[Owasp-leaders] Request for OWASP board to approves 100K for a project Summit in 2016

johanna curiel curiel johanna.curiel at owasp.org
Sun Jun 28 14:27:45 UTC 2015


Off course also developers in high need to understand how to secure their
applications :-)

On Sunday, June 28, 2015, johanna curiel curiel <johanna.curiel at owasp.org>
wrote:

> The summit should be about getting engaged in the project. What I have
> noticed in the time I have taken to read the projects and consume them
> wether code of docs, there are the main project leaders, investing their
> time to make it and occasional volunteers to help build or write.and
> sometimes or many times just one leader.
>
> The project leaders should not expect a large group of volunteers or
> users are going to show up for their project. In none of the summits I have
> attended this has happened. People do not want to work for free if they do
> not get something in exchange. Think of, what kind of things can motivate
> new people come to a summit, to meet you and work with you in the project.
>
> When I did a session in NY summit 2013' 15 people showed up for my session
> to discuss how to achieve PCI compliance faster. This is definetly a hot
> topic. So I focused on a topic to gather information for my project instead
> of focusing about my project itself.
>
> If every project attending can focus on a specific security topic highly
> controversial or close to their project, I assure you, you will have a
> group showing up to discuss it.
>
> 2 days to work on a specific deliverable is also very productive, but
> again, if you have a group  of volunteers,those will be the one(s) showing
> up to work on the summit. If you have almost no volunteers, focus the
> agenda on a hot topic regarding the project, and use the sessions to
> discuss how to improve or gather information from peers trying to solve the
> same issues.
>
> I will request an additional budget for a campaign through linked in, so
> we can get security engineers and pentester attend the summit. Think of you
> audience and what kind of work you want to get done during the summit.
>
> Hope this helps clarify expectations of what the summits have been the
> last 2 years.
>
>
>
> On Sunday, June 28, 2015, Tom Brennan <tomb at owasp.org
> <javascript:_e(%7B%7D,'cvml','tomb at owasp.org');>> wrote:
>
>> Alcon;
>>
>> Keep in mind OWASP has a cluster cluster of full time staff in USA in New
>> Jersey and New York City and a short train ride from Maryland/Virginia.
>>
>> - Noreen
>> - Kelly
>> - Kate
>> - Claudia - *new* project manager
>> - Dawn - dedicated NJ Chapter paid admin
>>
>> I would recommend a New Jersey Summit!!
>>
>> International airport (Newark Airport) we could rent a hotel space
>> (cashing in all those Hilton Points OWASP has and does not use) for this
>> property
>> http://m.hilton.com/mt/www3.hilton.com/en/hotels/new-jersey/hilton-newark-airport-EWRAHHH/index.html
>>
>> It's affordable and easy to get to from airport with included
>> shuttle next to airport for 5 days if needed.  The proximity to New York
>> City is a quick train ride.  It's in the middle of a Amtrak route from
>> Washington DC to Boston train too.
>>
>> If you break summit to code projects/document projects summit that would
>> be helpful.  Projects that have budget would send a representative.
>> Projects without budge would be funded by OWASP/OWASP Chapters
>>
>> ** I am sure there are other great and easy access locations around the
>> world. this should just be considered as one of them to minimize cost and
>> maximize exposure for attendees in the USA.
>>
>> NJ chapter would also spend $10k of it's chapter budget to make it happen
>> in 2016
>>
>>
>>
>>
>>
>>
>> On Sunday, June 28, 2015, Seba <seba at owasp.org> wrote:
>>
>>> It takes time to prepare a summit.
>>> Certainly if we do this on a larger scale I would aim for March, not
>>> Autumn
>>>
>>> Seba
>>>
>>> On Sat, Jun 27, 2015 at 6:26 PM Eoin Keary <eoin.keary at owasp.org> wrote:
>>>
>>>> March is a long time away. Do you think Autumn would work?
>>>>
>>>>
>>>> Eoin Keary
>>>> OWASP Volunteer
>>>> @eoinkeary
>>>>
>>>>
>>>>
>>>> On 27 Jun 2015, at 18:59, johanna curiel curiel <
>>>> johanna.curiel at owasp.org> wrote:
>>>>
>>>> Hi Seba
>>>>
>>>> I'm in to help :-)
>>>>
>>>> I'll check with the actual flagship project leaders who is interested
>>>> to join in March
>>>>
>>>> Regards
>>>>
>>>> Johanna
>>>>
>>>> On Saturday, June 27, 2015, Seba <seba at owasp.org> wrote:
>>>>
>>>>> hi Johanna, all
>>>>>
>>>>> We organized this as a 2 day event:
>>>>> Day 1 was a "user day" with invited speakers, round tables & samm
>>>>> training. For this we asked 150 EUR to cover the venue/catering costs.
>>>>> Day 2 was the project day with the project volunteers discussing the
>>>>> project progress and working on deliverables.
>>>>> In total we had about 30 people & had a great event, more details here
>>>>> http://www.opensamm.org/2015/04/opensamm-summit-dublin-outcome/
>>>>>
>>>>> We had some help from Eoin & the Dublin chapter to find/organize the
>>>>> venue/social event.
>>>>> The rest was put together with the project team.
>>>>>
>>>>> We are planning for SAMM summits in autumn in NY and end of March in
>>>>> Europe.
>>>>>
>>>>> If the other flagship project leaders are game, we can replicate this
>>>>> model and scale up the SAMM summit next year to include all the flagship
>>>>> projects and create a fantastic OWASP Summit ?
>>>>>
>>>>> regards
>>>>>
>>>>> Seba
>>>>>
>>>>> On Sat, Jun 27, 2015 at 3:57 PM johanna curiel curiel <
>>>>> johanna.curiel at owasp.org> wrote:
>>>>>
>>>>>> Seba
>>>>>>
>>>>>> The summit organized for SAMM had a different format than the Project
>>>>>> Summits we have been organizing
>>>>>>
>>>>>> There are training for users
>>>>>> Speakers invited
>>>>>> People have to pay 150eur to participate
>>>>>> The summit had sponsors
>>>>>>
>>>>>> More in a format of a conference than the traditional summit
>>>>>> This off course helps gather funds for the projects and the cost of
>>>>>> the summit
>>>>>>
>>>>>> Imagine with did a Owasp zap summit or other projects using the same
>>>>>> structure
>>>>>>
>>>>>> how did you organize this? Which team helped you put this together ?
>>>>>>
>>>>>> Regards
>>>>>>
>>>>>> Johanna
>>>>>>
>>>>>>
>>>>>>
>>>>>>
>>>>>> On Saturday, June 27, 2015, Eoin Keary <eoin.keary at owasp.org> wrote:
>>>>>>
>>>>>>> +1
>>>>>>> As mentioned how does the 100k (€£$¥) breakdown? I'd suggest we let
>>>>>>> our events staff look into it with guidance from project leads etc....
>>>>>>>
>>>>>>> Eoin Keary
>>>>>>> OWASP Volunteer
>>>>>>> @eoinkeary
>>>>>>>
>>>>>>>
>>>>>>>
>>>>>>> On 27 Jun 2015, at 15:19, Seba <seba at owasp.org> wrote:
>>>>>>>
>>>>>>>
>>>>>>> I agree, but do not put the cart before the horse.
>>>>>>>
>>>>>>> First we need a team of owasp leaders to put together a program,
>>>>>>> venue, timing and finally a budget.
>>>>>>> $$$ should not be the blocking factor looking at
>>>>>>> https://docs.google.com/spreadsheets/u/1/d/11acTOmtmBGq6-5CIGsjlEByU8POSGqda0r23VNnhEGQ/pub
>>>>>>>
>>>>>>> that is how we did it with the SAMM Summit
>>>>>>> https://www.owasp.org/index.php/OWASP_SAMM_Summit_2015
>>>>>>> this even raised more funds for the project than expected
>>>>>>>
>>>>>>> regards
>>>>>>>
>>>>>>> Seba
>>>>>>>
>>>>>>>
>>>>>>>
>>>>>>> On Sat, Jun 27, 2015 at 11:57 AM Eoin Keary <eoin.keary at owasp.org>
>>>>>>> wrote:
>>>>>>>
>>>>>>>> Sounds good.
>>>>>>>> What's the breakdown of the 100k ? (is that €,£ or $).
>>>>>>>>
>>>>>>>>
>>>>>>>>
>>>>>>>>
>>>>>>>> Eoin Keary
>>>>>>>> OWASP Volunteer
>>>>>>>> @eoinkeary
>>>>>>>>
>>>>>>>>
>>>>>>>>
>>>>>>>> On 27 Jun 2015, at 00:06, Dinis Cruz <dinis.cruz at owasp.org> wrote:
>>>>>>>>
>>>>>>>> And then ask for a a team or OWASP leaders to lead that effort.
>>>>>>>>
>>>>>>>> Josh and Andrew can provide more details on the context of this
>>>>>>>> request
>>>>>>>>
>>>>>>>> Dinis
>>>>>>>>
>>>>>>>> _______________________________________________
>>>>>>>> OWASP-Leaders mailing list
>>>>>>>> OWASP-Leaders at lists.owasp.org
>>>>>>>> https://lists.owasp.org/mailman/listinfo/owasp-leaders
>>>>>>>>
>>>>>>>> _______________________________________________
>>>>>>>> OWASP-Leaders mailing list
>>>>>>>> OWASP-Leaders at lists.owasp.org
>>>>>>>> https://lists.owasp.org/mailman/listinfo/owasp-leaders
>>>>>>>>
>>>>>>>
>>
>> --
>> Tom Brennan
>> 973-202-0122
>>
>
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://lists.owasp.org/pipermail/owasp-leaders/attachments/20150628/d8ac314a/attachment.html>


More information about the OWASP-Leaders mailing list