[Owasp-board] Between now and August Board Meeting

Sherif Mansour sherif.mansour at owasp.org
Sat Jul 21 12:02:05 UTC 2018


Hey team,

Thank you for a successful AppSec EU, and for a productive board meeting
during the conference.

I wanted to pick up where we left off and do some work between now and the
August, some I would like some help with.


   1. *OWASP Chapters: *While we have done some great strides in setting
   the global events strategy, we need to provide the foundation and staff
   some air cover in order for them to comfortable take those events on. In
   order to have the same open conversations we have done for global events,
   but for the chapters. I would recommend the following:

   1. An initial conversation internally with the foundation on the
      existing challenges and to document them
      2. Present the challenges to the community, discuss potential
      solutions in two/three meetings (AMER/EMEA/APAC time zone friendly calls).
      3. Document the community feedback and a draft motion for the board
      to discuss openly in the August Board meeting.
      4. By the September board meeting the community would have had enough
      time to provide feedback + for the board to have edited the motion enough
      to vote on it.
      5. *Ask from the board - *I have a habit of over committing, are
      there board members that could help me and Andrew on this to lighten the
      load please?

      2. *OWASP Foundation Strategy: *I have taken a look at the strategy
   Karen proposed *(See Link)*
   <https://drive.google.com/drive/u/1/folders/1hDfbZ_VDHCp794h4Vp6fJ77-XdcRwd3J>,
   having discussed it with Karen during AppSec EU we are both saying the
   somethings which is good. The only point I would make is that it looks too
   high level like  mission/vision statements. Strategic plans would identify
   clear items on *what* to execute on while business plan includes *how *to
   execute what has been agreed on. Given that we are in July, for 2018 we
   know the tactical issues that need to be worked on so I would recommend we
   focus on 2019.

   3. *Compliance Committee: * Greg is doing an amazing job on the
   Compliance committee charter, I'm personally looking forward to voting on
   it. I would also like to note that I'm also seeing some cases of "vigilante
   justice", partially do to inaction so changes would be welcome here.

Kind regards,


-- 

Sherif Mansour
OWASP Global Board Member & OWASP London Chapter Leader
Site: https://www.owasp.org/index.php/London
Email: sherif.mansour at owasp.org
Follow OWASP London Chapter on Twitter: @owasplondon
<https://twitter.com/OWASPLondon>
"Like" us on Facebook: https://www.facebook.com/OWASPLondon
Subscribe to our (lightweight) mailing list:
https://lists.owasp.org/mailman/listinfo/owasp-london

Consider giving back, and supporting the open source community by becoming
a member <https://www.owasp.org/index.php/Membership> or making a donation
<https://www.owasp.org/index.php/Donate> today!


Join us at AppSec USA 2018 <https://2018.appsecusa.org/> 8-12 October in
San Jose, CA!
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://lists.owasp.org/pipermail/owasp-board/attachments/20180721/1f378ef9/attachment.html>


More information about the Owasp-board mailing list