[OWASP-Columbia] OWASP Connector January 2018

Frank Catucci frank.catucci at owasp.org
Wed Feb 14 18:35:59 UTC 2018

[image: OWASP Connector]



<#m_-1869178583249793295_PROJECTS> |  EVENTS
<#m_-1869178583249793295_EVENTS> |  CHAPTERS
<#m_-1869178583249793295_CHAPTERS> |  MEMBERSHIP
*Wed, February 14, 2018*
[image: Communications]
Board Statement about the AppSec-EU 2018 and related events

Dear OWASP community,

As there have been quite a number of changes over the last number of
months, the Global OWASP Foundation has faced a number of challenges. As
you may be aware, three of our staff members have left the foundation,
leaving a big gap in our day to day operations. This is not an excuse, but
a reason why some processes both slowing down or even came to a complete
halt. We are very happy to have found an Executive Director (ED) in Karen
Staley. Since joining, Karen has been working hard to turn these challenges
into opportunities and to allow OWASP to increase our organizational
maturity and professionalism. I think it’s safe to say that the four newly
elected board members and new ED, have had the most memorable start in
their new position.

We are all extremely passionate about OWASP and with this passion comes
frustrations. Your frustration in relation to the lack of information/
communication is understandable. As most of you were celebrating the
Christmas and New Year holidays, the board were blindsided by these events.
To this end the newly elected and sitting board members, together with our
ED, were busy with the matters at hand. Given the time of year and the
nature of the matter at hand, it’s easy to forget to communicate. We
understand that the lack of communication on our part can make you assume
nothing is happening.
Even though there was no communication with the OWASP community at large,
we want to ensure you that we were in constant communications with those
involved and are working towards an acceptable path forward.

As per previous mailing list communications, the AppSec-EU 2018 conference
will take place in the UK. Operational challenges are currently being
resolved and information about the conference venue, location will be
available as soon possible.

Volunteers who have been working hard on organizing the AppSec-EU 2018
conference in Tel Aviv and the OWASP Israel chapter especially, felt
frustrated with the decision to move the conference and way it had been
communicated. Those that have previously organized a global OWASP AppSec
conference in the past know how much more complex it is to organize
compared to a local event, even if the numbers of attendees are more of
less the same. The decision to move the AppSec-EU 2018 conference to the UK
has been made. We would like to acknowledge the effort of the organizing
team, while realizing the required level of support from the foundation was
not achieved.

As OWASP board and staff, we see the huge burden it puts on the local
chapter and leading volunteers. The OWASP board and staff recognizes the
necessity of providing more professional support to the local chapter and
volunteers to justify the expectations of our community and sponsors. With
her extensive experience in organizing international conferences, our ED is
working hard to do so.

As you are aware, the board members are volunteers too and we do our best
to act in the best interest of the OWASP community. OWASP is bigger than
individuals or the board, OWASP is a community which is driven by it
volunteers and we welcome your input in how we can improve OWASP to further
our mission. Please be invited to the OWASP Board meetings
<https://www.owasp.org/index.php/Board>, the first meeting of the current
board is January 24th <https://www.owasp.org/index.php/January_24,_2018>.

Many times, those who shout the loudest are perceived in representing the
community’s opinion. In the succession of the announcement the AppSec-EU to
be moved from Tel Aviv to the UK, and the public statement that has been
made articulating the frustrations about this decision, people from inside
and outside the OWASP community felt the need to vent their opinions. As we
are an open organization, I appreciate how forthcoming our community was.

Nevertheless, in OWASP we have a clear policy of ethics, stating the
expected professionalism in communication and respect towards each other.
We as a community of professionals are required to set an example to the
next generation and should therefore lead by example in respecting these
ethics when communicating both privately and in the public domain.

We will endeavor to improve our communications going forward and hope that
this has not deterred any of the great OWASP community that have spent a
countless number of hours volunteering to improve software security as a

Kind regards,

Martin Knobloch

Ads are not endorsements and reflect the messages of the advertiser only.
They represent co-marketing arrangements with other organizations in
support of the OWASP Community.  CLICK HERE
for more information on Advertising.

[image: Projects]

Project Summit AppSec USA

Getting a project off the ground is always an interesting experience but
elevating your Project can be just as challenging. Check out Christian
of how he, Chaim and Walter cleaned up CRS , increased usability and
created a community of contributors to launch CRS 3 to its new award
winning status!

Ads are not endorsements and reflect the messages of the advertiser only.
They represent co-marketing arrangements with other organizations in
support of the OWASP Community.  CLICK HERE
for more information on Advertising.

[image: Events]
Announcing AppSec Europe 2018!

Upcoming Events

   - AppSec Europe 2018
   3-6, 2018; London, UK
   - AppSec USA 2018
   8-12, 2018; San Jose, California, USA

Regional and Local Events

   - SnowFROC 2018
   — March 8, 2018; Denver Colorado, USA
   - OWASP LatAm Tour 2018— April 4-20, 2018
   - SuperSec
— May
   11, 2018; Spain
   - AppSec Morocco 2018 — October 4-5, 2018; Morocco
   - LASCON 2018
   23–26, 2017; Austin, TX, USA

Training Events

   - OWASP Portland Training Day
   3, 2018; Portland, Oregon, USA

Partner and Promotional Events

   - DevSecCon Singapore
   — February 22-23,2018; Singapore (OWASP members save 20% by using discount
   code: OWASP-dsc)
   - InfoSec World Conference & Expo 2918
   19-21, 2018; Las Vegas, NV, USA (OWASP members save 15% by using discount
   - CyberCentral
— April
   11-13, 2018; Prague, Czech Republic
   - InfoSecurity Europe
   June 5-7, 2018; London, UK
   - Hack in Paris
   June 5-7, 2018; Paris, France

Ads are not endorsements and reflect the messages of the advertiser only.
They represent co-marketing arrangements with other organizations in
support of the OWASP Community.  CLICK HERE
for more information on


*January 2018  **Corporate Members*

We would like to thank the companies below for supporting the OWASP
These companies have recently contributed by either renewing their existing
Corporate Membership or joining OWASP as a new Corporate Member.
Details about Corporate Membership can be found *here*

*Contributor Corporate Members*


Avi Networks completes enterprises’ digital transformation with its
software load balancer, intelligent Web Application Firewall, and modern
application services. The Avi Vantage Platform is deployed across data
centers and clouds, delivering better elasticity, intelligence, and cost
savings by providing granular per-tenant and per-app services. Customers
enjoy 5X faster application rollouts, actionable analytics, and 70% lower
costs. Visit https://avinetworks.com/
to learn more.


Cybozu is a Japanese cloud computing vendor founded in 1997. Its service
supports effective team collaboration hence our services are widely used
from large-scaled teams like multinational enterprises to small-scaled
teams like volunteer groups, clubs even families. “kintone” is one of the
Cybozu’s key products released in 2011. It is called "no-code application
platform" which makes work more productive through business applications.
It is recognized as one of the leading vendors in” Gartner 2016 Enterprise
application Platform as a Service (aPaaS), Worldwide Magic Quadrant”.
Cybozu has been focusing on security enhancement. It has started "bug
bounty project" in 2013 to find any vulnerabilities which may exist in its
product in order to provide its customers with the most secure service
possible. To learn more, please visit: https://www.cybozu.com/jp/


HackerOne (www.hackerone.com) is the #1 hacker-powered security platform,
helping organizations receive and resolve critical vulnerabilities before
they can be exploited. More than 1,000 organizations, including the U.S.
Department of Defense, U.S. General Service Administration, General Motors,
Twitter, GitHub, Nintendo, Panasonic Avionics, Qualcomm, Square, Starbucks,
Dropbox and the CERT Coordination Center trust HackerOne to find critical
software vulnerabilities. HackerOne customers have resolved over 57,000
vulnerabilities and awarded over $22M in bug bounties. HackerOne is
headquartered in San Francisco with offices in London and the Netherlands.
Visit https://www.hackerone.com/
to learn more.


To learn more about Kenna Security, please visit https://www.


*Interested in learning how to get your company name posted here? *

Find out how by visiting our *Corporate Membe*r
<http://cts.vresp.com/c/?TheOWASPFoundation/815d9458a9/TEST/76ee715527> page,
or contact *Kelly Santalucia*,  <kelly.santalucia at owasp.org>our Membership
& Business Liaison today!

*The OWASP Foundation, 1200C Agora Drive #232, Bel Air, Maryland, 21014,

Click to view this email in a browser

If you no longer wish to receive these emails, please reply to this message
with "Unsubscribe" in the subject line or simply click on the following
link: Unsubscribe <http://cts.vresp.com/u?8d56127ac6/d1c8dfd3bd/mlpftw>
The OWASP Foundation
1200-C Agora Drive
Bel Air, Maryland 21014
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://lists.owasp.org/pipermail/owasp-columbia/attachments/20180214/43ecdaa3/attachment-0001.html>

More information about the OWASP-Columbia mailing list