<div dir="ltr">Good points. We've thought and discussed about these issues a lot of times and Martin is right, we have planned to make an "academy portal" which has not yet kicked off (partly my responsibility/lack of time). Ideally we could have something like this: <a href="http://www.isaca.org/Knowledge-Center/Academia/Pages/ISACA-Model-Curricula.aspx">http://www.isaca.org/Knowledge-Center/Academia/Pages/ISACA-Model-Curricula.aspx</a><div>

<br></div><div style>Anyway, not only there's no Education Committee anymore but I saw somewhere that the plan for hiring an "Educational Director" has been put off. Apparently education is not a priority for the board at this stage. It would be nice to hear what this year's candidates have to propose.</div>

<div style><br></div><div style>Kostas</div></div><div class="gmail_extra"><br><br><div class="gmail_quote">On Wed, Jun 12, 2013 at 6:08 PM, Tobias <span dir="ltr"><<a href="mailto:tobias.gondrom@owasp.org" target="_blank">tobias.gondrom@owasp.org</a>></span> wrote:<br>

<blockquote class="gmail_quote" style="margin:0 0 0 .8ex;border-left:1px #ccc solid;padding-left:1ex">
  
    
  
  <div text="#000000" bgcolor="#FFFFFF">
    <div>Hi, <br>
      <br>
      (not sure whether posting this to the leaders list is the right
      place, but as we don't have the Education committee anymore
      posting it here. Otherwise apologies if misplaced post.)<br>
      <br>
      am wondering, do we maybe have a prepared "secure development"
      course curriculum that universities want to share among them /
      with OWASP? <br>
      E.g. like when Boing gave the IP of the Secure Coding reference
      guide to OWASP for publication, maybe some universities like
      collaborate (or already have) and we could
      have/develop/consolidate a full course/lecture curriculum for the
      unis? <br>
      If we could reach more developers right from the beginning that
      would be so cool. <br>
      In OWASP terms that could be a win-win and should be worth our
      efforts? <br>
      <br>
      Best regards, Tobias<div><div class="h5"><br>
      <br>
      <br>
      <br>
      On 11/06/13 04:10, Constance Matthews wrote:<br>
    </div></div></div><div><div class="h5">
    <blockquote type="cite">
      
      What a timely subject.  <br>
      <br>
      In Columbus, OH we are working with the State Government and
      Colleges/Universities in the  very beginning stages/discussions on
      how we can get secure coding in the classroom and have security be
      a part of the SDLC. Ohio is excited and so are we (Bill Sempf,
      Aaron Ansari, and Connie Matthews). We are very excited on what
      this can mean to the future of secure coding and chipping away at
      the problem little by little (all going in the right direction.)<br>
      <br>
      We taught our first class to our membership last week to almost
      100 developers and the feedback was extremely positive.  We are
      very excited to see where this can go in Ohio.  Jim Manico, Jason
      Montgomery of Veracode and Bill Sempf (Central Ohio OWASP leader)
      did a fantastic job teaching the course.<br>
      <br>
      If anyone can give us any pointers, we are open to discussion. We
      feel that we have the right people to help us make this a reality
      in Ohio.  Taking baby steps.<br>
      <br>
      Please feel free to share your thoughts?<br>
      <br>
      Thank you,<br>
      Connie <br>
      <div>On 6/10/2013 3:55 PM, Konstantinos
        Papapanagiotou wrote:<br>
      </div>
      <blockquote type="cite">
        <div dir="ltr">A good reason would be to compete (and win!) at
          the University Challenge. :)
          <div><br>
          </div>
          <div>Kostas</div>
        </div>
        <div class="gmail_extra"><br>
          <br>
          <div class="gmail_quote">On Mon, Jun 10, 2013 at 5:43 PM,
            DK-OWASP <span dir="ltr"><<a href="mailto:david.kadow@owasp.org" target="_blank">david.kadow@owasp.org</a>></span>
            wrote:<br>
            <blockquote class="gmail_quote" style="margin:0 0 0 .8ex;border-left:1px #ccc solid;padding-left:1ex">
              <div dir="auto">
                <div>Thank you all for the input.</div>
                <div><br>
                </div>
                <div>TBC, one dimension of messaging in my "Come to
                  AppsecUSA" PowerPoint ( to show at various non-OWASP
                  MeetUps ) is  "Why?"<br>
                  One of the answers to "why?" is</div>
                <div>"There are 4,000 universities in the US...less than
                  100 teach secure development. Therefore It's highly
                  likely that your new developers don't know how to keep
                  you safe. Bring them to AppSecUSA, so they can help
                  keep you out of the data breach headlines."</div>
                <div><br>
                </div>
                <div>More to come...</div>
                <div><br>
                </div>
                <div>I welcome your thoughts and comments. </div>
                <div><br>
                  <div>David Kadow, CISSP</div>
                  <div>---</div>
                  <div>657-464-3250 <span>(65-ringDBK-0)</span></div>
                  <div><a href="http://mynfosec.blogspot.com" target="_blank">http://mynfosec.blogspot.com</a></div>
                  <div><a href="http://www.linkedin.com/in/davidkadow" target="_blank">http://www.linkedin.com/in/davidkadow</a></div>
                </div>
                <div>
                  <div>
                    <div><br>
                      On Jun 9, 2013, at 9:57 AM, Martin Knobloch <<a href="mailto:martin.knobloch@owasp.org" target="_blank">martin.knobloch@owasp.org</a>>

                      wrote:<br>
                      <br>
                    </div>
                    <blockquote type="cite">
                      <div>
                        <div dir="ltr">
                          <div>
                            <div>
                              <div>
                                <div>This is a great list and starting
                                  point to do the University Outreach
                                  once more!<br>
                                </div>
                                We do have the OWASP Blue Book, <i>The
                                  OWASP Application Security Code of
                                  Conduct for Educational Institutions:</i><br>
                                <div style="margin-left:40px"><a href="https://www.owasp.org/index.php/OWASP_Codes_of_Conduct" target="_blank">https://www.owasp.org/index.php/OWASP_Codes_of_Conduct</a><br>
                                </div>
                                <br>
                                Doing this properly, we can extend the
                                list of OWASP Educational supporters:<br>
                                <ul>
                                  <li>What is: <a href="https://www.owasp.org/index.php/Academic_Supporter" target="_blank">https://www.owasp.org/index.php/Academic_Supporter</a>
                                  </li>
                                  <li>List of: <a href="https://www.owasp.org/index.php/Academic_Supporters" target="_blank">https://www.owasp.org/index.php/Academic_Supporters</a></li>
                                </ul>
                              </div>
                              By addressing the Universities not yet
                              being part of OWASP and getting the local
                              chapters in touch!<br>
                            </div>
                            I am more then glad to help!<br>
                            <br>
                            Cheers,<br>
                          </div>
                          -martin<br>
                        </div>
                        <div class="gmail_extra"><br>
                          <br>
                          <div class="gmail_quote">On Sun, Jun 9, 2013
                            at 2:56 PM, James Walden <span dir="ltr"><<a href="mailto:james.walden@gmail.com" target="_blank">james.walden@gmail.com</a>></span>
                            wrote:<br>
                            <blockquote class="gmail_quote" style="margin:0 0 0 .8ex;border-left:1px #ccc solid;padding-left:1ex"> While the
                              list of universities teaching secure
                              development in the US is short today, it
                              should expand with the new ACM/IEEE 2013
                              curriculum standard, which mandate secure
                              development across the curriculum.  The
                              standards should be finalized by the end
                              of the year. <br>
                              <br>
                              Thinking of university education, is
                              anyone else attending CISSE 2013 (<a href="http://www.cisse.info/" target="_blank">http://www.cisse.info/</a>)
                              this week?<br>
                              <br>
                              <div class="gmail_quote">
                                <div>
                                  <div>On Sun, Jun 9, 2013 at 7:19 AM,
                                    Martin Knobloch <span dir="ltr"><<a href="mailto:martin.knobloch@owasp.org" target="_blank">martin.knobloch@owasp.org</a>></span>
                                    wrote:<br>
                                  </div>
                                </div>
                                <blockquote class="gmail_quote" style="margin:0 0 0 .8ex;border-left:1px #ccc solid;padding-left:1ex">
                                  <div>
                                    <div>
                                      <div dir="ltr">
                                        <div>
                                          <div>
                                            <div>Hi David,<br>
                                              <br>
                                            </div>
                                            How can I assist?<br>
                                            <br>
                                          </div>
                                          Cheers,<br>
                                        </div>
                                        -martin<br>
                                      </div>
                                      <div class="gmail_extra"> <br>
                                        <br>
                                        <div class="gmail_quote">On Sat,
                                          Jun 8, 2013 at 3:31 PM, Tom
                                          Brennan - OWASP <span dir="ltr"><<a href="mailto:tomb@proactiverisk.com" target="_blank">tomb@proactiverisk.com</a>></span>
                                          wrote:<br>
                                          <blockquote class="gmail_quote" style="margin:0 0 0 .8ex;border-left:1px #ccc solid;padding-left:1ex">
                                            <div style="word-wrap:break-word">
                                              <div>David, thank you for
                                                working on this effort;
                                                I do not have a answer
                                                for your question
                                                however your question
                                                does invoke a mapping of
                                                the membership list
                                                posted on the OWASP
                                                website to the list and
                                                logical inquiry to
                                                 Membership &
                                                Projects. Martin
                                                Knobloch is a very a
                                                active education
                                                advocate and I would not
                                                be surprised if someone
                                                has already conducted
                                                analyst on this
                                                demographic for a
                                                related OWASP Project</div>
                                              <div><br>
                                              </div>
                                              <div>OWASP-Leaders your
                                                help is requested.</div>
                                              <div><br>
                                              </div>
                                              <br>
                                              <div>
                                                <div>On Jun 8, 2013, at
                                                  9:02 AM, David Kadow
                                                  <<a href="mailto:david.kadow@owasp.org" target="_blank">david.kadow@owasp.org</a>>

                                                  wrote:</div>
                                                <br>
                                                <blockquote type="cite">
                                                  <div dir="ltr">Quick
                                                    question: ( this is
                                                    for the "Come to
                                                    AppSecUSA"
                                                    powerpoint I'm
                                                    composing ) 
                                                    <div><br>
                                                    </div>
                                                    <div>There are
                                                      approximately
                                                      4,000 universities
                                                      in the U.S., with
                                                      enrollment of over
                                                      17 million
                                                      students. Do you
                                                      know how many
                                                      universities
                                                      actually teach
                                                      secure development
                                                      ? In 30 minutes
                                                      and 13 pages of
                                                      google results I
                                                      find less than 40
                                                      ( results below )</div>
                                                    <div><br>
                                                    </div>
                                                    <div>
                                                      <div><a href="http://arizona.edu/" target="_blank">arizona.edu</a></div>
                                                      <div><a href="http://asu.edu/" target="_blank">asu.edu</a></div>
                                                      <div><a href="http://auburn.edu/" target="_blank">auburn.edu</a></div>
                                                      <div><a href="http://berkeley.edu/" target="_blank">berkeley.edu</a></div>
                                                      <div><a href="http://cmu.edu/" target="_blank">cmu.edu/</a></div>
                                                      <div><a href="http://cochise.edu/" target="_blank">cochise.edu</a></div>
                                                      <div><a href="http://colorado.edu/" target="_blank">colorado.edu</a></div>
                                                      <div><a href="http://columbusstate.edu/" target="_blank">columbusstate.edu</a></div>
                                                      <div><a href="http://dartmouth.edu/" target="_blank">dartmouth.edu</a></div>
                                                      <div><a href="http://ecsun.edu/" target="_blank">ecsun.edu</a></div>
                                                      <div><a href="http://fau.edu/" target="_blank">fau.edu</a></div>
                                                      <div><a href="http://gvsu.edu/" target="_blank">gvsu.edu</a></div>
                                                      <div><a href="http://hawaii.edu/" target="_blank">hawaii.edu</a></div>
                                                      <div><a href="http://kit.edu/" target="_blank">kit.edu</a></div>
                                                      <div><a href="http://mcsueastbay.edu/" target="_blank">mcsueastbay.edu</a></div>
                                                      <div><a href="http://mit.edu/" target="_blank">mit.edu</a></div>
                                                      <div><a href="http://msstate.edu/" target="_blank">msstate.edu</a></div>
                                                      <div><a href="http://ncsu.edu/" target="_blank">ncsu.edu</a></div>
                                                      <div><a href="http://nku.edu/" target="_blank">nku.edu</a></div>
                                                      <div><a href="http://pitt.edu/" target="_blank">pitt.edu</a></div>
                                                      <div><a href="http://psu.edu/" target="_blank">psu.edu</a></div>
                                                      <div><a href="http://sc.edu/" target="_blank">sc.edu</a></div>
                                                      <div><a href="http://scf.edu/" target="_blank">scf.edu</a></div>
                                                      <div><a href="http://sharif.edu/" target="_blank">sharif.edu</a></div>
                                                      <div><a href="http://sjsu.edu/" target="_blank">sjsu.edu</a></div>
                                                      <div><a href="http://stanford.edu/" target="_blank">stanford.edu</a></div>
                                                      <div><a href="http://ucf.edu/" target="_blank">ucf.edu</a></div>
                                                      <div><a href="http://uic.edu/" target="_blank">uic.edu</a></div>
                                                      <div><a href="http://uis.edu/" target="_blank">uis.edu</a></div>
                                                      <div><a href="http://usc.edu/" target="_blank">usc.edu</a></div>
                                                      <div><a href="http://usouthal.edu/" target="_blank">usouthal.edu</a></div>
                                                      <div><a href="http://utdallas.edu/" target="_blank">utdallas.edu</a></div>
                                                      <div><a href="http://utexas.edu/" target="_blank">utexas.edu</a></div>
                                                      <div><a href="http://utsa.edu/" target="_blank">utsa.edu</a></div>
                                                      <div><a href="http://washington.edu/" target="_blank">washington.edu</a></div>
                                                      <div><a href="http://wisc.edu/" target="_blank">wisc.edu</a></div>
                                                      <div><a href="http://wright.edu/" target="_blank">wright.edu</a></div>
                                                      <div><br>
                                                      </div>
                                                      <div>Any guidance
                                                        will be
                                                        appreciated.</div>
                                                      <span><font color="#888888"><span><font color="#888888">-- <br>
                                                          <div dir="ltr"><br>
                                                          <div>David
                                                          Kadow, CISSP</div>
                                                          <div><a href="tel:657-464-3250" value="+16574643250" target="_blank">657-464-3250</a></div>
                                                          </div>
                                                          </font></span></font></span></div>
                                                  </div>
                                                  <span><font color="#888888"> </font></span></blockquote>
                                              </div>
                                              <span><font color="#888888"><br>
                                                </font></span></div>
                                          </blockquote>
                                        </div>
                                        <br>
                                      </div>
                                      <br>
                                    </div>
                                  </div>
                                  <div>_______________________________________________<br>
                                    OWASP-Leaders mailing list<br>
                                    <a href="mailto:OWASP-Leaders@lists.owasp.org" target="_blank">OWASP-Leaders@lists.owasp.org</a><br>
                                    <a href="https://lists.owasp.org/mailman/listinfo/owasp-leaders" target="_blank">https://lists.owasp.org/mailman/listinfo/owasp-leaders</a><br>
                                    <br>
                                  </div>
                                </blockquote>
                              </div>
                              <br>
                            </blockquote>
                          </div>
                          <br>
                        </div>
                      </div>
                    </blockquote>
                  </div>
                </div>
              </div>
              <br>
              _______________________________________________<br>
              OWASP-Leaders mailing list<br>
              <a href="mailto:OWASP-Leaders@lists.owasp.org" target="_blank">OWASP-Leaders@lists.owasp.org</a><br>
              <a href="https://lists.owasp.org/mailman/listinfo/owasp-leaders" target="_blank">https://lists.owasp.org/mailman/listinfo/owasp-leaders</a><br>
              <br>
            </blockquote>
          </div>
          <br>
        </div>
        <br>
        <fieldset></fieldset>
        <br>
        <pre>_______________________________________________
OWASP-Leaders mailing list
<a href="mailto:OWASP-Leaders@lists.owasp.org" target="_blank">OWASP-Leaders@lists.owasp.org</a>
<a href="https://lists.owasp.org/mailman/listinfo/owasp-leaders" target="_blank">https://lists.owasp.org/mailman/listinfo/owasp-leaders</a>
</pre>
      </blockquote>
      <br>
      <pre cols="72">-- 
Constance Matthews        <a href="mailto:cmatthews@microsolved.com" target="_blank">cmatthews@microsolved.com</a>
Account Executive        
Phone: 614. 351.1237 X 206
Cell: 614.286.2408
Fax: 512-592-7904

Linked In: <a href="http://www.linkedin.com/in/ConnieMatthews" target="_blank">www.linkedin.com/in/ConnieMatthews</a>
PGP Key Available by Request
MicroSolved is security expertise you can trust!

HoneyPoint Security Server
Attackers get stung, instead of you!
<a href="http://www.microsolved.com/honeypoint" target="_blank">http://www.microsolved.com/honeypoint</a>
 
</pre>
      <br>
      <fieldset></fieldset>
      <br>
      <pre>_______________________________________________
OWASP-Leaders mailing list
<a href="mailto:OWASP-Leaders@lists.owasp.org" target="_blank">OWASP-Leaders@lists.owasp.org</a>
<a href="https://lists.owasp.org/mailman/listinfo/owasp-leaders" target="_blank">https://lists.owasp.org/mailman/listinfo/owasp-leaders</a>
</pre>
    </blockquote>
    <br>
  </div></div></div>

<br>_______________________________________________<br>
OWASP-Leaders mailing list<br>
<a href="mailto:OWASP-Leaders@lists.owasp.org">OWASP-Leaders@lists.owasp.org</a><br>
<a href="https://lists.owasp.org/mailman/listinfo/owasp-leaders" target="_blank">https://lists.owasp.org/mailman/listinfo/owasp-leaders</a><br>
<br></blockquote></div><br></div>