[Owasp-leaders] OWASP Academies.

Sandra Paiva sandra.paiva at owasp.org
Fri Oct 22 12:15:43 EDT 2010

Hi Sebastien,


I think that your question below is definitely one of the many that will
have to be discussed and clarified in the process of creating this new area
of work. I have been studying the Global Education Committee page and have
noticed that there is work already done that seems to be moving into this


In my view, throughout this discussion process various things will have to
be defined - these are some of them but I am sure that many more will come
to the table:

- how the work already done by the GEC relates to the concept of the OWASP

- in which areas do these two areas overlap and how do we unify them, 

- how can we move forward on the attempt of consolidating the relationships
already established with Universities,

- how do we build a way to penetrate Academic Institutions' curricula and
course structure,

- what type of collaboration will we provide to the universities and in what
terms - do we suggest OWASP Project leader's participation as trainers on
the modules related to OWASP? Do we expand the GEC's idea of Training the
Trainers who will, in the Universities, give the OWASP related courses?

- can we create conditions to have this training paid for by the
Universities so as to promote an area of income to OWASP and the Project
leaders involved?

- what do we expect from the universities in return?


We have already situations where some sort of collaboration with different
Academic institutions has been established - the experience of those
involved will surely be extremely helpful for the discussion.


I think that if we could brainstorm on this,  formulating questions and
trying to find good answers to give them, gathering the feeling and
experience of all from our community interested and willing to be involved,
we would be able to go to the Summit with the basis for a productive work
session from which some guidelines and concrete points of action could be


Just my 2 cents.


Sebastien, regarding the examples you pointed out below, may I ask what
steps is the France Chapter taking with the Bordeaux University? Do you
think it would be useful if I get involved? I would like to, if you don't
see a problem with that.    





Sandra Paiva

 <http://www.owasp.org/index.php/User:Sandra_Paiva> OWASP Training Manager


De: Sebastien Gioria [mailto:sebastien.gioria at owasp.org] 
Enviada: quinta-feira, 21 de Outubro de 2010 15:52
Para: Sandra Paiva
Cc: Eoin Keary; global_education_committee at lists.owasp.org; Tom Brennan
Assunto: Re: [Owasp-leaders] OWASP Academies.


Just to be clear,


What's the differences between OWASP education supporter and futur OWASP
academies ? 


We (France) have ISEP as a supporter, and we are in the process with another
university (Bordeaux France) for setting up a Course on WebAppSec.


Is this an academie ? Or could this be count as a supporter ? 





Sebastien GIORIA  - sebastien.gioria at owasp.org

French OWASP Leader

OWASP Global Education Committee Member

GSM: +33 (0)6 23 04 00 51


On Oct 21, 2010, at 4:17 PM, Sandra Paiva wrote:

Dear all,


I have been asked by the OWASP Board to start off the process of designing
and building a new concept that will be closely linked to the training
activities promoted by OWASP and that intends to take this area one step


The idea is to create what we will call OWASP Academies -


The OWASP Academies will be a frame under which work should be done with
Universities, Polytechnic Institutes, IT Schools and other Academic
institutions with a view to establish solid relationships and develop with
these organisms ways to collaborate and participate in the design of courses
focused on web application security.


OWASP has the knowledge and critical mass to give an invaluable input to any
Academy focusing on this area - both by contributing with its expertise in
the definition of curricula and course contents that explore and study the
web security field and by making available to the Academy its pool of
interested and willing security experts as trainers.


As mentioned above, this concept is just at its beginning and we do not
have, as of yet, a clear methodology or set of rules to implement what
hopefully will be a new area of work for OWASP. What is clear, however, is
that to make this happen we will need your input and ideas, your energy and
your initiative. Moreover, as we are planning to include this discussion in
one of the Working Sessions to be held in the upcoming OWASP Summit 2011,
this would be the perfect timing to gather your input and contributions.


Being so, if you have contacts within your local academic communities and
would like to be involved in the design and development of this  concept,
please do get back to me with your thoughts!


I am looking forward to hearing from you!






Sandra Paiva

 <http://www.owasp.org/index.php/User:Sandra_Paiva> OWASP Training Manager


OWASP-Leaders mailing list
 <mailto:OWASP-Leaders at lists.owasp.org> OWASP-Leaders at lists.owasp.org


-------------- next part --------------
An HTML attachment was scrubbed...
URL: https://lists.owasp.org/pipermail/owasp-leaders/attachments/20101022/f624718b/attachment-0001.html 

More information about the OWASP-Leaders mailing list