[Owasp-board] Between now and August Board Meeting

Martin Knobloch martin.knobloch at owasp.org
Mon Jul 23 14:15:12 UTC 2018

Hi Bill,

Yes please, contact Greg!
Your imput is most welcome!


On Sun, Jul 22, 2018 at 12:09 AM, Bil Corry <bil.corry at owasp.org> wrote:

> Any chance the Compliance Committee can review the new charter for the
> Compliance Committee?
> - Bil
> On Jul 21, 2018, at 5:02 AM, Sherif Mansour <sherif.mansour at owasp.org>
> wrote:
> Hey team,
> Thank you for a successful AppSec EU, and for a productive board meeting
> during the conference.
> I wanted to pick up where we left off and do some work between now and the
> August, some I would like some help with.
>    1. *OWASP Chapters: *While we have done some great strides in setting
>    the global events strategy, we need to provide the foundation and staff
>    some air cover in order for them to comfortable take those events on. In
>    order to have the same open conversations we have done for global events,
>    but for the chapters. I would recommend the following:
>    1. An initial conversation internally with the foundation on the
>       existing challenges and to document them
>       2. Present the challenges to the community, discuss potential
>       solutions in two/three meetings (AMER/EMEA/APAC time zone friendly calls).
>       3. Document the community feedback and a draft motion for the board
>       to discuss openly in the August Board meeting.
>       4. By the September board meeting the community would have had
>       enough time to provide feedback + for the board to have edited the motion
>       enough to vote on it.
>       5. *Ask from the board - *I have a habit of over committing, are
>       there board members that could help me and Andrew on this to lighten the
>       load please?
>       2. *OWASP Foundation Strategy: *I have taken a look at the strategy
>    Karen proposed *(See Link)*
>    <https://drive.google.com/drive/u/1/folders/1hDfbZ_VDHCp794h4Vp6fJ77-XdcRwd3J>,
>    having discussed it with Karen during AppSec EU we are both saying the
>    somethings which is good. The only point I would make is that it looks too
>    high level like  mission/vision statements. Strategic plans would identify
>    clear items on *what* to execute on while business plan includes *how *to
>    execute what has been agreed on. Given that we are in July, for 2018 we
>    know the tactical issues that need to be worked on so I would recommend we
>    focus on 2019.
>    3. *Compliance Committee: * Greg is doing an amazing job on the
>    Compliance committee charter, I'm personally looking forward to voting on
>    it. I would also like to note that I'm also seeing some cases of "vigilante
>    justice", partially do to inaction so changes would be welcome here.
> Kind regards,
> --
> Sherif Mansour
> OWASP Global Board Member & OWASP London Chapter Leader
> Site: https://www.owasp.org/index.php/London
> Email: sherif.mansour at owasp.org
> Follow OWASP London Chapter on Twitter: @owasplondon  <https://twitter.com/OWASPLondon>
> "Like" us on Facebook: https://www.facebook.com/OWASPLondon
> Subscribe to our (lightweight) mailing list: https://lists.owasp.org/mailman/listinfo/owasp-london
> Consider giving back, and supporting the open source community by becoming
> a member <https://www.owasp.org/index.php/Membership> or making a donation
> <https://www.owasp.org/index.php/Donate> today!
> Join us at AppSec USA 2018 <https://2018.appsecusa.org/> 8-12 October in
> San Jose, CA!
> _______________________________________________
> Owasp-board mailing list
> Owasp-board at lists.owasp.org
> https://lists.owasp.org/mailman/listinfo/owasp-board
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://lists.owasp.org/pipermail/owasp-board/attachments/20180723/65a44289/attachment-0001.html>

More information about the Owasp-board mailing list