[Owasp-leaders] Projects looking for volunteers
michael.coates at owasp.org
Tue Aug 20 14:54:46 UTC 2013
(This will also go to the global initiatives for volutneers too. But we
need some core leaders first).
I have a few projects I've been mulling around in my mind and wanted to
share more broadly. I certainly don't have the cycles to own or lead each
of them. But I'd be happy to provide thoughts or guidance to anyone that
wants to take one and run with it.
*Project*: Framework Security
*Idea*: We need to work with frameworks to get security controls added. I
believe the standalone security features are the wrong approach and think
that the right path for adoption is getting missing controls added to
*Needs*: I propose we create the framework security project to unite 3
groups of people in this effort. Project leaders (to manage the overall
project), lisasons (to work and collaborate with frameworks), developers
(to fork and code the missing security controls).
*Anyone interested? If so, we'll make this a project and start moving.*
*Project*: Application Security Program
*Idea*: A project that captures security programs from end to end. It's not
all about secure coding, pen testing, static analysis etc... This project
will detail real security programs from corproations developing software.
This includes end to end thinking about security. Think project will also
link to available owasp tools and resource for each stage.
*Needs*: I need a few other security leaders that are running application
security programs in large organizations. For this particular project I
feel security experience from working at a company and leading such a
program is the most needed skill to make this project effective.
*Anyone interested? If so, we'll make this a project and start moving.
*Current Status: *Back end support is up and running. We migrated to
feedblitz software that will aggregate multiple rss feeds. We also have
recommended software for our curators to use that allows easy sharing of
Project Leader: Michael Coates
*Needs*: We'll be looking to formalize this as a project and make a call
for curators (max 3), requests for application security blogs, and also a
mailing list for anyone interested.
*More info: *
Michael Coates | OWASP | @_mwc
-------------- next part --------------
An HTML attachment was scrubbed...
More information about the OWASP-Leaders