[Owasp-leaders] [Owasp-board] OWASP 2014 - Strategic Goals
matt.tesauro at owasp.org
Mon Nov 11 21:37:17 UTC 2013
A strategy isn't (and shouldn't be) a plan. Board decides on strategy, and
the OWASP employees turn those into plans with quarterly goals and all that
For good info and some clarity in the difference:
-- Matt Tesauro
OWASP WTE Project Lead
http://AppSecLive.org - Community and Download site
OWASP OpenStack Security Project Lead
On Mon, Nov 11, 2013 at 1:11 AM, Dennis Groves <dennis.groves at owasp.org>wrote:
> On Nov 10, 2013, at 8:01 PM, Jeff Williams <jeff.williams at owasp.org>
> I wasn't suggesting that the organization-focused goals aren't important.
> I'm thrilled to see OWASP continue to grow. Just saying a few of the
> strategic goal ideas for 2014 should be focused on our domain...
> I have to agree with Jeff.
> My greatest lessons in life come from the experience of founding OWASP. I
> believe all great things start with a shared vision - a really big dream -
> a purpose that unites everybody in their participation. I made some very
> lofty statements in the early days that absolutely permeate the OWASP
> culture even today. Though the ‘vision’ have never been achieved, that is
> not the purpose of the vision - the purpose is to aim the ship.
> Other Examples:
> - Imagine a world in which every single person on the planet is given
> free access to the sum of all human knowledge. That's what we're doing.
> ~Jimmy Wales
> - A computer on every desktop. ~Bill Gates
> - World Domination. ~Linus Torvalds
> - Mark Shuttleworth seems to want to create “commercial quality free
> After the shared vision is agreed, then and only then can any meaningful
> strategic and organizational goals be set to move the community closer
> toward the lofty vision...
> Jeff’s ideas are closer to what I would feel are strategic goals, while
> the other suggestions I have read seem to be much closer to operational and
> business goals. Those are for the staff to work out, but they will work
> them out according to the vision you set. I believe the role of the Board
> members is the ‘aiming of the ship.’ Strategic goals are part of that
> aiming. For example can OWASP really achieve the measurement of security in
> 2014? I very, very much doubt it - but we could move the needle in some
> very big ways!
> I encourage you all to think big, and dream bigger.
> If you aim low, you will certainly get there.
> If you aim for the impossible you will be very surprised at how much you
> will achieve in your struggles to get there.
> Dennis Groves <http://about.me/dennis.groves>, MSc<http://www.rhul.ac.uk/isg/prospectivestudents/prospectivestudents-msc/home.aspx>
> Stay in touch via email <dennis.groves at owasp.org> or schedule a meeting<http://goo.gl/8sPIy>
> *“The things most people want to know about are usually none of their
> business.” *
> – George Orwell, 1984
> Owasp-board mailing list
> Owasp-board at lists.owasp.org
-------------- next part --------------
An HTML attachment was scrubbed...
More information about the OWASP-Leaders