[Owasp-leaders] [Governance] Request - Survey - Implementation process on higher decisions

Steven van der Baan steven.van.der.baan at owasp.org
Wed Aug 19 09:51:54 UTC 2015

Hi Josh,

to clarify, I wasn't proposing that OWASP should issue a credit card.
The point regarding the access wasn't for myself, but I can see that
some members have limited means, which make the expense system a hurdle.
I'm glad to see that there is a method to have access to project (or
chapter) funds. I will add it to the wiki pages that there is a method
beyond reimbursement. And thank you for offering to reimburse yourself.


On 18/08/15 21:58, Josh Sokol wrote:
> For liability reasons, I don't see OWASP issuing credit cards to our
> leaders.  That said, we do have an OWASP credit card that the staff
> has the ability to use.  If there's something that you need, and you
> don't have the ability to have the cost expensed back to you, just
> fill out the Contact Us form and request assistance with payment from
> the staff.  If they have an issue with it (which I highly doubt they
> would), let me know, and I'll put it on my personal card and request
> the reimbursement myself.  ;-)
> ~josh
> On Tue, Aug 18, 2015 at 3:28 PM, Steven van der Baan
> <steven at vdbaan.net <mailto:steven at vdbaan.net>> wrote:
>     >
>     >> The limit of USD2,000- for supporting a project leader a year
>     is for most leaders not enough. If a leader outside US or EU is
>     invited to blackhat , that amount is not enough to cover his
>     traveling expenses.  And thats the maximum he can have in a year
>     after filling on forms and going through some back-and-forth
>     emails with the staff...
>     >
>     >
>     > Ahhhhh, finally we get to the root of the issue.  The issue
>     isn't that money isn't available, because, frankly, we had a
>     significant amount of money budgeted last year that wasn't used. 
>     The issue is that there is a cap on what any one project leader
>     can request/spend.  My personal opinion here is that this $2k cap
>     should be treated as a guideline, not a rule.  It is likely in
>     place to prevent abuse by having a significant amount of money
>     from the pool go to any one individual.  But, that cap certainly
>     should not prevent the OWASP Foundation from investing in the
>     projects, and people behind the projects, to make them better. 
>     The Board entrusts Paul, as Executive Director, and the OWASP
>     staff to handle the day-to-day operations of the OWASP
>     Foundation.  Part of their job is to review these types of
>     requests in order to determine whether they make sense and there
>     are funds available.  That said, if you get to a point where you
>     feel that they are being unreasonable, the Board can certainly
>     step in and try to determine if an exception should be made.  So,
>     net-net, maybe that $2k cap is too low.  Should we raise it?  If
>     so, what should it be?  What amount would be reasonable for any
>     one individual to consume from that shared pool of funds? 
>     Guidelines can be changed.  Guidelines can even be overruled for
>     the right reasons.  This is a relatively minor issue that it
>     sounds like should be re-evaluated given rising costs, bigger
>     budget pools, unused funds, etc.  Can you please come up with a
>     reasonable proposal here and I will take that to the Board for
>     approval to change this guideline?
>     >
>     I don't think that the monetary cap is the issue, I believe it's
>     the (not so) ease of access to said funds. Not everybody can
>     afford to have their project costs expensed back to them, there
>     should be a possibility (hopefully there is one) to have a "OWASP
>     Credit card" that can be used.
>     Cheers,
>     Steven.

-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://lists.owasp.org/pipermail/owasp-leaders/attachments/20150819/3333f6ba/attachment.html>

More information about the OWASP-Leaders mailing list