[Owasp-leaders] [balint:6755] Re: Teaching resources

Timur 'x' Khrotko [owasp] timur at owasp.org
Wed Apr 25 11:05:21 UTC 2018


I've just delivered a full semester of non-technical appsec or rather
secdev in a Hungarian university. Approaches, principles, real live cases,
ASVS, corporate secdev playbook. May that be interesting.

On Wed, 25 Apr 2018 at 12:55, Adrian Winckles <adrian.winckles at owasp.org>
wrote:

> Thanks Simon
>
> One of the projects I'd been working on from the Summit last year and
> hopefully from teh Summit this year as well (funding pending) was for the
> MSc Application Security Curriculum project whicgh  needs more work to look
> at the skills and knowledge students should learnt as part of such
> qualification, we had an initial attempt at gathering opinions by survey at
> the last summit but the majority returned surveys were “lost” before they
> were handed over
>
> My aim would be to produce a wider survey of OWASP trainers and
> educational supporters to canvas opinions on a wider range of generic
> Application Security Skills and knowledge which would be required from a
> MSc curriculum and determining suitable learning objectives to be able to
> produce an “open” curriculum for any educational institution or trainer to
> use.
>
> A second and larger part of the work is then to map the knowledge, skills
> & learning objectives to OWASP Project materials to help deliver quality
> educational experiences to those study Application Security.
>
> Thanks
>
> Adrian
>
> On Wed, Apr 25, 2018 at 11:43 AM, psiinon <psiinon at gmail.com> wrote:
>
>> Leaders,
>>
>> I've just started having a conversation with a college lecturer re the
>> possibility of a consortium of colleges and universities to work with OWASP
>> on creating webappsec teaching resources.
>>
>> Is anyone else looking at this or interested in getting involved if it
>> does happen?
>> Leaders of active (and relevant;) projects particularly welcome.
>>
>> Obviously we have a wealth of raw material, but thats not the same as a
>> set of resources that lecturers can easily get started with.
>>
>> I know theres https://www.owasp.org/index.php/OWASP_Training but thats
>> not been updated since 2016 and references several projects that are no
>> longer active.
>>
>> I think that a packaged set of teaching resources that anyone can use to
>> help people get started with appsec could be incredibly valuable and really
>> help raise awareness in appsec and OWASP.
>>
>> Let me know what you think,
>>
>> Simon
>>
>> --
>> OWASP ZAP <https://www.owasp.org/index.php/ZAP> Project leader
>>
>> _______________________________________________
>> OWASP-Leaders mailing list
>> OWASP-Leaders at lists.owasp.org
>> https://lists.owasp.org/mailman/listinfo/owasp-leaders
>>
>>
> This message may contain confidential information - you should handle it
> accordingly.
> _______________________________________________
> OWASP-Leaders mailing list
> OWASP-Leaders at lists.owasp.org
> https://lists.owasp.org/mailman/listinfo/owasp-leaders
>
-- 

secmachine․net #wepowersecdev
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://lists.owasp.org/pipermail/owasp-leaders/attachments/20180425/10efee3f/attachment.html>


More information about the OWASP-Leaders mailing list