<html><body bgcolor="#FFFFFF"><div>Better to identify industry players locally, get owasp books printed with ur chapter logo on them. Send them out for free, watch ur chapter grow......</div><div><br><div><br></div><div>&nbsp;</div></div><div><br>On 17 Aug 2011, at 16:40, Rex Booth &lt;<a href="mailto:rex.booth@owasp.org">rex.booth@owasp.org</a>&gt; wrote:<br><br></div><div></div><blockquote type="cite"><div>
    My attire comment was somewhat tongue-in-cheek, though I think that
    if you're going to talk about professional image, personal
    appearance needs to be considered.<br>
    <br>
    The greater and more important question is: how does OWASP measure
    ROI?&nbsp; I don't think we have an answer for that, but we should.&nbsp; We
    should strive to measure our impact and success - or at least have
    clearly defined goals to which we can align our activities and
    expenditures.&nbsp; That would allow us to 1) promote our impact among
    our supporters to show them a return on THEIR investment, hopefully
    increasing sponsorship dollars and 2) more easily determine if
    spending money on banners is a better idea than flying somebody to
    an AppSec conference (for example).<br>
    <br>
    Perhaps this is new project? ;)<br>
    <br>
    Rex<br>
    <br>
    On 8/17/2011 11:20 AM, Tom Brennan wrote:
    <blockquote cite="mid:148A7AF0-7070-4DCB-84BE-9D95F61FD7D0@owasp.org" type="cite">
      <div><br>
      </div>
      <div>Intended audience of OWASP Foundation materials is
        developers, industry to standards bodies.</div>
      <div><br>
      </div>
      <div>Hardcopies of the OWASP Top 10 is a &nbsp;great example when a
        .PDF will not do the trick.... &nbsp;<a moz-do-not-send="true" href="http://owasptop10.googlecode.com/files/OWASP%20Top%2010%20-%202010.pdf"><a href="http://owasptop10.googlecode.com/files/OWASP%20Top%2010%20-%202010.pdf">http://owasptop10.googlecode.com/files/OWASP%20Top%2010%20-%202010.pdf</a></a>
        awareness for this (1) project effort however we have over 200
        hence need to spread the love around in raising the visibility
        of Stable and Beta efforts (<a moz-do-not-send="true" href="https://www.owasp.org/index.php/Category:OWASP_Project"><a href="https://www.owasp.org/index.php/Category:OWASP_Project">https://www.owasp.org/index.php/Category:OWASP_Project</a></a>)</div>
      <div><br>
      </div>
      <div>re: "If the audience is industry" &nbsp;at times it is -- and as
        example if the individuals are so inclined to wear a monkey suit
        that is image. &nbsp;As a example at Blackhat we (Sara,Lorna, Myself)
        all were Business attire -- not that this fact made a difference
        -- however i would agree that perception is key to any awareness
        campaign. &nbsp;I am aware that many chapters including my own are
        business attire, hell the meetings are after work -- hence the
        local region drives that. &nbsp;If shorts and t-shirts are
        appropriate so be it.. but seriously that is a stretch to worry
        about attire.</div>
      <div><br>
      </div>
      <div>Yes there is 100k in the chapter buckets. Not to spend on
        banners and the such... rather raising awareness to the chapters
        that there is monies in the bucket that should be reinvested
        into the chapters and efforts that are core to the mission.
        &nbsp;What chapter do you run Rex? &nbsp;DC, VA? Hence a balance of:
        &nbsp;Virginia (Northern Virginia)$2,770.60$160.00$277.06$2,653.50
        /&nbsp;Washington DC$4,990.00$140.00$3,542.97$1,587.03 running a
        chapter has expenditures -- I know my chapter does.</div>
      <div><br>
      </div>
      <div>seeing the ROI &nbsp;- &nbsp;How is this: &nbsp;In 2004 you might agree that
        OWASP was a smaller group, &nbsp;2007 we had a growth spurt, 2008,
        2009, 2010, 2011 are measurable years of visibility not only on
        the mission but on the industry and on the core contributors as
        referenced&nbsp;<a moz-do-not-send="true" href="https://www.owasp.org/index.php/Industry:Citations"><a href="https://www.owasp.org/index.php/Industry:Citations">https://www.owasp.org/index.php/Industry:Citations</a></a>
        &nbsp; As a non-profit we have the upside business model of
        commercial for profit efforts and collectively a great platform
        and voice. &nbsp;Good reference information is here: &nbsp;<a moz-do-not-send="true" href="http://en.wikipedia.org/wiki/Nonprofit_organization"><a href="http://en.wikipedia.org/wiki/Nonprofit_organization">http://en.wikipedia.org/wiki/Nonprofit_organization</a></a>
        updated recently. &nbsp; The future is quite bright for this
        professional association with committees focused on
        implementation of our core values and purpose.</div>
      <div><br>
      </div>
      <div>Is this your measurement of ROI &nbsp;<a moz-do-not-send="true" href="http://xssed.com/archive/special=1"><a href="http://xssed.com/archive/special=1">http://xssed.com/archive/special=1</a></a>
        &nbsp; -- then yes there is work to be done on awareness from
        frameworks, developer tools and easy to leverage risk models --
        personally I am fan of the efforts happening here: &nbsp;<a moz-do-not-send="true" href="http://cwe.mitre.org/about/images/lg_consensus.jpg"><a href="http://cwe.mitre.org/about/images/lg_consensus.jpg">http://cwe.mitre.org/about/images/lg_consensus.jpg</a></a>
        and we (OWASP) has a seat at the table in both the working
        groups and the ISO standards bodies.</div>
      <div><br>
      </div>
      <div>Brennan</div>
      <div>973-202-0122</div>
      <div><br>
      </div>
      <div><br>
      </div>
      <br>
      <div>
        <div>On Aug 17, 2011, at 10:53 AM, Rex Booth wrote:</div>
        <br class="Apple-interchange-newline">
        <blockquote type="cite">
          
          <div text="#000000" bgcolor="#FFFFFF"> Who is the intended
            audience of this enhanced professional image for OWASP and
            what is the expected ROI?<br>
            <br>
            If it's fellow security consultants, I think hard-copy
            printouts of the top 10, etc, would have the most impact.&nbsp;
            It would allow us to use them as force multipliers, too, and
            have them spread the word of OWASP for us.<br>
            <br>
            If the audience is industry (and it should be, IMO), I think
            the funds would probably be better spent on a shirt and tie
            for each of our leaders. I know many of us don't require
            business attire for our daily lives, but many of our target
            industries do, and they respond to people that "look
            professional."&nbsp; Is it fair?&nbsp; No, but that's the reality.<br>
            <br>
            On the whole, however, I'm surprised we have $100k to spend
            on banners, etc to be used at the local chapter level given
            our current budget situation.&nbsp; Especially since most chapter
            meetings are probably 1) fewer than 20 people and 2) are
            repeat attendees that don't need to be wowed by banners and
            image.<br>
            <br>
            I don't see the ROI - perhaps somebody can explain it to me.<br>
            <br>
            Rex<br>
            <br>
            On 8/17/2011 10:28 AM, Tom Brennan wrote:
            <blockquote cite="mid:95A113FC-ECE9-402A-B713-CAB2A8083300@owasp.org" type="cite">
              <div><br>
              </div>
              <div>As a result of repeated discussions at the OWASP
                booth at Blackhat this year, the following items are
                worth pointing out globally;</div>
              <div><br>
              </div>
              <b><u>Chapter Leaders: &nbsp;</u></b>
              <div><b><br>
                </b></div>
              <div>When you host your next local meeting will you have a
                table throw, a pull up banner, swag to help raise the
                professional image and awareness of the mission of OWASP
                Foundation?</div>
              <div>
                <div>
                  <div>&nbsp;</div>
                  <div><b>VISUAL Example:</b> &nbsp;<a moz-do-not-send="true" href="https://www.owasp.org/images/a/a7/OWASP-BOOTH.jpg" target="_blank"><a href="https://www.owasp.org/images/a/a7/OWASP-BOOTH.jpg">https://www.owasp.org/images/a/a7/OWASP-BOOTH.jpg</a></a></div>
                  <div><br>
                  </div>
                  <div>
                    <div><b>FAQ: what can you REQUEST for your chapter
                        to promote OWASP locally?&nbsp;</b></div>
                    <div><b><span class="Apple-style-span" style="font-weight: normal; "><br>
                        </span></b></div>
                    <div><b><span class="Apple-style-span" style="font-weight: normal; ">Answer: &nbsp;<a moz-do-not-send="true" href="https://www.owasp.org/index.php/Chapter_Supplies"><a href="https://www.owasp.org/index.php/Chapter_Supplies">https://www.owasp.org/index.php/Chapter_Supplies</a></a></span></b></div>
                  </div>
                  <div><b><span class="Apple-style-span" style="font-weight: normal; "><br>
                      </span></b></div>
                  <div><b><span class="Apple-style-span" style="font-weight: normal; ">$$$</span></b></div>
                  <div><br>
                  </div>
                  <div>For many chapters there IS money in the chapter
                    bank for this purpose over 100k actually. &nbsp; &nbsp;Seeing
                    that summer is almost over... its time to review
                    your chapter budget and invest invest short term and
                    long term in your local chapter before the end of
                    the year. &nbsp;If you are without funds contact your
                    nearby chapter with funds collaborate with them we
                    are a single community and ask for a transfer of
                    funds to help out its a community effort.&nbsp;</div>
                  <div><br>
                  </div>
                  <div>Here is where the 100k+ in funds are currently
                    allocated by the hard-work of volunteer chapter
                    leaders:</div>
                  <div><br>
                  </div>
                  <div><a moz-do-not-send="true" href="https://spreadsheets.google.com/pub?key=0Atu4kyR3ljftdF9aZkY0YjRFcmNBY21OaWo3djdkUXc&amp;hl=en&amp;output=html"><a href="https://spreadsheets.google.com/pub?key=0Atu4kyR3ljftdF9aZkY0YjRFcmNBY21OaWo3djdkUXc&amp;hl=en&amp;output=html">https://spreadsheets.google.com/pub?key=0Atu4kyR3ljftdF9aZkY0YjRFcmNBY21OaWo3djdkUXc&amp;hl=en&amp;output=html</a></a></div>
                  <div><br>
                  </div>
                  <div>* NYC Chapter is offering <b>$1000</b> to any
                    chapter that is <b><u>less than 12 months old, has
                        used OWASP On The Move and a membership balance
                        is currently less than $100</u></b>&nbsp;to help you
                    get started (contact me for more details off list).&nbsp;</div>
                  <div><br>
                  </div>
                  <div>**NOTE Many of the other chapter leaders that I
                    have spoken with are also willing to help you out -
                    you have to ASK them</div>
                  <div><br>
                  </div>
                  <div>***As a chapter leader you are coming to the
                    Global AppSec USA 10 Year Anniversary of OWASP
                    right? There is NO CHARGE for chapter leaders, don't
                    miss the chapter workshop -&nbsp;<a moz-do-not-send="true" href="http://www.appsecusa.org/"><a href="http://www.appsecusa.org">http://www.appsecusa.org</a></a>
                    in September</div>
                  <div><br>
                  </div>
                  <div>===</div>
                  <div><br>
                  </div>
                  <div><b><u>Need Speakers for your Chapter?&nbsp;</u></b></div>
                  <div><br>
                  </div>
                  <div>Have you looked at OWASP on the Move yet to bring
                    in one of the 200+ OWASP Project Leaders to your
                    chapter?</div>
                  <div><br>
                  </div>
                  <div><a moz-do-not-send="true" href="https://www.owasp.org/index.php/OWASP_on_the_Move"><a href="https://www.owasp.org/index.php/OWASP_on_the_Move">https://www.owasp.org/index.php/OWASP_on_the_Move</a></a></div>
                  <div><br>
                  </div>
                  <div>To see what has been used to date see: &nbsp;<a moz-do-not-send="true" href="https://www.owasp.org/index.php/OWASP_on_the_Move_-_Payments"><a href="https://www.owasp.org/index.php/OWASP_on_the_Move_-_Payments">https://www.owasp.org/index.php/OWASP_on_the_Move_-_Payments</a></a>
                    &nbsp;we have a budget allocated USE IT!</div>
                  <div><br>
                  </div>
                  <div>Also consider being a scout and coming to
                    AppSecUSA and asking presenters of AppSecUSA to come
                    to your local chapter see:&nbsp;&nbsp;<a moz-do-not-send="true" href="http://www.appsecusa.org/schedule.html"><a href="http://www.appsecusa.org/schedule.html">http://www.appsecusa.org/schedule.html</a></a></div>
                  <div><br>
                  </div>
                  <div>===</div>
                  <div><u><br>
                    </u></div>
                  <div><b><u>FAQ where can we find the other OWASP
                        Chapter guidance support information?</u></b></div>
                  <div><br>
                  </div>
                  <div>Answer: &nbsp;<a moz-do-not-send="true" href="https://www.owasp.org/index.php/Category:OWASP_Chapter#Chapter_Support_Materials"><a href="https://www.owasp.org/index.php/Category:OWASP_Chapter#Chapter_Support_Materials">https://www.owasp.org/index.php/Category:OWASP_Chapter#Chapter_Support_Materials</a></a>
                    &nbsp;</div>
                  <div>
                    <ul>
                      <li>For the OWASP Chapter Leader Handbook which
                        includes rules and regulations, <a moz-do-not-send="true" href="https://www.owasp.org/index.php/Chapter_Leader_Handbook" title="Chapter Leader Handbook" class="mw-redirect">click here</a>. </li>
                      <li> For OWASP Chapter resources, <a moz-do-not-send="true" href="https://www.owasp.org/index.php/Category:Chapter_Resources" title="Category:Chapter Resources">click here</a>.
                      </li>
                      <li> For OWASP Chapter presentations, <a moz-do-not-send="true" href="https://www.owasp.org/index.php/Chapter_Presentation_Bundles" title="Chapter Presentation Bundles">click
                          here</a>. </li>
                      <li> For the OWASP news item template, <a moz-do-not-send="true" href="https://www.owasp.org/index.php/Template:News_Item" title="Template:News Item">click here</a>. </li>
                      <li> For OWASP Chapter promotion tips <a moz-do-not-send="true" href="https://www.owasp.org/index.php/Chapter_Promotion" class="external text" rel="nofollow">click
                          here</a>.</li>
                    </ul>
                    <div>===</div>
                  </div>
                  <div><br>
                  </div>
                  <div><u><b>Finally, we need your help</b>&nbsp;</u>&nbsp; If you
                    are a CHAPTER LEADER, you have a chapter mailing
                    list (this might be why your even getting this
                    email....), &nbsp; we are counting "Chapter Leaders" by
                    those that are listed on the administrative area of
                    the chapter mailing list. &nbsp;If someones name is
                    listed on the wiki, that is NOT how we are counting
                    the active chapter leaders, add there @owasp.org
                    email to the mailing list administrative area.</div>
                  <div><br>
                  </div>
                  <div>Some chapters are announce only mailing lists and
                    that is ok here is why; &nbsp;&nbsp;Larry Casey our volunteer
                    has a simple script that scrapes the administrative
                    names/emails and includes them in OWASP-LEADERS
                    list. &nbsp;So this is how we get communication like the
                    above out to those that are Chapter Leaders. &nbsp;It is
                    important that you add all associated chapter
                    "leaders" to your chapter mailing-list so that they
                    can be included in OWASP-LEADERS list communication
                    such as this. &nbsp;If you need your local chapter
                    mailing list password reset click on the below or
                    visit <a moz-do-not-send="true" href="http://www.owasp.org/"><a href="http://www.owasp.org">www.owasp.org</a></a> and
                    click on CONTACT US</div>
                  <div><br>
                  </div>
                  <div><a moz-do-not-send="true" href="https://spreadsheets.google.com/a/owasp.org/viewform?hl=en&amp;formkey=dFN1R2NIMTNROXN3dml4ZEcxXzJQYXc6MQ#gid=0"><a href="https://spreadsheets.google.com/a/owasp.org/viewform?hl=en&amp;formkey=dFN1R2NIMTNROXN3dml4ZEcxXzJQYXc6MQ#gid=0">https://spreadsheets.google.com/a/owasp.org/viewform?hl=en&amp;formkey=dFN1R2NIMTNROXN3dml4ZEcxXzJQYXc6MQ#gid=0</a></a></div>
                  <div><br>
                  </div>
                  <div>===</div>
                  <div><br>
                  </div>
                  <div><b>OWASP ELECTION -&nbsp;<a moz-do-not-send="true" href="https://www.owasp.org/index.php/Membership/2011Election"><a href="https://www.owasp.org/index.php/Membership/2011Election">https://www.owasp.org/index.php/Membership/2011Election</a></a>
                    </b>- &nbsp;This is in progress we are approx., at 50% of
                    the eligible voters have already done so. &nbsp;If you
                    have not voted today the window is closing - VOTE
                    TODAY.</div>
                  <div><br>
                  </div>
                  <div><br>
                  </div>
                  <div>Semper Fi,</div>
                  <div><br>
                  </div>
                  <div>Tom Brennan</div>
                  <div>Direct: 973-202-0122</div>
                  <div><br>
                  </div>
                  <div><br>
                  </div>
                  <div><br>
                  </div>
                  <div><br>
                  </div>
                  <div><br>
                  </div>
                  <div><br>
                  </div>
                  <div><br>
                  </div>
                </div>
              </div>
              <br>
              <fieldset class="mimeAttachmentHeader"></fieldset>
              <br>
              <pre wrap="">_______________________________________________
OWASP-Leaders mailing list
<a moz-do-not-send="true" class="moz-txt-link-abbreviated" href="mailto:OWASP-Leaders@lists.owasp.org"><a href="mailto:OWASP-Leaders@lists.owasp.org">OWASP-Leaders@lists.owasp.org</a></a>
<a moz-do-not-send="true" class="moz-txt-link-freetext" href="https://lists.owasp.org/mailman/listinfo/owasp-leaders"><a href="https://lists.owasp.org/mailman/listinfo/owasp-leaders">https://lists.owasp.org/mailman/listinfo/owasp-leaders</a></a>
</pre>
            </blockquote>
            <br>
          </div>
        </blockquote>
      </div>
      <br>
    </blockquote>
    <br>
  

</div></blockquote><blockquote type="cite"><div><span>_______________________________________________</span><br><span>Committees-chairs mailing list</span><br><span><a href="mailto:Committees-chairs@lists.owasp.org">Committees-chairs@lists.owasp.org</a></span><br><span><a href="https://lists.owasp.org/mailman/listinfo/committees-chairs">https://lists.owasp.org/mailman/listinfo/committees-chairs</a></span><br></div></blockquote></body></html>