: https://lists.owasp.org/mailman/listinfo/owasp-london
>>>>>
>>>>> Consider giving back, and supporting the open source community by
>>>>> becoming a member <https://www.owasp.org/index.php/Membership> or
>>>>> making a donation <https://www.owasp.org/index.php/Donate> today!
>>>>>
>>>>>
>>>>> Join us at AppSec USA 2018 <https://2018.appsecusa.org/> 8-12 October
>>>>> in San Jose, CA!
>>>>> _______________________________________________
>>>>> OWASP-Leaders mailing list
>>>>> OWASP-Leaders at lists.owasp.org
>>>>> https://lists.owasp.org/mailman/listinfo/owasp-leaders
>>>>>
>>>> _______________________________________________
>>>> OWASP-Leaders mailing list
>>>> OWASP-Leaders at lists.owasp.org
>>>> https://lists.owasp.org/mailman/listinfo/owasp-leaders
>>>>
>>>
>>
>> --
>>
>> Sherif Mansour
>> OWASP Global Board Member & OWASP London Chapter Leader
>> Site: https://www.owasp.org/index.php/London
>> Email: sherif.mansour at owasp.org
>> Follow OWASP London Chapter on Twitter: @owasplondon  <https://twitter.com/OWASPLondon>
>> "Like" us on Facebook: https://www.facebook.com/OWASPLondon
>> Subscribe to our (lightweight) mailing list: https://lists.owasp.org/mailman/listinfo/owasp-london
>>
>> Consider giving back, and supporting the open source community by
>> becoming a member <https://www.owasp.org/index.php/Membership> or making
>> a donation <https://www.owasp.org/index.php/Donate> today!
>>
>>
>> Join us at AppSec USA 2018 <https://2018.appsecusa.org/> 8-12 October in
>> San Jose, CA!
>>
>

-- 

Sherif Mansour
OWASP Global Board Member & OWASP London Chapter Leader
Site: https://www.owasp.org/index.php/London
Email: sherif.mansour at owasp.org
Follow OWASP London Chapter on Twitter: @owasplondon
<https://twitter.com/OWASPLondon>
"Like" us on Facebook: https://www.facebook.com/OWASPLondon
Subscribe to our (lightweight) mailing list:
https://lists.owasp.org/mailman/listinfo/owasp-london

Consider giving back, and supporting the open source community by becoming
a member <https://www.owasp.org/index.php/Membership> or making a donation
<https://www.owasp.org/index.php/Donate> today!


Join us at AppSec USA 2018 <https://2018.appsecusa.org/> 8-12 October in
San Jose, CA!
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://lists.owasp.org/pipermail/owasp-board/attachments/20181209/75e540ef/attachment.html>


More information about the Owasp-board mailing list