https://wiki.owasp.org/api.php?action=feedcontributions&feedformat=atom&user=CybermalandroOWASP - User contributions [en]2026-04-26T04:52:27ZUser contributionsMediaWiki 1.27.2https://wiki.owasp.org/index.php?title=OpenSAMM_Adopters&diff=146908OpenSAMM Adopters2013-03-07T01:12:51Z<p>Cybermalandro: </p>
<hr />
<div>[[Category:Software Assurance Maturity Model]]<br />
===List of Organizations Adopting OpenSAMM===<br />
{|class="wikitable sortable" style="text-align: top;" border="1" cellpadding="2"<br />
!width="15%" |Organization Name<br />
!width="15%" |Contact<br />
!width="15%" |Role<br />
!width="15%" |Organization Type<br />
!width="15%" |Region<br />
!width="15%" |Testimonial<br />
|}</div>Cybermalandrohttps://wiki.owasp.org/index.php?title=OpenSAMM_Adopters&diff=146907OpenSAMM Adopters2013-03-07T00:55:13Z<p>Cybermalandro: </p>
<hr />
<div>[[Category:Software Assurance Maturity Model]]<br />
===List of Organizations Adopting OpenSAMM===<br />
{|class="wikitable sortable" style="text-align: top;" border="1" cellpadding="2"<br />
!width="15%" |Organization Name<br />
!width="15%" |Contact<br />
!width="15%" |Level<br />
!width="15%" |Organization Type<br />
!width="15%" |Region<br />
!width="15%" |Testimonial<br />
|}</div>Cybermalandrohttps://wiki.owasp.org/index.php?title=OpenSAMM_Adopters&diff=146726OpenSAMM Adopters2013-03-05T23:39:17Z<p>Cybermalandro: </p>
<hr />
<div>===List of Organizations Adopting OpenSAMM===<br />
{|class="wikitable sortable" style="text-align: top;" border="1" cellpadding="2"<br />
!width="15%" |Organization Name<br />
!width="15%" |Contact<br />
!width="15%" |Level<br />
!width="15%" |Organization Type<br />
!width="15%" |Region<br />
!width="15%" |Testimonial<br />
|}</div>Cybermalandrohttps://wiki.owasp.org/index.php?title=OpenSAMM_Adopters&diff=146228OpenSAMM Adopters2013-03-01T04:23:46Z<p>Cybermalandro: Created page with "===List of Organizations Adopting OpenSAMM=== Company Name:"</p>
<hr />
<div>===List of Organizations Adopting OpenSAMM===<br />
Company Name:</div>Cybermalandrohttps://wiki.owasp.org/index.php?title=OWASP_Internship_Program&diff=109325OWASP Internship Program2011-04-21T02:18:48Z<p>Cybermalandro: /* Educational Sponsors */</p>
<hr />
<div>'''Stay tuned for information and program details on the OWASP Internship Program.''' <br />
<br />
----<br />
<br />
<br> A key component to the overall success of OWASP’s mission is the ability to positively affect change and induce an atmosphere that is conducive for knowledge share and learning. <br />
<br />
To further the mission of the Educational Project, OWASP desires to help better prepare the future workforce when making the transition from student to employee. Therefore, we have developed this Internship program. The goal of this program is to act as a bridge between the corporate and educational communities. <br />
<br />
The benefits of participation for all involved are obvious. The Corporate Sponsors get a pipeline to future workers. Educational Sponsors further their mission by helping students better prepare for the real world. OWASP and the IT Security community benefit with the realization of our mission to make application security more visible. <br />
<br />
<br> If you are a corporate or educational organization and would like to participate in the program, please contact Peter Dean at peter.dean(at)owasp.org. <br />
<br />
<br> <br />
<br />
== '''Organizations looking for interns;''' ==<br />
<br />
'''Provide Security''' <br> Programmer / Information Security - PAID INTERNSHIP<br><br> '''Job Description'''<br> Provide Security is a leading security firm providing their clients with the best of both cyber and physical security needs. We currently have a paid internship available for a part-time Programmer with a passion for INFOSEC for our New Jersey Offfice. The ideal candidate should be a detail oriented, self-motivated, career focused team player with a desire to work in a growing small to medium sized company.<br> <br> '''Responsibilities:'''<br> Program and maintain database-driven applications, troubleshoot web-related issues, perform general web site maintenance and web tasks as needed. In addition, you will assist on Red Team Assessments, site surveys, and other exciting security ventures.<br> <br> '''Required Skills'''<br> Experience We Are Looking For:<br> <br />
<br />
• Experience creating database-driven applications using some of the following web programming technologies: PHP, ASP, ASP.NET, Coldfusion, XML, Flash / Actionscript, MySQL, MS SQL Server, JavaScript, CSS, and HTML.<br> • PHP &amp; ASP.NET required<br> • Computer Science Major<br> • Knowledge of mobile application development A PLUS<br> • Knowledge of Application Security a plus<br> • Desire to learn about Physical Security and Penetration Testing<br> • Must be a team player and able/willing to write code to conform to company development standards.<br> • Performs well under pressure<br> • Understand the importance of meeting customer expectations<br> • Friendly &amp; Flexible<br> • Attention To Detail is a MUST!<br> • Fast worker and communicator<br> • Overall great attitude<br> <br> We Offer: <br> • Paid Internship<br> • College Credit<br> • Experience<br> • A Letter of Recommendation<br> • Possibility Of Full-Time Job<br> • Fun, growing, friendly, fast-paced environment<br> <br />
<br />
<br> '''Provide Security'''<br> '''http://www.providesecurity.com/'''<br> Thomas Ryan<br> Managing Partner<br> phone: +1(732)207-7916<br> e-mail: tom.ryan(at)providesecurity.com<br><br />
<br />
== <br> '''Educational Sponsors'''<br> ==<br />
<br />
'''Rutgers University'''<br> The link below will direct you to the Rutgers Career Services website. The specifics of the Rutgers internship program can be found here.<br> '''http://careerservices.rutgers.edu/'''<br />
<br />
<br> '''Stevens Institute of Technology'''<br> The link below will direct you to the Stevens Internship web page.<br> '''http://www.stevens.edu/sit/admissions/careers/internships.cfm '''<br> <br> Stevens also offers a Co-Op program and the below link provides further details.<br> '''http://www.stevens.edu/sit/admissions/careers/coop.cfm '''<br><br />
<br> Dartmouth's SISMAT and Internship Program <br>'''http://www.ists.dartmouth.edu/events/sismat/'''<br></div>Cybermalandrohttps://wiki.owasp.org/index.php?title=Global_Education_Committee&diff=107839Global Education Committee2011-03-29T12:25:15Z<p>Cybermalandro: /* Targets (DRAFT) */</p>
<hr />
<div>[[Category:OWASP Project]]<br />
<br />
= About the Global Education Committee =<br />
'''The Global Education Committee was created during the OWASP EU Summit in Portugal 2008. The primary purpose of the Global Education Committee is: to work with the [https://www.owasp.org/index.php/Category:OWASP_Education_Project OWASP Education Project] to provide educational materials for both internal and external users, develop liaisons with educational institutions worldwide.'''<br />
<br />
* [http://www.owasp.org/index.php/File:OWASP_Global_Education_Committee.pptx Global Education Committee Presentation ]<br />
* [[Global Education Committee Governance|Global Education Committee Governance]]<br />
== Mission ==<br />
Provide awareness, training and educational services to corporate,<br />
government and educational institutions on application security.<br />
<br />
== Vision ==<br />
Make OWASP educational material globally available as a well known resource<br />
in easily consumable form mapped to a framework tied specifically to user<br />
roles and responsibilities<br />
<br />
== Committee Members ==<br />
Chairs: [mailto:martin.knobloch@owasp.org Martin Knobloch] (Netherlands) and [mailto:kuai.hinojosa@owasp.org Kuai Hinjosa] (U.S.)<br />
<br />
* [mailto:eduardo.neves@owasp.org Eduardo Neves] (Brazil)<br />
* [mailto:cecil.su@GRANTTHORNTON.COM.SG Cecil Su] (Singapore)<br />
* [mailto:fabio.e.cerullo@aib.ie Fabio Cerullo] (Ireland)<br />
* [mailto:nishi787@hotmail.com Nishi Kumar] (U.S.)<br />
* [mailto:sebastien.gioria@owasp.org Sebastien Gioria] (France)<br />
<br />
== '''[[OWASP Training|OWASP Training]]''' and '''[[OWASP Academies|OWASP Academies]]''' ==<br />
<br />
'''OWASP Training - OWASP Projects and Resources you can use TODAY!'''<br />
<br />
The main goal of OWASP Training is to support Local Chapters' training activities in a way that allows OWASP to use a model that, despite specific and punctual adjustments, can be easily replicated and become the main frame for all Chapter-led training events. <br />
<br />
To know more about the OWASP Training concept, please see the '''[[OWASP Training|OWASP Training page]]'''.<br />
<br />
'''OWASP Academies'''<br />
<br />
The idea of the OWASP Academies is to conceive a frame under which work should be done with Universities, Polytechnic Institutes, IT Schools and other Academic institutions with a view to establish solid relationships and develop with these organisms ways to collaborate and participate in the design of courses focused on web application security.<br />
<br />
OWASP has the knowledge and critical mass to give an invaluable input to any Academy focusing on this area by:<br />
* contributing with its expertise in the definition of curricula and course contents that explore and study the web security field;<br />
* making available to the Academy its pool of interested and willing security experts as trainers. <br />
<br />
To know more about the OWASP Academies and the activities developed, please see the '''[[OWASP Academies|OWASP Academies page]]'''.<br />
<br />
= Monthly Report Format =<br />
<br />
Date of last update:<br />
Updated by:<br />
<br />
Accomplishments for this Month<br />
* Agreed on GEC Governance<br />
*<br />
*<br />
Planned for Next Month<br />
* Goals and budget for 2011 <br />
*<br />
*<br />
Issues/Risks/Challenges<br />
* <br />
* <br />
*<br />
<br />
[https://www.owasp.org/index.php/How_to_Join_a_Committee How to join this committee]<br />
<br />
[https://lists.owasp.org/mailman/listinfo/global_education_committee Join our mailing list]<br />
<br />
<paypal>Global Education Committee</paypal><br />
<br />
== Scheduled Meetings ==<br />
<br />
'''Scheduling meetings:''' <br />
The next scheduled meeting is Monday, April 4th.<br />
Meeting time: 8 to 10 pm GMT<br />
* Fabio -> Ireland, 8M<br />
* Martin, Sebastien -> Amsterdam / Paris, 9 to 11 PM<br />
* Kuai -> New York, 4 to 6 PM<br />
* Nishi -> Houston Texas, 4PM<br />
* Cecil -> Singapore, 4 to 6 AM (following day)<br />
<br />
Please email martin.knobloch 'at' owasp.org for any questions.<br />
<br />
'''Joining the GEC conference call'''<br />
*The Dial in number: ++1-866-534-4754 (this number is free to call from the US, Canada and via Skype!<br />
*Guest Code: 891237<br />
<br />
'''Agenda items:''' <br />
* Committee governance (see example I send via email) <br />
* Plans and activities for 2011 <br />
* Long term strategy, state the Education Committee long term goals and agree on them again <br />
* do we want and possibilities of hiring someone for continues Academy and Educational Institution contact<br />
<br />
'''For previous meetings, see: [[:Category:GEC_Meetings|GEC Meetings]]'''<br />
<br />
== Targets <font color="red">'''(DRAFT)'''</font> ==<br />
Below you can find the timeline, what has to be achieved by when. <br />
All tasks must be SMART!<br />
<br />
{| class="prettytable"<br />
! Update July 2010<br />
! Task<br />
! Deadline<br />
! Type<br />
! Status<br />
! Description<br />
! Who<br />
|-<br />
| Finished<br />
| [[Categorize (Organization) of educational materials]]<br />
| N/A<br />
| Documentation<br />
| Done<br />
| Categorize / Organization of the educational materials for audience by roles and responsibilities/technologies and use the summit workshop notes.<br />
| Martin<br />
|-<br />
| Package has been created for the OWASP London Training<br />
| [[Train the trainers (Teach the teachers)]]<br />
| '''Q1/Q2/Q3/Q4 2009'''<br />
| Delivery <br />
| in progress<br />
| Develop a train the trainer program that will train trainers to deliver training on OWASP related material.<br />
| Fabio / Nishi<br />
|-<br />
| Launch<br />
| [[Create an "official" GEC course for universityl]]<br />
| '''Q1/Q2 2011'''<br />
| Delivery <br />
| Planning<br />
| Develop an official OWASP course based on the OWASP projects and other donate/sponsors course to help university/faculty adopt OWASP in their diploma.<br />
| Sébastien<br />
|-<br />
| Died <br />
| [[Create an online assessment and training portal]]<br />
| '''Q2/Q3/Q4 2009'''<br />
| Delivery <br />
| Planning<br />
| Develop an OWASP assessment and training portal that end users can use to gauge their knowledge on OWASP concepts and training providers can use to promote their training offerings.<br />
| Mano/Fabio<br />
|-<br />
| on hold <br />
| [[OWASP Boot Camp Project]]<br />
| '''Proposal:''' February 2009 '''Final:''' Oktober 2009 at OWASP AppSec US 2009<br />
| Delivery <br />
| wainting on project content<br />
| OWASP Boot Camp about the OWASP projects, to deliver a Boot Camp presentation should be one of the criteria to get an alpha status as project<br />
| Martin<br />
|-<br />
| active, CTF hold at OWASP AppSec-EU<br />
| [[OWASP CTF event]]<br />
| OWASP AppSec Conferences<br />
| Delivery <br />
| Done<br />
| Develop an OWASP Capture the Flag contest that could be easy use for OWASP conferences.<br />
| Martin<br />
|-<br />
| on hold<br />
| [[Speakers Bureau Project]]<br />
| '''TBD'''<br />
| Delivery <br />
| '''started'''<br />
| List of speakers, Name, Bio, Topics, History <br><br />
Speakers in conferences (OOTM ask for funds on this)/summit <br />
| Martin<br />
|-<br />
| Died<br />
| [[Marketing efforts]]<br />
| '''Q4 2009'''<br />
| Awareness Services <br />
| Started<br />
| Select material.<br />
| Eduardo<br />
|-<br />
| Hibernating, update requested<br />
| [[Internationalization of the training materials]]<br />
| '''Q4 2009'''<br />
| Awareness Services <br />
| Startes<br />
| Select material for translation services for highly spoken languages <br />
| Eduardo<br />
|-<br />
| busy, just al darn long lasting task<br />
| [[Education material]]<br />
| '''TBD'''<br />
| Training & Educational Services <br />
| started<br />
| All projects should be summoned to create educational material (training service)<br />
1) Each Projects --> Documents (help), Tool, Training; Live CD (Portable)<br />
| Martin/Nishi<br />
|-<br />
|We continue to add universities to our list of OWASP Supporters see [http://www.owasp.org/] for a list of university logos representing universities who have joined.<br />
| [[Educational Academic Services]]<br />
| '''TBD'''<br />
| Training & Educational Services <br />
| <br />
<br />
3 Universities already in contact with and planning OWASP events to participate in. <br />
<br />
| Incorporate OWASP into the following top 5 Universities, within the next 12 months by introducing OWASP training and education resources at University's events.<br />
<br />
1) New York University<br />
2) Cornell University<br />
3) Princeton University<br />
4) University of Minnesota<br />
5) Columbia University<br />
<br />
As a result of these initiative we would hope to see:<br />
<br />
1) Confirming participation at arranged events<br />
2) Asking Universities to recognize they are using our resources by allowing us to place their names in wiki pages such as http://www.owasp.org/index.php/OWASP_Top_Ten_Project <br />
3) University faculty, staff and students participate in local and international events/meetings<br />
4) University faculty, staff and students contribute to OWASP projects<br />
<br />
|Kuai Hinojosa, Andrzej<br />
|}<br />
<br />
= Proposal <font color="red">'''(DRAFT)'''</font> =<br />
== Categorize (Organization) of educational materials ==<br />
Objective: Categorize / Organize educational material, estyle the Education Project website.<br><br />
<br />
Activities/Deadline:<br> <br />
* Categorize education material according to the CLASP roles<br><br />
* Group material into management-ish, student-ish, technical-ish <br><br />
<br />
Benefits<br><br />
Target specific demographic (managers, students...) Provide easy access to education material. Efficient categorization of education materials.<br />
<br />
== Train the trainers (Teach the teachers) ==<br />
Objective:<br />
Develop a train the trainer program that will train trainers to deliver training on OWASP related material.<br />
<br />
Activities/Deadline:<br />
# Develop a criteria to identify and approve trainers / Q1 2009<br />
# Identify pertinent OWASP related material that will be included in the training kit / Q2 2009. This is dependent on the education project organizing material.<br />
# Create a training toolkit with pre-built presentation and training materials, assessments etc. / Q3 2009<br />
# Conduct train the trainer sessions (remote or in-person) / Q4 2009<br />
<br />
Benefits:<br />
The training kit and trained trainers will be available resources promoting OWASP in local events worldwide.<br />
<br />
== Create an online assessment and training portal ==<br />
Objective:<br />
Develop an OWASP assessment and training portal that end users can use to gauge their knowledge on OWASP concepts and training providers can use to promote their training offerings.<br />
<br />
Activities/Deadline:<br />
# Generate OWASP assessment items (can use the testing guide and other sources) / Q2-Q3 2009<br />
# Develop an assessment portal to deliver taking of assessments with robust reporting by knowledge area / Q4 2009<br />
# Develop a training portal to allow training providers to publish and promote their training offerings / Q4 2009<br />
This can be developed as a summer of code project but is not a requirement. <br />
<br />
Benefits:<br />
Assessments that can be offered in OWASP events and other conferences to users will increase OWASP awareness. The portal can become the link between trainers and trainees and will eventually help in increasing the awareness and knowledge of application security in the industry.<br />
<br />
== OWASP Boot Camp Project ==<br />
Objective<br><br />
To deliver a Boot Camp session which would lead to be one of the main criteria to produce alpha status projects<br />
<br />
Activities/Deadline:<br> <br />
<br />
Benefits<br><br />
<br />
== OWASP CTF event ==<br />
Objective<br />
Generate a Capture The Flag framework to be offered at OWASP events<br />
<br />
Activities/Deadline: <br />
* Andrzej will contact the organizers of the CTF from the Denver OWASP Conference and work in using same model<br />
<br />
Benefits<br />
Capture The Flag events are very popular in conferences, creating and OWASP specific CTF will offer entertainment at events, generate attendants participation etc.<br />
<br />
== Speakers Bureau Project ==<br />
<br />
Objective<br><br />
OWASP Boot Camp about the OWASP projects, to deliver a Boot Camp presentation should be one of the criteria to get an alpha status as project<br><br />
<br />
Activities/Deadline:<br> <br />
<br />
Benefits<br><br />
List of speakers, Name, Bio, Topics, History <br />
Speakers in conferences (OOTM ask for funds on this)/summit<br />
<br />
Speakers Agreement - https://www.owasp.org/index.php/Speaker_Agreement<br />
<br />
== Marketing efforts ==<br />
Objective: To promote OWASP projects, events, education material and OWASP mission.<br><br />
<br />
Activities/Deadline:<br> <br />
* Gather flyers, Brochures of OWASP Top 10, Testing Guide<br />
<br />
Benefits<br><br />
Group promotional material which can be hand out at events<br />
<br />
== Internationalization of the training materials ==<br />
Objective<br><br />
Translate training materials<br />
<br />
Activities/Deadline:<br> <br />
Identify point of contacts places for translation efforts and setup a deadline<br />
Translate material in French, Portuguese, Spanish, Malay, Italian, Indonesian, Chinese<br />
<br />
Benefits<br><br />
To reach international audiences<br />
<br />
== Education material ==<br />
Objective: Consolidate all projects (Tools, Help Documents, Presentations, LiveCD) create educational material (training service) <br />
<br />
Activities/Deadline:<br> <br />
<br />
Benefits<br><br />
<br />
== Academic Educational Services ==<br />
Objectives<br><br />
Promote and encourage OWASP resources at accredited Universities around the world within the next 12 months by introducing OWASP training and education material at University's events.<br />
<br />
Activities/Deadline:<br />
<br />
* Build a list of at least 5 Universities with computer science or risk management programs that can be targeted /Q1 2009 <br />
* Establish communication with targeted universities, generate key contacts and establish relationships /Q1 - Q4 2009<br />
* Develop a list of possible academic events in which to participate /Q1 - Q2 2009 <br />
* Participate in at least 1 Academic event, present case studies or OWASP education materials /Q1 - Q4<br />
<br />
Benefits<br><br />
OWASP will gain exposure in the academic industry, starting with accredited universities around the world. Universities will become members of OWASP, provide meeting space, students will apply to OWASP grants, and provide support and structure</div>Cybermalandrohttps://wiki.owasp.org/index.php?title=Projects/OWASP_Mobile_Security_Project&diff=105154Projects/OWASP Mobile Security Project2011-02-15T16:38:38Z<p>Cybermalandro: </p>
<hr />
<div>{{Template:Project About<br />
| project_name = OWASP Mobile Security Project<br />
| project_home_page = OWASP_Mobile_Security_Project<br />
| project_description = <br />
The rapid growth of mobile computing has made the need for secure mobile development absolutely essential. The OWASP Mobile Security Project will help the community better understand the risks present in mobile applications, and learn to defend against them. This project will be forked into each of the following platforms:<br />
* iOS Project<br />
* Android Project<br />
* webOS Project<br />
* Windows Mobile Project<br />
* Blackberry Project<br />
<br />
| project_license =<br />
<br />
| leader_name1 = Jack Mannino <br />
| leader_email1 = Jack@nvisiumsecurity.com<br />
| leader_username1 = Jack Mannino<br />
<br />
| leader_name2 = Mike Zusman<br />
| leader_email2 = mike.zusman@intrepidusgroup.com<br />
| leader_username2 = schmoilito<br />
<br />
| contributor_name2 = Jim Manico<br />
| contributor_email2 = jim.manico@owasp.org<br />
| contributor_username2= jmanico<br />
<br />
| contributor_name1 = David Lindner<br />
| contributor_email1 = david.lindner@aspectsecurity.com<br />
| contributor_username1 = David Lindner<br />
<br />
| contributor_name3 = Tom Neaves<br />
| contributor_email3 = tom.neaves@verizonbusiness.com<br />
| contributor_username3 = Tom Neaves<br />
<br />
| contributor_name4 = Kuai Hinojosa<br />
| contributor_email4 = Kuai.Hinojosa@owasp.org<br />
| contributor_username4 = Kuai Hinojosa<br />
<br />
| pamphlet_link = <br />
<br />
| presentation_link =<br />
<br />
| mailing_list_name = https://lists.owasp.org/mailman/listinfo/owasp-mobile-security-project<br />
<br />
| project_road_map = http://www.owasp.org/index.php/Projects/OWASP_Mobile_Security_Project/Roadmap<br />
<br />
| links_url[1-10] = <br />
<br />
| links_name[1-10] = <br />
<br />
| release_1 = <br />
| release_2 = <br />
| release_3 =<br />
| release_4 =<br />
}}</div>Cybermalandrohttps://wiki.owasp.org/index.php?title=NYNJMetro/Training&diff=87436NYNJMetro/Training2010-08-09T01:24:41Z<p>Cybermalandro: </p>
<hr />
<div>This training event is provided by the [[NYNJMetro | OWASP NYNJMetro Chapter]]<br />
<br />
==== Training - October 19th, 2010 ====<br />
{{Template:<includeonly>{{{1}}}</includeonly><noinclude>OWASP Training</noinclude><br />
| Course_designation = [[File:Logo RFC.JPG|70px]]<br />
| Course_Overview_Goal <br />
=&nbsp;<br />
* '''(The 'overview' below is to be changed)''' <br />
<br />
*Apart from OWASP's Top 10, most [[:Category:OWASP_Project|OWASP Projects]] are not widely used and understood. In most cases this is not due to lack of quality and usefulness of those Document & Tool projects, but due to a lack of understanding of where they fit in an Enterprise's security ecosystem or in the Web Application Development Life-cycle.<br />
<br />
*This course aims to change that by providing a selection of mature and enterprise ready projects together with practical examples of how to use them.<br />
<br />
*If you are interested in participating in the hands on portion of the course, please bring a laptop.<br />
<br />
*All OWASP Training Material can be downloaded from [http://code.google.com/p/owasp-training/downloads/list here].<br />
&nbsp;<br />
| Date = October 19th, 2010<br />
| Venue = <br />
[http://maps.google.co.uk/maps?f=q&source=s_q&hl=en&geocode=&q=Rutgers+University,+Newark,+New+Jersey,+United+States&sll=53.800651,-4.064941&sspn=12.188179,38.71582&ie=UTF8&hq=Rutgers,+The+State+University+of+New+Jersey+%28Newark+Campus%29&hnear=Rutgers,+The+State+University+of+New+Jersey+%28Newark+Campus%29,+Newark,+Essex,+New+Jersey+07102,+United+States&ll=40.749858,-74.172478&spn=0.02887,0.075617&t=h&z=14&cid=14254433041471483918&iwloc=A Rutgers University]. '''(link to be confirmed)'''<br />
| Price = Free<br />
| Course_Registration_url = '''Link to be added<br />
'''<br />
| Course_Registration_name = Course Registration<br />
| Modules = <br />
<br />
{{Template:Training_Module_Row_View<br />
| Time = 09h00 (60m)<br />
| Module_Name = Guided tour of OWASP Projects<br />
| Module_Link = http://www.owasp.org/index.php/Category:OWASP_Project<br />
| Trainer = [[user:name|TBD]] <br />
| Presentation_Name = Tour of OWASP’s projects<br />
| Presentation_Link = http://www.owasp.org/index.php/File:OWASP_India_-_Tour_of_OWASP_projects.ppt <br />
}}<br />
<br />
{{Template:Training_Module_Row_View<br />
| Time = 10h00 (60m)<br />
| Module_Name = OWASP Top 10 <br />
| Module_Link = http://www.owasp.org/index.php/Category:OWASP_Top_Ten_Project<br />
| Trainer = Blake<br />
| Presentation_Name = OWASP Top 10<br />
| Presentation_Link = http://www.owasp.org/images/c/cb/OWASP_Top_10_-_2010_rc1.pdf <br />
}}<br />
<br />
{{Template:Training Module Row Break<br />
| Time = 11h00 (15m)<br />
| Break_Reason = Coffee Break<br />
}}<br />
<br />
{{Template:Training_Module_Row_View<br />
| Time = 11h15 (60m)<br />
| Module_Name = Live Exploitation of "Dirty" Web Site Q&A <br />
| Module_Link = <br />
| Trainer = Vlad <br />
| Presentation_Name = <br />
| Presentation_Link = <br />
}}<br />
<br />
{{Template:Training Module Row Break<br />
| Time = 12h15 (60m)<br />
| Break_Reason = Lunch<br />
}}<br />
<br />
{{Template:Training_Module_Row_View<br />
| Time = 13h15 (60m)<br />
| Module_Name = Software Assurance Maturity Model <br />
| Module_Link = <br />
| Trainer = [[user:name|TBD]] <br />
| Presentation_Name = <br />
| Presentation_Link = <br />
}}<br />
<br />
<br />
}}<br />
<br />
__NOTOC__<br />
<headertabs/></div>Cybermalandrohttps://wiki.owasp.org/index.php?title=NYNJMetro/Training&diff=87435NYNJMetro/Training2010-08-09T01:23:28Z<p>Cybermalandro: </p>
<hr />
<div>This training event is provided by the [[NYNJMetro | OWASP NYNJMetro Chapter]]<br />
<br />
==== Training - October 19th, 2010 ====<br />
{{Template:<includeonly>{{{1}}}</includeonly><noinclude>OWASP Training</noinclude><br />
| Course_designation = [[File:Logo RFC.JPG|70px]]<br />
| Course_Overview_Goal <br />
=&nbsp;<br />
* '''(The 'overview' below is to be changed)''' <br />
<br />
*Apart from OWASP's Top 10, most [[:Category:OWASP_Project|OWASP Projects]] are not widely used and understood. In most cases this is not due to lack of quality and usefulness of those Document & Tool projects, but due to a lack of understanding of where they fit in an Enterprise's security ecosystem or in the Web Application Development Life-cycle.<br />
<br />
*This course aims to change that by providing a selection of mature and enterprise ready projects together with practical examples of how to use them.<br />
<br />
*If you are interested in participating in the hands on portion of the course, please bring a laptop.<br />
<br />
*All OWASP Training Material can be downloaded from [http://code.google.com/p/owasp-training/downloads/list here].<br />
&nbsp;<br />
| Date = October 19th, 2010<br />
| Venue = <br />
[http://maps.google.co.uk/maps?f=q&source=s_q&hl=en&geocode=&q=Rutgers+University,+Newark,+New+Jersey,+United+States&sll=53.800651,-4.064941&sspn=12.188179,38.71582&ie=UTF8&hq=Rutgers,+The+State+University+of+New+Jersey+%28Newark+Campus%29&hnear=Rutgers,+The+State+University+of+New+Jersey+%28Newark+Campus%29,+Newark,+Essex,+New+Jersey+07102,+United+States&ll=40.749858,-74.172478&spn=0.02887,0.075617&t=h&z=14&cid=14254433041471483918&iwloc=A Rutgers University]. '''(link to be confirmed)'''<br />
| Price = Free<br />
| Course_Registration_url = '''Link to be added<br />
'''<br />
| Course_Registration_name = Course Registration<br />
| Modules = <br />
<br />
{{Template:Training_Module_Row_View<br />
| Time = 09h00 (60m)<br />
| Module_Name = Guided tour of OWASP Projects<br />
| Module_Link = http://www.owasp.org/index.php/Category:OWASP_Project<br />
| Trainer = [[user:name|TBD]] <br />
| Presentation_Name = Tour of OWASP’s projects<br />
| Presentation_Link = http://www.owasp.org/index.php/File:OWASP_India_-_Tour_of_OWASP_projects.ppt <br />
}}<br />
<br />
{{Template:Training_Module_Row_View<br />
| Time = 10h00 (60m)<br />
| Module_Name = OWASP Top 10 <br />
| Module_Link = http://www.owasp.org/index.php/Category:OWASP_Top_Ten_Project<br />
| Trainer = [[user:name|TBD]]<br />
| Presentation_Name = OWASP Top 10<br />
| Presentation_Link = http://www.owasp.org/images/c/cb/OWASP_Top_10_-_2010_rc1.pdf <br />
}}<br />
<br />
{{Template:Training Module Row Break<br />
| Time = 11h00 (15m)<br />
| Break_Reason = Coffee Break<br />
}}<br />
<br />
{{Template:Training_Module_Row_View<br />
| Time = 11h15 (60m)<br />
| Module_Name = Live Exploitation of "Dirty" Web Site Q&A <br />
| Module_Link = <br />
| Trainer = [[user:name|TBD]] <br />
| Presentation_Name = <br />
| Presentation_Link = <br />
}}<br />
<br />
{{Template:Training Module Row Break<br />
| Time = 12h15 (60m)<br />
| Break_Reason = Lunch<br />
}}<br />
<br />
{{Template:Training_Module_Row_View<br />
| Time = 13h15 (60m)<br />
| Module_Name = Software Assurance Maturity Model <br />
| Module_Link = <br />
| Trainer = [[user:name|TBD]] <br />
| Presentation_Name = <br />
| Presentation_Link = <br />
}}<br />
<br />
<br />
}}<br />
<br />
__NOTOC__<br />
<headertabs/></div>Cybermalandrohttps://wiki.owasp.org/index.php?title=GEC_College_Chapters&diff=85173GEC College Chapters2010-06-21T20:32:58Z<p>Cybermalandro: Created page with '== OWASP College Chapters == === Summary === The idea is to start OWASP College chapters in an effort to get college students involved in the OWASP Community. A chapter will fu…'</p>
<hr />
<div>== OWASP College Chapters ==<br />
<br />
=== Summary ===<br />
<br />
The idea is to start OWASP College chapters in an effort to get college students involved in the OWASP Community. A chapter will function similar to a regular college club, with rules and guidelines and similar governance. <br />
<br />
=== OWASP College Chapter Rules === <br />
<br />
*1. Your primary goal is to promote understanding of application security<br />
*2. You will have a President, Treasurer, and Secretary<br />
*3. You will have meetings at least monthly throughout the school year<br />
*4. You will arrange for a place to meet that is conducive to discussion, presentations, etc…<br />
*5. You will work with faculty to integrate application security into the CS curriculum<br />
*6. You will encourage members to make regular updates to the OWASP wiki, submit projects to OWASP, participate in OWASP conferences, etc…<br />
*7. You will NOT engage in any unauthorized security testing or other unethical behavior<br />
*8. President, Treasurer and Secretary are to be voted every year by registered members.<br />
*9. You will arrange at least one main event per year outside of the monthly meetings (Main events are intended to promote the chapter locally and get project leaders and other key industry leaders to participate)</div>Cybermalandrohttps://wiki.owasp.org/index.php?title=GEC_Training&diff=85172GEC Training2010-06-21T20:28:50Z<p>Cybermalandro: Created page with '== Summary == The purpose of this initiative is to set a default training structure for local chapters to use when offer OWASP training to OWASP members. == Training Topics == …'</p>
<hr />
<div>== Summary ==<br />
<br />
The purpose of this initiative is to set a default training structure for local chapters to use when offer OWASP training to OWASP members.<br />
<br />
== Training Topics ==<br />
<br />
*OWASP Tour - The purpose of this training is to provide an introduction to OWASP.<br />
*OWASP Top Ten - The purpose of this training is to deliver the latest top 10 common vulnerabilities found in web applications<br />
*OWASP Testing Guide<br />
*OWASP Software Assurance Maturity Model <br />
*OWASP Code Review Guide</div>Cybermalandrohttps://wiki.owasp.org/index.php?title=OWASP_Connections_Committee_-_Application_1&diff=76142OWASP Connections Committee - Application 12010-01-12T22:57:04Z<p>Cybermalandro: </p>
<hr />
<div>[[How to Join a Committee|Click here to return to 'How to Join a Committee' page]]<br />
<br />
----<br />
{| style="width:100%" border="0" align="center"<br />
! colspan="2" align="center" style="background:#4058A0; color:white"|<font color="white">'''COMMITTEE APPLICATION FORM''' <br />
|-<br />
| style="width:25%; background:#7B8ABD" align="center"|'''Applicant's Name'''<br />
| colspan="1" style="width:85%; background:#cccccc" align="left"|<font color="black">Lorna Alamri<br />
|-<br />
| style="width:25%; background:#7B8ABD" align="center"| '''Current and past OWASP Roles''' <br />
| colspan="1" style="width:85%; background:#cccccc" align="left"| OWASP MSP VP<br />
|-<br />
| style="width:25%; background:#7B8ABD" align="center"| '''Committee Applying for''' <br />
| colspan="1" style="width:85%; background:#cccccc" align="left"|OWASP Connection Committee<br />
|}<br />
----<br />
<br />
<br />
----<br />
Please be aware that for an application to be considered by the board, '''you MUST have 5 recommendations'''. <br />
An incomplete application will not be considered for vote.<br />
----<br />
<br />
<br />
----<br />
{| style="width:100%" border="0" align="center"<br />
! colspan="8" align="center" style="background:#4058A0; color:white"|<font color="white">'''COMMITTEE RECOMMENDATIONS''' <br />
|- <br />
! align="center" style="background:white; color:white"|<font color="black"><br />
! align="center" style="background:#7B8ABD; color:white"|<font color="black">'''Who Recommends/Name''' <br />
! align="center" style="background:#7B8ABD; color:white"|<font color="black">'''Role in OWASP'''<br />
! align="center" style="background:#7B8ABD; color:white"|<font color="black">'''Recommendation Content''' <br />
|-<br />
| style="width:3%; background:#cccccc" align="center"|'''1'''<br />
| style="width:20%; background:#cccccc" align="center"|Yiannis Pavlosoglou<br />
| style="width:20%; background:#cccccc" align="center"|Committee Member/Project Leader<br />
| style="width:57%; background:#cccccc" align="center"|Lorna's commitment and ability to getting info together, people moving and security geeks listening is flawless. Also, she is (by far) the best person to have next to you, while capturing any flag!<br />
|-<br />
| style="width:3%; background:#cccccc" align="center"|'''2'''<br />
| style="width:20%; background:#cccccc" align="center"|Colin Watson<br />
| style="width:20%; background:#cccccc" align="center"|Global Industry Committee<br />
| style="width:57%; background:#cccccc" align="center"|Producing the newsletter says it all. The Connections Committee should not exist without Lorna.<br />
|-<br />
| style="width:3%; background:#cccccc" align="center"|'''3'''<br />
| style="width:20%; background:#cccccc" align="center"|Kuai Hinojosa<br />
| style="width:20%; background:#cccccc" align="center"|Global Education Committee Chair<br />
| style="width:57%; background:#cccccc" align="center"|Lorna is the current VP for the MN Chapter, She was my right hand and the one who made things happen while I was chapter leader for the past two years. She is truly the BEST!!!!<br />
|-<br />
| style="width:3%; background:#cccccc" align="center"|'''4'''<br />
| style="width:20%; background:#cccccc" align="center"|<br />
| style="width:20%; background:#cccccc" align="center"|<br />
| style="width:57%; background:#cccccc" align="center"|<br />
|-<br />
| style="width:3%; background:#cccccc" align="center"|'''5'''<br />
| style="width:20%; background:#cccccc" align="center"|<br />
| style="width:20%; background:#cccccc" align="center"|<br />
| style="width:57%; background:#cccccc" align="center"|<br />
|}<br />
----</div>Cybermalandrohttps://wiki.owasp.org/index.php?title=Global_Education_Committee_-_Application_4&diff=74192Global Education Committee - Application 42009-11-26T22:34:25Z<p>Cybermalandro: </p>
<hr />
<div>[[How to Join a Committee|Click here to return to 'How to Join a Committee' page]] <br />
<br />
----<br />
<br />
{| border="0" align="center" style="width: 100%;"<br />
|-<br />
! align="center" style="background: rgb(64, 88, 160) none repeat scroll 0% 0%; -moz-background-clip: border; -moz-background-origin: padding; -moz-background-inline-policy: continuous; color: white;" colspan="2" | <font color="white">'''COMMITTEE APPLICATION FORM'''</font><br />
|-<br />
| align="center" style="background: rgb(123, 138, 189) none repeat scroll 0% 0%; width: 25%; -moz-background-clip: border; -moz-background-origin: padding; -moz-background-inline-policy: continuous;" | '''Applicant's Name''' <br />
| align="left" style="background: rgb(204, 204, 204) none repeat scroll 0% 0%; width: 85%; -moz-background-clip: border; -moz-background-origin: padding; -moz-background-inline-policy: continuous;" colspan="1" | <font color="black">Nishi Kumar</font><br />
|-<br />
| align="center" style="background: rgb(123, 138, 189) none repeat scroll 0% 0%; width: 25%; -moz-background-clip: border; -moz-background-origin: padding; -moz-background-inline-policy: continuous;" | '''Current and past OWASP Roles''' <br />
| align="left" style="background: rgb(204, 204, 204) none repeat scroll 0% 0%; width: 85%; -moz-background-clip: border; -moz-background-origin: padding; -moz-background-inline-policy: continuous;" colspan="1" | Contributor to OWASP Live CD and ESAPI.<br />
|-<br />
| align="center" style="background: rgb(123, 138, 189) none repeat scroll 0% 0%; width: 25%; -moz-background-clip: border; -moz-background-origin: padding; -moz-background-inline-policy: continuous;" | '''Committee Applying for''' <br />
| align="left" style="background: rgb(204, 204, 204) none repeat scroll 0% 0%; width: 85%; -moz-background-clip: border; -moz-background-origin: padding; -moz-background-inline-policy: continuous;" colspan="1" | OWASP Global Education Committee.<br />
|}<br />
<br />
----<br />
<br />
<br> <br />
<br />
----<br />
<br />
Please be aware that for an application to be considered by the board, '''you MUST have 5 recommendations'''. An incomplete application will not be considered for vote. <br />
<br />
----<br />
<br />
<br> <br />
<br />
----<br />
<br />
{| border="0" align="center" style="width: 100%;"<br />
|-<br />
! align="center" style="background: rgb(64, 88, 160) none repeat scroll 0% 0%; -moz-background-clip: border; -moz-background-origin: padding; -moz-background-inline-policy: continuous; color: white;" colspan="8" | <font color="white">'''COMMITTEE RECOMMENDATIONS'''</font><br />
|-<br />
! align="center" style="background: white none repeat scroll 0% 0%; -moz-background-clip: border; -moz-background-origin: padding; -moz-background-inline-policy: continuous; color: white;" | <font color="black"></font><br />
! align="center" style="background: rgb(123, 138, 189) none repeat scroll 0% 0%; -moz-background-clip: border; -moz-background-origin: padding; -moz-background-inline-policy: continuous; color: white;" | <font color="black">'''Who Recommends/Name'''</font><br />
! align="center" style="background: rgb(123, 138, 189) none repeat scroll 0% 0%; -moz-background-clip: border; -moz-background-origin: padding; -moz-background-inline-policy: continuous; color: white;" | <font color="black">'''Role in OWASP'''</font><br />
! align="center" style="background: rgb(123, 138, 189) none repeat scroll 0% 0%; -moz-background-clip: border; -moz-background-origin: padding; -moz-background-inline-policy: continuous; color: white;" | <font color="black">'''Recommendation Content'''</font><br />
|-<br />
| align="center" style="background: rgb(204, 204, 204) none repeat scroll 0% 0%; width: 3%; -moz-background-clip: border; -moz-background-origin: padding; -moz-background-inline-policy: continuous;" | '''1''' <br />
| align="center" style="background: rgb(204, 204, 204) none repeat scroll 0% 0%; width: 20%; -moz-background-clip: border; -moz-background-origin: padding; -moz-background-inline-policy: continuous;" | Alexander Fry <br />
| align="center" style="background: rgb(204, 204, 204) none repeat scroll 0% 0%; width: 20%; -moz-background-clip: border; -moz-background-origin: padding; -moz-background-inline-policy: continuous;" | Reviewer of OWASP projects in SoC 2008 <br />
| align="center" style="background: rgb(204, 204, 204) none repeat scroll 0% 0%; width: 57%; -moz-background-clip: border; -moz-background-origin: padding; -moz-background-inline-policy: continuous;" | Nishi has valuable experience in creating application security computer based training courses. She will be a valuable contributor to the education committee.<br />
|-<br />
| align="center" style="background: rgb(204, 204, 204) none repeat scroll 0% 0%; width: 3%; -moz-background-clip: border; -moz-background-origin: padding; -moz-background-inline-policy: continuous;" | '''2''' <br />
| align="center" style="background: rgb(204, 204, 204) none repeat scroll 0% 0%; width: 20%; -moz-background-clip: border; -moz-background-origin: padding; -moz-background-inline-policy: continuous;" | Brad Causey<br />
| align="center" style="background: rgb(204, 204, 204) none repeat scroll 0% 0%; width: 20%; -moz-background-clip: border; -moz-background-origin: padding; -moz-background-inline-policy: continuous;" | GPC Member<br />
| align="center" style="background: rgb(204, 204, 204) none repeat scroll 0% 0%; width: 57%; -moz-background-clip: border; -moz-background-origin: padding; -moz-background-inline-policy: continuous;" | Nishi has proven to add much value in her participation in the OWASP Summit over the last few years. She is a great asset to OWASP as an organization and will be as well on the GEC.<br />
|-<br />
| align="center" style="background: rgb(204, 204, 204) none repeat scroll 0% 0%; width: 3%; -moz-background-clip: border; -moz-background-origin: padding; -moz-background-inline-policy: continuous;" | '''3''' <br />
| align="center" style="background: rgb(204, 204, 204) none repeat scroll 0% 0%; width: 20%; -moz-background-clip: border; -moz-background-origin: padding; -moz-background-inline-policy: continuous;" | Arturo Busleiman aka Buanzo<br />
| align="center" style="background: rgb(204, 204, 204) none repeat scroll 0% 0%; width: 20%; -moz-background-clip: border; -moz-background-origin: padding; -moz-background-inline-policy: continuous;" | Project Leader (Enigform), Paid Member<br />
| align="center" style="background: rgb(204, 204, 204) none repeat scroll 0% 0%; width: 57%; -moz-background-clip: border; -moz-background-origin: padding; -moz-background-inline-policy: continuous;" | I met Nishi in Portugal during EU Summit 2008. We talked a lot and I think it just makes sense for her to take part of the GEC. I recommend her.<br />
|-<br />
| align="center" style="background: rgb(204, 204, 204) none repeat scroll 0% 0%; width: 3%; -moz-background-clip: border; -moz-background-origin: padding; -moz-background-inline-policy: continuous;" | '''4''' <br />
| align="center" style="background: rgb(204, 204, 204) none repeat scroll 0% 0%; width: 20%; -moz-background-clip: border; -moz-background-origin: padding; -moz-background-inline-policy: continuous;" | Kuai Hinojosa <br />
| align="center" style="background: rgb(204, 204, 204) none repeat scroll 0% 0%; width: 20%; -moz-background-clip: border; -moz-background-origin: padding; -moz-background-inline-policy: continuous;" | OWASP GEC Chair, Chapter Leader Minneapolis - St Paul, Board member of the NYC/NJ Metro Chapter<br />
| align="center" style="background: rgb(204, 204, 204) none repeat scroll 0% 0%; width: 57%; -moz-background-clip: border; -moz-background-origin: padding; -moz-background-inline-policy: continuous;" | Nishi has a lot of energy and value to add to the committee, after the OWASP Summit she started to contribute to the OWASP ESAPI project sharing tests results and providing input. Nishi has my vote.<br />
|-<br />
| align="center" style="background: rgb(204, 204, 204) none repeat scroll 0% 0%; width: 3%; -moz-background-clip: border; -moz-background-origin: padding; -moz-background-inline-policy: continuous;" | '''5''' <br />
| align="center" style="background: rgb(204, 204, 204) none repeat scroll 0% 0%; width: 20%; -moz-background-clip: border; -moz-background-origin: padding; -moz-background-inline-policy: continuous;" | <br />
| align="center" style="background: rgb(204, 204, 204) none repeat scroll 0% 0%; width: 20%; -moz-background-clip: border; -moz-background-origin: padding; -moz-background-inline-policy: continuous;" | <br />
| align="center" style="background: rgb(204, 204, 204) none repeat scroll 0% 0%; width: 57%; -moz-background-clip: border; -moz-background-origin: padding; -moz-background-inline-policy: continuous;" | <br />
|}<br />
<br />
----</div>Cybermalandrohttps://wiki.owasp.org/index.php?title=Global_Education_Committee_-_Application_2&diff=74191Global Education Committee - Application 22009-11-26T22:28:01Z<p>Cybermalandro: </p>
<hr />
<div>[[How to Join a Committee|Click here to return to 'How to Join a Committee' page]]<br />
<br />
----<br />
{| style="width:100%" border="0" align="center"<br />
! colspan="2" align="center" style="background:#4058A0; color:white"|<font color="white">'''COMMITTEE APPLICATION FORM''' <br />
|-<br />
| style="width:25%; background:#7B8ABD" align="center"|'''Applicant's Name'''<br />
| colspan="1" style="width:85%; background:#cccccc" align="left"|<font color="black">Carlos Serrão<br />
|-<br />
| style="width:25%; background:#7B8ABD" align="center"| '''Current and past OWASP Roles''' <br />
| colspan="1" style="width:85%; background:#cccccc" align="left"|OWASP Portuguese Chapter Leader.<br />
|-<br />
| style="width:25%; background:#7B8ABD" align="center"| '''Committee Applying for''' <br />
| colspan="1" style="width:85%; background:#cccccc" align="left"|OWASP Global Education Committee.<br />
|}<br />
----<br />
<br />
<br />
----<br />
Please be aware that for an application to be considered by the board, '''you MUST have 5 recommendations'''. <br />
An incomplete application will not be considered for vote.<br />
----<br />
<br />
<br />
----<br />
{| style="width:100%" border="0" align="center"<br />
! colspan="8" align="center" style="background:#4058A0; color:white"|<font color="white">'''COMMITTEE RECOMMENDATIONS''' <br />
|- <br />
! align="center" style="background:white; color:white"|<font color="black"><br />
! align="center" style="background:#7B8ABD; color:white"|<font color="black">'''Who Recommends/Name''' <br />
! align="center" style="background:#7B8ABD; color:white"|<font color="black">'''Role in OWASP'''<br />
! align="center" style="background:#7B8ABD; color:white"|<font color="black">'''Recommendation Content''' <br />
|-<br />
| style="width:3%; background:#cccccc" align="center"|'''1'''<br />
| style="width:20%; background:#cccccc" align="center"|Kuai Hinojosa <br />
| style="width:20%; background:#cccccc" align="center"|Minneapolis - St Paul Chapter President 2008-2010, GEC Chair, Board member of the NYC/NJ Chapter<br />
| style="width:57%; background:#cccccc" align="center"|I met Carlos at the Summit in Portugal, Carlos was enthusiastic and started helping the group shooting video of presentations and giving everyone a hand, he supports the OWASP mission and has done a good job organizing the conference in Madrid.<br />
|-<br />
| style="width:3%; background:#cccccc" align="center"|'''2'''<br />
| style="width:20%; background:#cccccc" align="center"|<br />
| style="width:20%; background:#cccccc" align="center"|<br />
| style="width:57%; background:#cccccc" align="center"|<br />
|-<br />
| style="width:3%; background:#cccccc" align="center"|'''3'''<br />
| style="width:20%; background:#cccccc" align="center"|<br />
| style="width:20%; background:#cccccc" align="center"|<br />
| style="width:57%; background:#cccccc" align="center"|<br />
|-<br />
| style="width:3%; background:#cccccc" align="center"|'''4'''<br />
| style="width:20%; background:#cccccc" align="center"|<br />
| style="width:20%; background:#cccccc" align="center"|<br />
| style="width:57%; background:#cccccc" align="center"|<br />
|-<br />
| style="width:3%; background:#cccccc" align="center"|'''5'''<br />
| style="width:20%; background:#cccccc" align="center"|<br />
| style="width:20%; background:#cccccc" align="center"|<br />
| style="width:57%; background:#cccccc" align="center"|<br />
|}<br />
----</div>Cybermalandrohttps://wiki.owasp.org/index.php?title=Global_Conferences_Committee_-_Application_2&diff=73586Global Conferences Committee - Application 22009-11-17T17:37:56Z<p>Cybermalandro: </p>
<hr />
<div>[[How to Join a Committee|Click here to return to 'How to Join a Committee' page]]<br />
<br />
----<br />
{| style="width:100%" border="0" align="center"<br />
! colspan="2" align="center" style="background:#4058A0; color:white"|<font color="white">'''COMMITTEE APPLICATION FORM''' <br />
|-<br />
| style="width:25%; background:#7B8ABD" align="center"|'''Applicant's Name'''<br />
| colspan="1" style="width:85%; background:#cccccc" align="left"|<font color="black">Lucas C. Ferreira.<br />
|-<br />
| style="width:25%; background:#7B8ABD" align="center"| '''Current and past OWASP Roles''' <br />
| colspan="1" style="width:85%; background:#cccccc" align="left"|OWASP Brazilian Chapter member, AppSec Brasil 2009 Chair.<br />
|-<br />
| style="width:25%; background:#7B8ABD" align="center"| '''Committee Applying for''' <br />
| colspan="1" style="width:85%; background:#cccccc" align="left"|OWASP Global Conferences Committee.<br />
|}<br />
----<br />
<br />
<br />
----<br />
Please be aware that for an application to be considered by the board, '''you MUST have 5 recommendations'''. <br />
An incomplete application will not be considered for vote.<br />
----<br />
<br />
<br />
----<br />
{| style="width:100%" border="0" align="center"<br />
! colspan="8" align="center" style="background:#4058A0; color:white"|<font color="white">'''COMMITTEE RECOMMENDATIONS''' <br />
|- <br />
! align="center" style="background:white; color:white"|<font color="black"><br />
! align="center" style="background:#7B8ABD; color:white"|<font color="black">'''Who Recommends/Name''' <br />
! align="center" style="background:#7B8ABD; color:white"|<font color="black">'''Role in OWASP'''<br />
! align="center" style="background:#7B8ABD; color:white"|<font color="black">'''Recommendation Content''' <br />
|-<br />
| style="width:3%; background:#cccccc" align="center"|'''1'''<br />
| style="width:20%; background:#cccccc" align="center"| Eduardo Vianna de Camargo Neves<br />
| style="width:20%; background:#cccccc" align="center"| GEC Member<br />
| style="width:57%; background:#cccccc" align="center"| An outstanding OWASP Member that allocated heart and soul to make the OWASP AppSec Brasil 2009 happens and is already doing the same for the 2010 Edition. Moreover, Lucas is a high evangelist of OWASP resources within the Brazilian IT Community with a strong presence on the Government Sector and Academia.<br />
|-<br />
| style="width:3%; background:#cccccc" align="center"|'''2'''<br />
| style="width:20%; background:#cccccc" align="center"| Pravir Chandra<br />
| style="width:20%; background:#cccccc" align="center"| GPC Member<br />
| style="width:57%; background:#cccccc" align="center"| Lucas is highly motivated and actually executes on his commitments very well. He did a great job in organizing AppSec Brasil 2009 and would be a great asset for the Global Conferences Committee.<br />
|-<br />
| style="width:3%; background:#cccccc" align="center"|'''3'''<br />
| style="width:20%; background:#cccccc" align="center"| Matt Tesauro<br />
| style="width:20%; background:#cccccc" align="center"| GPC Member<br />
| style="width:57%; background:#cccccc" align="center"| Lucas has already demonstrated that he's qualified for this position based on the success of AppSec Brasil 2009. He went from zero to conference is a pretty short window. Not only did he pull off a successful conference, he did so under fire - he lost several speakers due to the flu, I had a crazy mishap with my flights and barely made the first day of the class I was teaching. Under all this, he kept his cool and keep the conference on track. I suspect that the only reason I know about these issues is I was both an instructor and speaker. For those just attending the conference, they would have only seen a smoothly running gig.<br />
|-<br />
| style="width:3%; background:#cccccc" align="center"|'''4'''<br />
| style="width:20%; background:#cccccc" align="center"| Wagner Elias<br />
| style="width:20%; background:#cccccc" align="center"| Brazil Chapter Leader<br />
| style="width:57%; background:#cccccc" align="center"| Lucas is the member who contributes most to the growth of the Brazil chapter, this is due to the excellent organization has done in the first AppSec Brazil. No doubt he is a great name for a Committee.<br />
|-<br />
| style="width:3%; background:#cccccc" align="center"|'''5'''<br />
| style="width:20%; background:#cccccc" align="center"|Kuai Hinojosa<br />
| style="width:20%; background:#cccccc" align="center"|MSP Chapter Leader and GEC member<br />
| style="width:57%; background:#cccccc" align="center"|Lucas did a great job with the Brazil conference, even though there were problems with travel arrangements he was actively communicating back to me and keeping all presenters updated. I also met Lucas in Portugal's Summit and his active<br />
participation and leadership would add value to the Global Conference Committee just what we need to stir more OWASP in Brasil!!!!<br />
|}<br />
----</div>Cybermalandrohttps://wiki.owasp.org/index.php?title=Kuai_Hinojosa&diff=72628Kuai Hinojosa2009-11-03T15:48:53Z<p>Cybermalandro: </p>
<hr />
<div>Kuai<br />
<br />
<br />
== '''Please Note I don't keep my linkedin profile updated''' ==<br />
<br />
<br />
<br />
To see my edits to the OWASP Wiki<br />
[[:Special:Contributions/Webappsecguy|click here]] To view LinkedIn<br />
profile [http://www.linkedin.com/pub/kuai-hinojosa/15/498/680 Click<br />
Here]<br />
<br />
<br />
<br />
== Who am I? ==<br />
<br />
I am the President for the [http://www.owasp.org/index.php/Minneapolis_St_Paul Minneapolis - St Paul OWASP Chapter in Minnesota]. I have lead this chapter for two years (2008 - 2010). Meanwhile, I have become a faithful OWASP missionary. I am now a board member for<br />
NYC/NJ Chapter where I lead local OWASP Education efforts and I am<br />
also a member of the OWASP Global Education Committee where I lead<br />
similar efforts at a Global level.<br />
<br />
== What have I accomplished for OWASP? ==<br />
<br />
As an OWASP Leader, I have accomplished the following:<br />
<br />
Increased OWASP Minneapolis - St Paul chapter attendance significantly <br />
Increased local chapter’s membership<br />
Obtained the financial and volunteer support of local and nation wide companies, organizations and Universities<br />
Increased OWASP exposure academically and internationally by speaking or participating at targeted events<br />
Introduced to our community well known influential leaders such as Bruce Schneier and Richard Stallman to mention a few<br />
Increased OWASP corporate sponsorship<br />
Organized several conferences and special events<br />
<br />
<br />
== Why you should vote for me? ==<br />
<br />
OWASP is a community full of talented technical volunteers who make<br />
this community strong, this community needs strong leader with social<br />
intelligence who can spread the OWASP mission, continue to raise<br />
support and build relationships that will make our community stronger<br />
and serve as an example of web application security done right!<br />
<br />
As board member I will focus on education efforts and continue to get active support of well known and respected universities, make our training materials solid and leverage the great work of all of the global committees such as the Global Education and Project Committees. It is time we as a community start influencing not only the day to day developer but most importantly new developers coming out of college.<br />
<br />
== How did accomplished these goals? ==<br />
<br />
I have a As a Chapter President of a local non profit organization, one is<br />
faced with a lot of challenges. One of those challenges is attendance.<br />
In order to lead a successful chapter a chapter's president has to<br />
increase the attendance significantly which then leads to people's<br />
interest in OWASP and its mission and then leads to people's support<br />
in the chapter. Attendance can be increased with good speakers which<br />
are hard to find. This is why it is important for a leader to network<br />
in the community and get involved. Another challenge is help, for<br />
those chapter leaders out there reading this you know what I am<br />
talking about. It is a lot of hard work to organize meetings,<br />
conferences, getting good speakers, worry about the location, food and<br />
beverages, spreading the word to local communities of potential<br />
interest, network with other developers/information security groups<br />
and get their support just to mention a few essential tasks. With the<br />
help of volunteers, volunteers who are willing to give their precious<br />
time and who have some skill set than can bring value to the team.<br />
Therefore, as a leader one has to be able to identify self-motivated<br />
individuals and find ways to keep them motivated, incite them to<br />
participate and guide them through, be able to help them develop their<br />
leadership skills. After all without a good team, meeting those<br />
challenges could be extremely difficult if not impossible.<br />
<br />
The next challenge is sponsorship, yes sponsorship = money. I always<br />
thought that being an open source community and non profit that<br />
raising money did not matter, how naive right? After all things cost<br />
money right? food and beverages, location, travel arrangements for<br />
speakers outside of the local community, and name tags just a name a<br />
few. So, yes money does matter with that said a successful chapter<br />
leader has to do its best by doing more with less and continue to<br />
shoot high and get as much sponsorship as possible. In the end of the<br />
day, sponsorship provides the ability to continue to offer good<br />
quality events which generate more support.<br />
<br />
So, as a chapter president I first focused on increasing attendance<br />
and I was able to do so by getting well known speakers in the industry<br />
to talk at our local meetings. Thanks to the participation of well<br />
known names in the industry such as Bruce Schneier, Jeff Williams,<br />
Jeremiah Grosman, Rsnake, Richard Stallman, Ryan C Barnett to name a<br />
few I was able to increase attendance from an average of 5 to 10<br />
attendees to an average of 30 to 50 attendees and more than 50<br />
attendees in some monthly meetings. In special some special events we<br />
have hosted about 300 attendees, and our mailing list has skyrocket.<br />
Our high attendance helped raise funds significantly from our members<br />
and corporate sponsorship. Again thanks to the help of our chapter's<br />
board and my networking skills.<br />
<br />
As Global Education Committee member and local board member of the<br />
NYC/NJ Metro chapter I continue to gain the support of well known<br />
universities and I have helped organized a few successful OWASP AppSec<br />
- Academia events. I continue to spread the OWASP gospel at University<br />
related events and raise support.</div>Cybermalandrohttps://wiki.owasp.org/index.php?title=Educational_Academic_Services&diff=72425Educational Academic Services2009-10-29T20:19:19Z<p>Cybermalandro: </p>
<hr />
<div>__NOTOC__<br />
<br />
Return to [[Global Education Committee]]<br />
<br />
{| style="width:100%" border="0" align="center"<br />
! colspan="4" align="center" style="background:#4058A0; color:white"|<font color="white">'''ACTIVITY IDENTIFICATION''' <br />
|-<br />
| style="width:15%; background:#7B8ABD" align="center"|'''Activity Name'''<br />
| colspan="3" style="width:75%; background:#cccccc" align="left"|<font color="black">Educational Academic Services.''' <br />
|-<br />
| style="width:25%; background:#7B8ABD" align="center"| '''Short Description''' <br />
| colspan="3" style="width:75%; background:#cccccc" align="left"|Reach out to Academic Institutions worldwide<br />
|-<br />
| style="width:25%; background:#7B8ABD" align="center"| '''Related Projects ''' <br />
| colspan="3" style="width:75%; background:#cccccc" align="left"|Education Project<br />
|-<br />
| style="width:25%; background:#7B8ABD" align="center"|'''Email Contacts & Roles'''<br />
| style="width:25%; background:#cccccc" align="center"|'''Primary'''<br>[mailto:kuai.hinojosa(at)owasp.org '''Kuai Hinojosa'''] <br />
| style="width:25%; background:#cccccc" align="center"|'''Secondary'''<br>[mailto:andrzej.targosz(at)proidea.org.pl '''Andrzej Targosz'''] <br />
| style="width:25%; background:#cccccc" align="center"|'''Mailing list'''<br>edu_academic_services<br />
|}<br />
<br />
{| style="width:100%" border="0" align="center"<br />
! colspan="4" align="center" style="background:#4058A0; color:white"|<font color="white">'''ACTIVITY SPECIFICS''' <br />
<br />
|-<br />
| style="width:25%; background:#7B8ABD" align="center"|'''Objectives'''<br />
| colspan="3" style="width:75%; background:#cccccc" align="left"|<br />
1) Encourage academic institutions to provide meeting space at least 2x per year and include OWASP in the education awareness & curriculum to students<br> <br />
2) Encourage students to apply for OWASP Grants and provide a support structure<br> <br />
3) Encourage faculty, staff and students to participate in local and international events/meetings and contribute to OWASP projects <br />
<br />
'''Current Status'''<br><br />
Incorporating OWASP into the following top 5 Universities, within the next 12 months by introducing OWASP training and education resources at University's events.<br><br />
1) New York University<br><br />
2) Cornell University<br><br />
3) Princeton University<br><br />
4) University of Minnesota<br> <br />
5) Columbia University<br><br />
<br />
<br><br />
Organize OWASP EU Roadshow by Polish Universities to promote conference and OWASP. We are gonna to set it up on April 2009.<br><br />
<br />
<br><br />
* ''''TODO'''<br />
|-<br />
| style="width:25%; background:#7B8ABD" align="center"| '''Deadlines''' <br />
| colspan="3" style="width:75%; background:#cccccc" align="left"|<br />
01/30/2010<br />
|-<br />
| style="width:25%; background:#7B8ABD" align="center"| '''Status''' <br />
| colspan="3" style="width:75%; background:#cccccc" align="left"|<br />
Engaged 3 Universities at this time<br />
* So far I have been able to attract NYU-Poly, NKU, UCI and DSU. I am still working on my targeted Universities.<br />
<br><br />
We need to engage some Unversities from EU.<br><br />
|-<br />
| style="width:25%; background:#7B8ABD" align="center"| '''Resources''' <br />
| colspan="3" style="width:75%; background:#cccccc" align="left"|<br />
*Education Project<br><br />
*Training materials<br><br />
About to pilot OWASP U series of podcast - This will be a series of education podcasts with demos of OWASP tools and interviews of influential members of Universities, similar to itunes U.<br />
<br />
<br />
|-<br />
|}</div>Cybermalandrohttps://wiki.owasp.org/index.php?title=Minneapolis_St_Paul&diff=67634Minneapolis St Paul2009-08-16T23:02:44Z<p>Cybermalandro: /* Meetings and More */</p>
<hr />
<div>__NOTOC__<br />
{{Chapter Template|chaptername=Minneapolis-St. Paul (OWASP MSP)|extra=The chapter leader is [mailto:kuai.hinojosa(at)owasp.org Kuai Hinojosa].<br><br>The OWASP Minneapolis-St. Paul (OWASP MSP) chapter is pleased to announce '''[[OWASP Minneapolis St Paul 2009_Conference | an afternoon of information security presentations on August 24, 2009]]''' at the [http://www1.umn.edu/twincities/maps/StCen/StCen-map.html St. Paul Student Center] [http://www.spsc.umn.edu/about/directory/lower.php Auditorium/Theater] on the [http://www1.umn.edu/twincities/index.php University of Minnesota - Twin Cities] campus.<br><br>'''[[OWASP Minneapolis St Paul 2009_Conference | Go the the event page to learn more and register today!]]'''<br><br>|mailinglistsite=https://lists.owasp.org/mailman/listinfo/owasp-twincities|emailarchives=https://lists.owasp.org/pipermail/owasp-twincities}}<br />
<br />
<br />
== Sponsorship/Membership ==<br />
<paypal>Minneapolis St Paul</paypal><br />
<br />
Or consider the value of [http://www.owasp.org/index.php/Membership Individual, Organization, or Accredited University Supporter membership].<br />
<br />
<br />
== Platinum Sponsors ==<br />
<br />
[[Image:Best_Buy_logo.jpg|link=http://www.bestbuy.com/]]&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;[[Image:Center_for_strategic_it_n_security.png|60px|link=http://www.strategicit.org/]]&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;[[Image:Integral_logo.png|90px|link=http://www.go-integral.net/]]<br />
<br />
<br />
The OWASP MSP chapter is very thankful for<br />
<br />
* generous financial support from [[Membership#Categories_of_Membership_.26_Supporters|Organization Supporter]] and Local Chapter Supporter '''[http://www.bestbuy.com/ Best Buy]'''.<br />
* reliable monthly meeting locations from Local Chapter Supporter '''[http://www.strategicit.org Center for Strategic Information Technology and Security (MnSCU)]'''.<br />
* sustained booth sponsorship, monthly meeting sponsorship, and more from Local Chapter Supporter '''[http://www.go-integral.net/ Integral]'''.<br />
<br />
<br />
== OWASP Minneapolis-St. Paul 2009 Half Day Conference - August 24, 2009 ==<br />
<br />
The OWASP Minneapolis-St. Paul (OWASP MSP) chapter is pleased to announce '''[[OWASP Minneapolis St Paul 2009_Conference | an afternoon of information security presentations on August 24, 2009]]''' at the [http://www1.umn.edu/twincities/maps/StCen/StCen-map.html St. Paul Student Center] [http://www.spsc.umn.edu/about/directory/lower.php Auditorium/Theater] on the [http://www1.umn.edu/twincities/index.php University of Minnesota - Twin Cities] campus.<br />
<br />
'''[[OWASP Minneapolis St Paul 2009_Conference | Go the the event page to learn more and register today!]]'''<br />
<br />
<br />
== Meetings and More ==<br />
<br />
==== Upcoming Meetings and Events ====<br />
<br />
=== OWASP Minneapolis-St. Paul 2009 Half Day Conference - August 24, 2009 ===<br />
<br />
'''The OWASP Minneapolis-St.Paul 2009 half day conference is scheduled for August 24, 2009. See above for more details.'''<br />
<br />
=== Stay Updated ===<br />
<br />
'''[https://lists.owasp.org/mailman/listinfo/owasp-twincities Click here to join the local chapter mailing list]'''<br />
<br />
'''Follow''' OWASP MSP on your favorite social media sites:<br />
<br />
[[Image:Linkedin_mini.png|link=http://www.linkedin.com/groupInvitation?groupID=2184116]] <br />
[[Image:Twitter_mini.png|link=http://twitter.com/owaspmsp]] [[Image:Facebook_mini.png|link=http://www.facebook.com/pages/OWASP-Minneapolis-St-Paul-OWASP-MSP-OWASPMSP/113583361381]] [[Image:Digg_mini.png|link=http://digg.com/users/owaspmsp]] [[Image:Delicious_mini.png|link=http://delicious.com/owaspmsp]] [[Image:Reddit_mini.png|link=http://www.reddit.com/user/owaspmsp]] [[Image:Myspace_mini.png|link=http://www.myspace.com/owaspmsp]]<br />
<br />
<br />
'''Share''' OWASP MSP on your favorite social media sites:<br />
<br />
[[Image:Linkedin_mini.png|link=http://www.linkedin.com/shareArticle?mini=true&url=http%3A%2F%2Fwww.owasp.org%2Findex.php%2FMinneapolis_St_Paul&title=OWASP%20Minneapolis-St.%20Paul%20(OWASP%20MSP)%20Home%20Page&summary=Official%20OWASP%20Minneapolis-St.%20Paul%20(OWASP%20MSP)%20home%20page.%20Video%2C%20audio%2C%20slides%2C%20and%20other%20information%20on%20previous%20and%20upcoming%20chapter%20meetings%2C%20events%2C%20and%20conferences.&source=OWASPMSP]] <br />
[[Image:Twitter_mini.png|link=http://twitter.com/home?status=Checking%20out%20OWASP%20MSP%20at%20http%3A%2F%2Fwww.owasp.org%2Findex.php%2FMinneapolis_St_Paul.]] [[Image:Facebook_mini.png|link=http://www.facebook.com/sharer.php?u=http%3A%2F%2Fwww.owasp.org%2Findex.php%2FMinneapolis_St_Paul&t=OWASP%20Minneapolis-St.%20Paul%20(OWASP%20MSP)%20Home%20Page]] [[Image:Digg_mini.png|link=http://digg.com/submit?phase=2&url=http%3A%2F%2Fwww.owasp.org%2Findex.php%2FMinneapolis_St_Paul&title=OWASP%20Minneapolis-St.%20Paul%20(OWASP%20MSP)%20Home%20Page&bodytext=Official%20OWASP%20Minneapolis-St.%20Paul%20(OWASP%20MSP)%20home%20page.%20Video%2C%20audio%2C%20slides%2C%20and%20other%20information%20on%20previous%20and%20upcoming%20chapter%20meetings%2C%20events%2C%20and%20conferences.]] [[Image:Delicious_mini.png|link=http://del.icio.us/post?url=http%3A%2F%2Fwww.owasp.org%2Findex.php%2FMinneapolis_St_Paul&title=OWASP%20Minneapolis-St.%20Paul%20(OWASP%20MSP)%20Home%20Page]] [[Image:Reddit_mini.png|link=http://reddit.com/submit?url=http%3A%2F%2Fwww.owasp.org%2Findex.php%2FMinneapolis_St_Paul&title=OWASP%20Minneapolis-St.%20Paul%20(OWASP%20MSP)%20Home%20Page]] [[Image:Myspace_mini.png|link=http://www.myspace.com/Modules/PostTo/Pages/?l=1&u=http%3A%2F%2Fwww.owasp.org%2Findex.php%2FMinneapolis_St_Paul&t=OWASP%20Minneapolis-St.%20Paul%20(OWASP%20MSP)%20Home%20Page]]<br />
<br />
=== Secure360 ===<br />
[http://www.secure360.org/ Secure360] is an annual<br />
conference providing high quality educational sessions and networking<br />
opportunities while working to identify developing trends in risk<br />
management, physical security, governance, audit, information security,<br />
contingency planning and human capital.<br />
<br />
=== DC612 Meetings ===<br />
DC612 meets the 2nd Thursday of the month<br /><br />
http://www.dc612.org/<br />
<br />
==== Video/Audio/Slides/Handouts ====<br />
<br />
Videos of several past meetings are available at https://www.owasp.org/index.php/Category:OWASP_Video#Videos<br />
<br />
=== Most Recent Content ===<br />
<br />
Robert Sullivan - Open This First: A job-oriented guide to software security resources - OWASP (MSP) - 27 July 2009 (68 minutes) [http://www.comotheory.com/owasp/20090727-Robert_Sullivan-Open_This_First_-_A_job-oriented_guide_to_software_security_resources.mp3 MP3] | [[Media:20090727-Robert_Sullivan-Open_This_First_-_A_job-oriented_guide_to_software_security_resources.pdf|PDF]] | [http://www.comotheory.com/owasp/20090727-Robert_Sullivan-Open_This_First_-_A_job-oriented_guide_to_software_security_resources.mp4 MP4...please right click and save] | [http://mspsullivan.home.mchsi.com More Material]<br />
<br />
Cassio Goldschmidt - Tracking the Progress of an SDL Program: Lessons from the Gym - OWASP (MSP) - 29 June 2009 (55 minutes) [http://www.slideshare.net/webappsecguy/tracking-the-progress-of-an-sdl-program-lessons-from-the-gym-1684512 Slidecast] | [http://www.comotheory.com/owasp/20090629-Cassio_Goldschmidt-Tracking_the_Progress_of_an_SDL_Program_-_Lessons_from_the_Gym.mp3 MP3] | [[Media:20090629-Cassio_Goldschmidt-Tracking_the_Progress_of_an_SDL_Program_-_Lessons_from_the_Gym.pptx| PPTX]] | [http://www.comotheory.com/owasp/20090629-Cassio_Goldschmidt-Tracking_the_Progress_of_an_SDL_Program_-_Lessons_from_the_Gym.mp4 MP4...please right click and save]<br />
<br />
Gunnar Peterson - OWASP Top Ten Web Services - OWASP (MSP) - 27 April 2009 (1 hour, 27 minutes) [http://www.comotheory.com/owasp/20090427-Gunnar_Peterson_-_OWASP_Top_Ten_Web_Services.mp4 MP4...please right click and save] | Slides Forthcoming<br />
<br />
Dan Cornell - Vulnerability Management in an Application Security World - OWASP (MSP) - 16 March 2009 (1 hour, 52 minutes) [http://video.google.com/videoplay?docid=3200887090385342211&hl=en Google Video] | [[Media:VulnerabilityManagementInAnApplicaitonSecurityWorld_OWASPMSP_20090316.pdf|PDF]]<br />
<br />
Rick Ensenbach - Proactive Lifecycle Security Management - OWASP (MSP) - 16 February 2009 (69 minutes) [http://video.google.com/videoplay?docid=2838721966098123222&hl=en Part 1 Google Video] | [http://video.google.com/videoplay?docid=1766766374336659744&hl=en Part 2 Google Video] | [[Media:Proactive_Lifecycle_Security_Management_Presentation_for_OWASP_Mpls-Stp_Chapter_Meeting_-_2-16-09.ppt|PPT]] | [[Media:Generic_System_Security_Plan.doc|Handout: Service/System Security Plan template (DOC)]]<br />
<br />
==== Previous Events ====<br />
<br />
=== OWASP & FLOSS Application Security Mini-Conference 2008 - October 21, 2008 ===<br />
Thanks to all who joined us on October 21, 2008 for a [https://www.owasp.org/index.php/OWASP_Minneapolis_St_Paul_2008_Conference '''mini conference''' in October 2008] at University of Minnesota's Saint Paul campus. Our first conference was a great success, with around 150 people attending! We look forward to the next one.<br />
<br />
==== Chapter Leaders/Contacts ====<br />
President: [mailto:kuai.hinojosa(at)owasp.org Kuai Hinojosa]<br /><br />
Vice President: [mailto:lorna.alamri(at)owasp.org Lorna Alamri]<br /><br />
Local Projects Committee Chair: [mailto:adam.baso(at)owasp.org Adam Baso]<br />
<headertabs/><br />
<br />
[[Category:Minnesota]]</div>Cybermalandrohttps://wiki.owasp.org/index.php?title=Minneapolis_St_Paul&diff=67633Minneapolis St Paul2009-08-16T23:02:08Z<p>Cybermalandro: /* Meetings and More */</p>
<hr />
<div>__NOTOC__<br />
{{Chapter Template|chaptername=Minneapolis-St. Paul (OWASP MSP)|extra=The chapter leader is [mailto:kuai.hinojosa(at)owasp.org Kuai Hinojosa].<br><br>The OWASP Minneapolis-St. Paul (OWASP MSP) chapter is pleased to announce '''[[OWASP Minneapolis St Paul 2009_Conference | an afternoon of information security presentations on August 24, 2009]]''' at the [http://www1.umn.edu/twincities/maps/StCen/StCen-map.html St. Paul Student Center] [http://www.spsc.umn.edu/about/directory/lower.php Auditorium/Theater] on the [http://www1.umn.edu/twincities/index.php University of Minnesota - Twin Cities] campus.<br><br>'''[[OWASP Minneapolis St Paul 2009_Conference | Go the the event page to learn more and register today!]]'''<br><br>|mailinglistsite=https://lists.owasp.org/mailman/listinfo/owasp-twincities|emailarchives=https://lists.owasp.org/pipermail/owasp-twincities}}<br />
<br />
<br />
== Sponsorship/Membership ==<br />
<paypal>Minneapolis St Paul</paypal><br />
<br />
Or consider the value of [http://www.owasp.org/index.php/Membership Individual, Organization, or Accredited University Supporter membership].<br />
<br />
<br />
== Platinum Sponsors ==<br />
<br />
[[Image:Best_Buy_logo.jpg|link=http://www.bestbuy.com/]]&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;[[Image:Center_for_strategic_it_n_security.png|60px|link=http://www.strategicit.org/]]&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;[[Image:Integral_logo.png|90px|link=http://www.go-integral.net/]]<br />
<br />
<br />
The OWASP MSP chapter is very thankful for<br />
<br />
* generous financial support from [[Membership#Categories_of_Membership_.26_Supporters|Organization Supporter]] and Local Chapter Supporter '''[http://www.bestbuy.com/ Best Buy]'''.<br />
* reliable monthly meeting locations from Local Chapter Supporter '''[http://www.strategicit.org Center for Strategic Information Technology and Security (MnSCU)]'''.<br />
* sustained booth sponsorship, monthly meeting sponsorship, and more from Local Chapter Supporter '''[http://www.go-integral.net/ Integral]'''.<br />
<br />
<br />
== OWASP Minneapolis-St. Paul 2009 Half Day Conference - August 24, 2009 ==<br />
<br />
The OWASP Minneapolis-St. Paul (OWASP MSP) chapter is pleased to announce '''[[OWASP Minneapolis St Paul 2009_Conference | an afternoon of information security presentations on August 24, 2009]]''' at the [http://www1.umn.edu/twincities/maps/StCen/StCen-map.html St. Paul Student Center] [http://www.spsc.umn.edu/about/directory/lower.php Auditorium/Theater] on the [http://www1.umn.edu/twincities/index.php University of Minnesota - Twin Cities] campus.<br />
<br />
'''[[OWASP Minneapolis St Paul 2009_Conference | Go the the event page to learn more and register today!]]'''<br />
<br />
<br />
== Meetings and More ==<br />
<br />
==== Upcoming Meetings and Events ====<br />
<br />
=== OWASP Minneapolis-St. Paul 2009 Half Day Conference - August 24, 2009 ===<br />
<br />
'''The OWASP Minneapolis-St.Paul 2009 half day conference is scheduled for August 24, 2009. See above for more details.'''<br />
<br />
=== Stay Updated ===<br />
<br />
'''[https://lists.owasp.org/mailman/listinfo/owasp-twincities Click here to join the local chapter mailing list]'''<br />
<br />
'''Follow''' OWASP MSP on your favorite social media sites:<br />
<br />
[[Image:Linkedin_mini.png|link=http://www.linkedin.com/groupInvitation?groupID=2184116]] <br />
[[Image:Twitter_mini.png|link=http://twitter.com/owaspmsp]] [[Image:Facebook_mini.png|link=http://www.facebook.com/pages/OWASP-Minneapolis-St-Paul-OWASP-MSP-OWASPMSP/113583361381]] [[Image:Digg_mini.png|link=http://digg.com/users/owaspmsp]] [[Image:Delicious_mini.png|link=http://delicious.com/owaspmsp]] [[Image:Reddit_mini.png|link=http://www.reddit.com/user/owaspmsp]] [[Image:Myspace_mini.png|link=http://www.myspace.com/owaspmsp]]<br />
<br />
<br />
'''Share''' OWASP MSP on your favorite social media sites:<br />
<br />
[[Image:Linkedin_mini.png|link=http://www.linkedin.com/shareArticle?mini=true&url=http%3A%2F%2Fwww.owasp.org%2Findex.php%2FMinneapolis_St_Paul&title=OWASP%20Minneapolis-St.%20Paul%20(OWASP%20MSP)%20Home%20Page&summary=Official%20OWASP%20Minneapolis-St.%20Paul%20(OWASP%20MSP)%20home%20page.%20Video%2C%20audio%2C%20slides%2C%20and%20other%20information%20on%20previous%20and%20upcoming%20chapter%20meetings%2C%20events%2C%20and%20conferences.&source=OWASPMSP]] <br />
[[Image:Twitter_mini.png|link=http://twitter.com/home?status=Checking%20out%20OWASP%20MSP%20at%20http%3A%2F%2Fwww.owasp.org%2Findex.php%2FMinneapolis_St_Paul.]] [[Image:Facebook_mini.png|link=http://www.facebook.com/sharer.php?u=http%3A%2F%2Fwww.owasp.org%2Findex.php%2FMinneapolis_St_Paul&t=OWASP%20Minneapolis-St.%20Paul%20(OWASP%20MSP)%20Home%20Page]] [[Image:Digg_mini.png|link=http://digg.com/submit?phase=2&url=http%3A%2F%2Fwww.owasp.org%2Findex.php%2FMinneapolis_St_Paul&title=OWASP%20Minneapolis-St.%20Paul%20(OWASP%20MSP)%20Home%20Page&bodytext=Official%20OWASP%20Minneapolis-St.%20Paul%20(OWASP%20MSP)%20home%20page.%20Video%2C%20audio%2C%20slides%2C%20and%20other%20information%20on%20previous%20and%20upcoming%20chapter%20meetings%2C%20events%2C%20and%20conferences.]] [[Image:Delicious_mini.png|link=http://del.icio.us/post?url=http%3A%2F%2Fwww.owasp.org%2Findex.php%2FMinneapolis_St_Paul&title=OWASP%20Minneapolis-St.%20Paul%20(OWASP%20MSP)%20Home%20Page]] [[Image:Reddit_mini.png|link=http://reddit.com/submit?url=http%3A%2F%2Fwww.owasp.org%2Findex.php%2FMinneapolis_St_Paul&title=OWASP%20Minneapolis-St.%20Paul%20(OWASP%20MSP)%20Home%20Page]] [[Image:Myspace_mini.png|link=http://www.myspace.com/Modules/PostTo/Pages/?l=1&u=http%3A%2F%2Fwww.owasp.org%2Findex.php%2FMinneapolis_St_Paul&t=OWASP%20Minneapolis-St.%20Paul%20(OWASP%20MSP)%20Home%20Page]]<br />
<br />
=== Secure360 ===<br />
[http://www.secure360.org/ Secure360] is an annual<br />
conference providing high quality educational sessions and networking<br />
opportunities while working to identify developing trends in risk<br />
management, physical security, governance, audit, information security,<br />
contingency planning and human capital.<br />
<br />
=== DC612 Meetings ===<br />
DC612 meets the 2nd Thursday of the month<br /><br />
http://www.dc612.org/<br />
<br />
==== Video/Audio/Slides/Handouts ====<br />
<br />
Videos of several past meetings are available at https://www.owasp.org/index.php/Category:OWASP_Video#Videos<br />
<br />
=== Most Recent Content ===<br />
<br />
Robert Sullivan - Open This First: A job-oriented guide to software security resources - OWASP (MSP) - 27 July 2009 (68 minutes) [http://www.comotheory.com/owasp/20090727-Robert_Sullivan-Open_This_First_-_A_job-oriented_guide_to_software_security_resources.mp3 MP3] | [[Media:20090727-Robert_Sullivan-Open_This_First_-_A_job-oriented_guide_to_software_security_resources.pdf|PDF]] | [http://www.comotheory.com/owasp/20090727-Robert_Sullivan-Open_This_First_-_A_job-oriented_guide_to_software_security_resources.mp4 MP4...please right click and save] | [http://mspsullivan.home.mchsi.com More Material]<br />
<br />
Cassio Goldschmidt - Tracking the Progress of an SDL Program: Lessons from the Gym - OWASP (MSP) - 29 June 2009 (55 minutes) [http://www.slideshare.net/webappsecguy/tracking-the-progress-of-an-sdl-program-lessons-from-the-gym-1684512 Slidecast] | [http://www.comotheory.com/owasp/20090629-Cassio_Goldschmidt-Tracking_the_Progress_of_an_SDL_Program_-_Lessons_from_the_Gym.mp3 MP3] | [[Media:20090629-Cassio_Goldschmidt-Tracking_the_Progress_of_an_SDL_Program_-_Lessons_from_the_Gym.pptx| PPTX]] | [http://www.comotheory.com/owasp/20090629-Cassio_Goldschmidt-Tracking_the_Progress_of_an_SDL_Program_-_Lessons_from_the_Gym.mp4 MP4...please right click and save]<br />
<br />
Gunnar Peterson - OWASP Top Ten Web Services - OWASP (MSP) - 27 April 2009 (1 hour, 27 minutes) [http://www.comotheory.com/owasp/20090427-Gunnar_Peterson_-_OWASP_Top_Ten_Web_Services.mp4 MP4...please right click and save] | Slides Forthcoming<br />
<br />
Dan Cornell - Vulnerability Management in an Application Security World - OWASP (MSP) - 16 March 2009 (1 hour, 52 minutes) [http://video.google.com/videoplay?docid=3200887090385342211&hl=en Google Video] | [[Media:VulnerabilityManagementInAnApplicaitonSecurityWorld_OWASPMSP_20090316.pdf|PDF]]<br />
<br />
Rick Ensenbach - Proactive Lifecycle Security Management - OWASP (MSP) - 16 February 2009 (69 minutes) [http://video.google.com/videoplay?docid=2838721966098123222&hl=en Part 1 Google Video] | [http://video.google.com/videoplay?docid=1766766374336659744&hl=en Part 2 Google Video] | [[Media:Proactive_Lifecycle_Security_Management_Presentation_for_OWASP_Mpls-Stp_Chapter_Meeting_-_2-16-09.ppt|PPT]] | [[Media:Generic_System_Security_Plan.doc|Handout: Service/System Security Plan template (DOC)]]<br />
<br />
==== Previous Events ====<br />
<br />
=== OWASP & FLOSS Application Security Mini-Conference 2008 - October 21, 2008 ===<br />
Thanks to all who joined us on October 21, 2008 for a [https://www.owasp.org/index.php/OWASP_Minneapolis_St_Paul_2008_Conference '''mini conference''' in October 2008] at University of Minnesota's Saint Paul campus. Our first conference was a great success, with around 150 people attending! We look forward to the next one.<br />
<br />
==== Chapter Leaders/Contacts ====<br />
President: [mailto:kuai.hinojosa(at)owasp.org Kuai Hinojosa]<br /><br />
Vice President: [mailto:lorna.alamri(at)owasp.org Lorna Alamri]<br /><br />
Local Projects Committee Chair [mailto:adam.baso(at)owasp.org Adam Baso]<br />
<headertabs/><br />
<br />
[[Category:Minnesota]]</div>Cybermalandrohttps://wiki.owasp.org/index.php?title=Minneapolis_St_Paul&diff=67632Minneapolis St Paul2009-08-16T23:00:26Z<p>Cybermalandro: /* Meetings and More */</p>
<hr />
<div>__NOTOC__<br />
{{Chapter Template|chaptername=Minneapolis-St. Paul (OWASP MSP)|extra=The chapter leader is [mailto:kuai.hinojosa(at)owasp.org Kuai Hinojosa].<br><br>The OWASP Minneapolis-St. Paul (OWASP MSP) chapter is pleased to announce '''[[OWASP Minneapolis St Paul 2009_Conference | an afternoon of information security presentations on August 24, 2009]]''' at the [http://www1.umn.edu/twincities/maps/StCen/StCen-map.html St. Paul Student Center] [http://www.spsc.umn.edu/about/directory/lower.php Auditorium/Theater] on the [http://www1.umn.edu/twincities/index.php University of Minnesota - Twin Cities] campus.<br><br>'''[[OWASP Minneapolis St Paul 2009_Conference | Go the the event page to learn more and register today!]]'''<br><br>|mailinglistsite=https://lists.owasp.org/mailman/listinfo/owasp-twincities|emailarchives=https://lists.owasp.org/pipermail/owasp-twincities}}<br />
<br />
<br />
== Sponsorship/Membership ==<br />
<paypal>Minneapolis St Paul</paypal><br />
<br />
Or consider the value of [http://www.owasp.org/index.php/Membership Individual, Organization, or Accredited University Supporter membership].<br />
<br />
<br />
== Platinum Sponsors ==<br />
<br />
[[Image:Best_Buy_logo.jpg|link=http://www.bestbuy.com/]]&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;[[Image:Center_for_strategic_it_n_security.png|60px|link=http://www.strategicit.org/]]&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;[[Image:Integral_logo.png|90px|link=http://www.go-integral.net/]]<br />
<br />
<br />
The OWASP MSP chapter is very thankful for<br />
<br />
* generous financial support from [[Membership#Categories_of_Membership_.26_Supporters|Organization Supporter]] and Local Chapter Supporter '''[http://www.bestbuy.com/ Best Buy]'''.<br />
* reliable monthly meeting locations from Local Chapter Supporter '''[http://www.strategicit.org Center for Strategic Information Technology and Security (MnSCU)]'''.<br />
* sustained booth sponsorship, monthly meeting sponsorship, and more from Local Chapter Supporter '''[http://www.go-integral.net/ Integral]'''.<br />
<br />
<br />
== OWASP Minneapolis-St. Paul 2009 Half Day Conference - August 24, 2009 ==<br />
<br />
The OWASP Minneapolis-St. Paul (OWASP MSP) chapter is pleased to announce '''[[OWASP Minneapolis St Paul 2009_Conference | an afternoon of information security presentations on August 24, 2009]]''' at the [http://www1.umn.edu/twincities/maps/StCen/StCen-map.html St. Paul Student Center] [http://www.spsc.umn.edu/about/directory/lower.php Auditorium/Theater] on the [http://www1.umn.edu/twincities/index.php University of Minnesota - Twin Cities] campus.<br />
<br />
'''[[OWASP Minneapolis St Paul 2009_Conference | Go the the event page to learn more and register today!]]'''<br />
<br />
<br />
== Meetings and More ==<br />
<br />
==== Upcoming Meetings and Events ====<br />
<br />
=== OWASP Minneapolis-St. Paul 2009 Half Day Conference - August 24, 2009 ===<br />
<br />
'''The OWASP Minneapolis-St.Paul 2009 half day conference is scheduled for August 24, 2009. See above for more details.'''<br />
<br />
=== Stay Updated ===<br />
<br />
'''[https://lists.owasp.org/mailman/listinfo/owasp-twincities Click here to join the local chapter mailing list]'''<br />
<br />
'''Follow''' OWASP MSP on your favorite social media sites:<br />
<br />
[[Image:Linkedin_mini.png|link=http://www.linkedin.com/groupInvitation?groupID=2184116]] <br />
[[Image:Twitter_mini.png|link=http://twitter.com/owaspmsp]] [[Image:Facebook_mini.png|link=http://www.facebook.com/pages/OWASP-Minneapolis-St-Paul-OWASP-MSP-OWASPMSP/113583361381]] [[Image:Digg_mini.png|link=http://digg.com/users/owaspmsp]] [[Image:Delicious_mini.png|link=http://delicious.com/owaspmsp]] [[Image:Reddit_mini.png|link=http://www.reddit.com/user/owaspmsp]] [[Image:Myspace_mini.png|link=http://www.myspace.com/owaspmsp]]<br />
<br />
<br />
'''Share''' OWASP MSP on your favorite social media sites:<br />
<br />
[[Image:Linkedin_mini.png|link=http://www.linkedin.com/shareArticle?mini=true&url=http%3A%2F%2Fwww.owasp.org%2Findex.php%2FMinneapolis_St_Paul&title=OWASP%20Minneapolis-St.%20Paul%20(OWASP%20MSP)%20Home%20Page&summary=Official%20OWASP%20Minneapolis-St.%20Paul%20(OWASP%20MSP)%20home%20page.%20Video%2C%20audio%2C%20slides%2C%20and%20other%20information%20on%20previous%20and%20upcoming%20chapter%20meetings%2C%20events%2C%20and%20conferences.&source=OWASPMSP]] <br />
[[Image:Twitter_mini.png|link=http://twitter.com/home?status=Checking%20out%20OWASP%20MSP%20at%20http%3A%2F%2Fwww.owasp.org%2Findex.php%2FMinneapolis_St_Paul.]] [[Image:Facebook_mini.png|link=http://www.facebook.com/sharer.php?u=http%3A%2F%2Fwww.owasp.org%2Findex.php%2FMinneapolis_St_Paul&t=OWASP%20Minneapolis-St.%20Paul%20(OWASP%20MSP)%20Home%20Page]] [[Image:Digg_mini.png|link=http://digg.com/submit?phase=2&url=http%3A%2F%2Fwww.owasp.org%2Findex.php%2FMinneapolis_St_Paul&title=OWASP%20Minneapolis-St.%20Paul%20(OWASP%20MSP)%20Home%20Page&bodytext=Official%20OWASP%20Minneapolis-St.%20Paul%20(OWASP%20MSP)%20home%20page.%20Video%2C%20audio%2C%20slides%2C%20and%20other%20information%20on%20previous%20and%20upcoming%20chapter%20meetings%2C%20events%2C%20and%20conferences.]] [[Image:Delicious_mini.png|link=http://del.icio.us/post?url=http%3A%2F%2Fwww.owasp.org%2Findex.php%2FMinneapolis_St_Paul&title=OWASP%20Minneapolis-St.%20Paul%20(OWASP%20MSP)%20Home%20Page]] [[Image:Reddit_mini.png|link=http://reddit.com/submit?url=http%3A%2F%2Fwww.owasp.org%2Findex.php%2FMinneapolis_St_Paul&title=OWASP%20Minneapolis-St.%20Paul%20(OWASP%20MSP)%20Home%20Page]] [[Image:Myspace_mini.png|link=http://www.myspace.com/Modules/PostTo/Pages/?l=1&u=http%3A%2F%2Fwww.owasp.org%2Findex.php%2FMinneapolis_St_Paul&t=OWASP%20Minneapolis-St.%20Paul%20(OWASP%20MSP)%20Home%20Page]]<br />
<br />
=== Secure360 ===<br />
[http://www.secure360.org/ Secure360] is an annual<br />
conference providing high quality educational sessions and networking<br />
opportunities while working to identify developing trends in risk<br />
management, physical security, governance, audit, information security,<br />
contingency planning and human capital.<br />
<br />
=== DC612 Meetings ===<br />
DC612 meets the 2nd Thursday of the month<br /><br />
http://www.dc612.org/<br />
<br />
==== Video/Audio/Slides/Handouts ====<br />
<br />
Videos of several past meetings are available at https://www.owasp.org/index.php/Category:OWASP_Video#Videos<br />
<br />
=== Most Recent Content ===<br />
<br />
Robert Sullivan - Open This First: A job-oriented guide to software security resources - OWASP (MSP) - 27 July 2009 (68 minutes) [http://www.comotheory.com/owasp/20090727-Robert_Sullivan-Open_This_First_-_A_job-oriented_guide_to_software_security_resources.mp3 MP3] | [[Media:20090727-Robert_Sullivan-Open_This_First_-_A_job-oriented_guide_to_software_security_resources.pdf|PDF]] | [http://www.comotheory.com/owasp/20090727-Robert_Sullivan-Open_This_First_-_A_job-oriented_guide_to_software_security_resources.mp4 MP4...please right click and save] | [http://mspsullivan.home.mchsi.com More Material]<br />
<br />
Cassio Goldschmidt - Tracking the Progress of an SDL Program: Lessons from the Gym - OWASP (MSP) - 29 June 2009 (55 minutes) [http://www.slideshare.net/webappsecguy/tracking-the-progress-of-an-sdl-program-lessons-from-the-gym-1684512 Slidecast] | [http://www.comotheory.com/owasp/20090629-Cassio_Goldschmidt-Tracking_the_Progress_of_an_SDL_Program_-_Lessons_from_the_Gym.mp3 MP3] | [[Media:20090629-Cassio_Goldschmidt-Tracking_the_Progress_of_an_SDL_Program_-_Lessons_from_the_Gym.pptx| PPTX]] | [http://www.comotheory.com/owasp/20090629-Cassio_Goldschmidt-Tracking_the_Progress_of_an_SDL_Program_-_Lessons_from_the_Gym.mp4 MP4...please right click and save]<br />
<br />
Gunnar Peterson - OWASP Top Ten Web Services - OWASP (MSP) - 27 April 2009 (1 hour, 27 minutes) [http://www.comotheory.com/owasp/20090427-Gunnar_Peterson_-_OWASP_Top_Ten_Web_Services.mp4 MP4...please right click and save] | Slides Forthcoming<br />
<br />
Dan Cornell - Vulnerability Management in an Application Security World - OWASP (MSP) - 16 March 2009 (1 hour, 52 minutes) [http://video.google.com/videoplay?docid=3200887090385342211&hl=en Google Video] | [[Media:VulnerabilityManagementInAnApplicaitonSecurityWorld_OWASPMSP_20090316.pdf|PDF]]<br />
<br />
Rick Ensenbach - Proactive Lifecycle Security Management - OWASP (MSP) - 16 February 2009 (69 minutes) [http://video.google.com/videoplay?docid=2838721966098123222&hl=en Part 1 Google Video] | [http://video.google.com/videoplay?docid=1766766374336659744&hl=en Part 2 Google Video] | [[Media:Proactive_Lifecycle_Security_Management_Presentation_for_OWASP_Mpls-Stp_Chapter_Meeting_-_2-16-09.ppt|PPT]] | [[Media:Generic_System_Security_Plan.doc|Handout: Service/System Security Plan template (DOC)]]<br />
<br />
==== Previous Events ====<br />
<br />
=== OWASP & FLOSS Application Security Mini-Conference 2008 - October 21, 2008 ===<br />
Thanks to all who joined us on October 21, 2008 for a [https://www.owasp.org/index.php/OWASP_Minneapolis_St_Paul_2008_Conference '''mini conference''' in October 2008] at University of Minnesota's Saint Paul campus. Our first conference was a great success, with around 150 people attending! We look forward to the next one.<br />
<br />
==== Chapter Leaders/Contacts ====<br />
President: [mailto:kuai.hinojosa(at)owasp.org Kuai Hinojosa]<br /><br />
Vice President: [mailto:lorna.alamri(at)owasp.org Lorna Alamri]<br /><br />
Adam Baso [mailto:adam.baso(at)owasp.org Adam Baso]<br />
<headertabs/><br />
<br />
[[Category:Minnesota]]</div>Cybermalandrohttps://wiki.owasp.org/index.php?title=Minneapolis_St_Paul&diff=67631Minneapolis St Paul2009-08-16T23:00:04Z<p>Cybermalandro: /* Meetings and More */</p>
<hr />
<div>__NOTOC__<br />
{{Chapter Template|chaptername=Minneapolis-St. Paul (OWASP MSP)|extra=The chapter leader is [mailto:kuai.hinojosa(at)owasp.org Kuai Hinojosa].<br><br>The OWASP Minneapolis-St. Paul (OWASP MSP) chapter is pleased to announce '''[[OWASP Minneapolis St Paul 2009_Conference | an afternoon of information security presentations on August 24, 2009]]''' at the [http://www1.umn.edu/twincities/maps/StCen/StCen-map.html St. Paul Student Center] [http://www.spsc.umn.edu/about/directory/lower.php Auditorium/Theater] on the [http://www1.umn.edu/twincities/index.php University of Minnesota - Twin Cities] campus.<br><br>'''[[OWASP Minneapolis St Paul 2009_Conference | Go the the event page to learn more and register today!]]'''<br><br>|mailinglistsite=https://lists.owasp.org/mailman/listinfo/owasp-twincities|emailarchives=https://lists.owasp.org/pipermail/owasp-twincities}}<br />
<br />
<br />
== Sponsorship/Membership ==<br />
<paypal>Minneapolis St Paul</paypal><br />
<br />
Or consider the value of [http://www.owasp.org/index.php/Membership Individual, Organization, or Accredited University Supporter membership].<br />
<br />
<br />
== Platinum Sponsors ==<br />
<br />
[[Image:Best_Buy_logo.jpg|link=http://www.bestbuy.com/]]&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;[[Image:Center_for_strategic_it_n_security.png|60px|link=http://www.strategicit.org/]]&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;[[Image:Integral_logo.png|90px|link=http://www.go-integral.net/]]<br />
<br />
<br />
The OWASP MSP chapter is very thankful for<br />
<br />
* generous financial support from [[Membership#Categories_of_Membership_.26_Supporters|Organization Supporter]] and Local Chapter Supporter '''[http://www.bestbuy.com/ Best Buy]'''.<br />
* reliable monthly meeting locations from Local Chapter Supporter '''[http://www.strategicit.org Center for Strategic Information Technology and Security (MnSCU)]'''.<br />
* sustained booth sponsorship, monthly meeting sponsorship, and more from Local Chapter Supporter '''[http://www.go-integral.net/ Integral]'''.<br />
<br />
<br />
== OWASP Minneapolis-St. Paul 2009 Half Day Conference - August 24, 2009 ==<br />
<br />
The OWASP Minneapolis-St. Paul (OWASP MSP) chapter is pleased to announce '''[[OWASP Minneapolis St Paul 2009_Conference | an afternoon of information security presentations on August 24, 2009]]''' at the [http://www1.umn.edu/twincities/maps/StCen/StCen-map.html St. Paul Student Center] [http://www.spsc.umn.edu/about/directory/lower.php Auditorium/Theater] on the [http://www1.umn.edu/twincities/index.php University of Minnesota - Twin Cities] campus.<br />
<br />
'''[[OWASP Minneapolis St Paul 2009_Conference | Go the the event page to learn more and register today!]]'''<br />
<br />
<br />
== Meetings and More ==<br />
<br />
==== Upcoming Meetings and Events ====<br />
<br />
=== OWASP Minneapolis-St. Paul 2009 Half Day Conference - August 24, 2009 ===<br />
<br />
'''The OWASP Minneapolis-St.Paul 2009 half day conference is scheduled for August 24, 2009. See above for more details.'''<br />
<br />
=== Stay Updated ===<br />
<br />
'''[https://lists.owasp.org/mailman/listinfo/owasp-twincities Click here to join the local chapter mailing list]'''<br />
<br />
'''Follow''' OWASP MSP on your favorite social media sites:<br />
<br />
[[Image:Linkedin_mini.png|link=http://www.linkedin.com/groupInvitation?groupID=2184116]] <br />
[[Image:Twitter_mini.png|link=http://twitter.com/owaspmsp]] [[Image:Facebook_mini.png|link=http://www.facebook.com/pages/OWASP-Minneapolis-St-Paul-OWASP-MSP-OWASPMSP/113583361381]] [[Image:Digg_mini.png|link=http://digg.com/users/owaspmsp]] [[Image:Delicious_mini.png|link=http://delicious.com/owaspmsp]] [[Image:Reddit_mini.png|link=http://www.reddit.com/user/owaspmsp]] [[Image:Myspace_mini.png|link=http://www.myspace.com/owaspmsp]]<br />
<br />
<br />
'''Share''' OWASP MSP on your favorite social media sites:<br />
<br />
[[Image:Linkedin_mini.png|link=http://www.linkedin.com/shareArticle?mini=true&url=http%3A%2F%2Fwww.owasp.org%2Findex.php%2FMinneapolis_St_Paul&title=OWASP%20Minneapolis-St.%20Paul%20(OWASP%20MSP)%20Home%20Page&summary=Official%20OWASP%20Minneapolis-St.%20Paul%20(OWASP%20MSP)%20home%20page.%20Video%2C%20audio%2C%20slides%2C%20and%20other%20information%20on%20previous%20and%20upcoming%20chapter%20meetings%2C%20events%2C%20and%20conferences.&source=OWASPMSP]] <br />
[[Image:Twitter_mini.png|link=http://twitter.com/home?status=Checking%20out%20OWASP%20MSP%20at%20http%3A%2F%2Fwww.owasp.org%2Findex.php%2FMinneapolis_St_Paul.]] [[Image:Facebook_mini.png|link=http://www.facebook.com/sharer.php?u=http%3A%2F%2Fwww.owasp.org%2Findex.php%2FMinneapolis_St_Paul&t=OWASP%20Minneapolis-St.%20Paul%20(OWASP%20MSP)%20Home%20Page]] [[Image:Digg_mini.png|link=http://digg.com/submit?phase=2&url=http%3A%2F%2Fwww.owasp.org%2Findex.php%2FMinneapolis_St_Paul&title=OWASP%20Minneapolis-St.%20Paul%20(OWASP%20MSP)%20Home%20Page&bodytext=Official%20OWASP%20Minneapolis-St.%20Paul%20(OWASP%20MSP)%20home%20page.%20Video%2C%20audio%2C%20slides%2C%20and%20other%20information%20on%20previous%20and%20upcoming%20chapter%20meetings%2C%20events%2C%20and%20conferences.]] [[Image:Delicious_mini.png|link=http://del.icio.us/post?url=http%3A%2F%2Fwww.owasp.org%2Findex.php%2FMinneapolis_St_Paul&title=OWASP%20Minneapolis-St.%20Paul%20(OWASP%20MSP)%20Home%20Page]] [[Image:Reddit_mini.png|link=http://reddit.com/submit?url=http%3A%2F%2Fwww.owasp.org%2Findex.php%2FMinneapolis_St_Paul&title=OWASP%20Minneapolis-St.%20Paul%20(OWASP%20MSP)%20Home%20Page]] [[Image:Myspace_mini.png|link=http://www.myspace.com/Modules/PostTo/Pages/?l=1&u=http%3A%2F%2Fwww.owasp.org%2Findex.php%2FMinneapolis_St_Paul&t=OWASP%20Minneapolis-St.%20Paul%20(OWASP%20MSP)%20Home%20Page]]<br />
<br />
=== Secure360 ===<br />
[http://www.secure360.org/ Secure360] is an annual<br />
conference providing high quality educational sessions and networking<br />
opportunities while working to identify developing trends in risk<br />
management, physical security, governance, audit, information security,<br />
contingency planning and human capital.<br />
<br />
=== DC612 Meetings ===<br />
DC612 meets the 2nd Thursday of the month<br /><br />
http://www.dc612.org/<br />
<br />
==== Video/Audio/Slides/Handouts ====<br />
<br />
Videos of several past meetings are available at https://www.owasp.org/index.php/Category:OWASP_Video#Videos<br />
<br />
=== Most Recent Content ===<br />
<br />
Robert Sullivan - Open This First: A job-oriented guide to software security resources - OWASP (MSP) - 27 July 2009 (68 minutes) [http://www.comotheory.com/owasp/20090727-Robert_Sullivan-Open_This_First_-_A_job-oriented_guide_to_software_security_resources.mp3 MP3] | [[Media:20090727-Robert_Sullivan-Open_This_First_-_A_job-oriented_guide_to_software_security_resources.pdf|PDF]] | [http://www.comotheory.com/owasp/20090727-Robert_Sullivan-Open_This_First_-_A_job-oriented_guide_to_software_security_resources.mp4 MP4...please right click and save] | [http://mspsullivan.home.mchsi.com More Material]<br />
<br />
Cassio Goldschmidt - Tracking the Progress of an SDL Program: Lessons from the Gym - OWASP (MSP) - 29 June 2009 (55 minutes) [http://www.slideshare.net/webappsecguy/tracking-the-progress-of-an-sdl-program-lessons-from-the-gym-1684512 Slidecast] | [http://www.comotheory.com/owasp/20090629-Cassio_Goldschmidt-Tracking_the_Progress_of_an_SDL_Program_-_Lessons_from_the_Gym.mp3 MP3] | [[Media:20090629-Cassio_Goldschmidt-Tracking_the_Progress_of_an_SDL_Program_-_Lessons_from_the_Gym.pptx| PPTX]] | [http://www.comotheory.com/owasp/20090629-Cassio_Goldschmidt-Tracking_the_Progress_of_an_SDL_Program_-_Lessons_from_the_Gym.mp4 MP4...please right click and save]<br />
<br />
Gunnar Peterson - OWASP Top Ten Web Services - OWASP (MSP) - 27 April 2009 (1 hour, 27 minutes) [http://www.comotheory.com/owasp/20090427-Gunnar_Peterson_-_OWASP_Top_Ten_Web_Services.mp4 MP4...please right click and save] | Slides Forthcoming<br />
<br />
Dan Cornell - Vulnerability Management in an Application Security World - OWASP (MSP) - 16 March 2009 (1 hour, 52 minutes) [http://video.google.com/videoplay?docid=3200887090385342211&hl=en Google Video] | [[Media:VulnerabilityManagementInAnApplicaitonSecurityWorld_OWASPMSP_20090316.pdf|PDF]]<br />
<br />
Rick Ensenbach - Proactive Lifecycle Security Management - OWASP (MSP) - 16 February 2009 (69 minutes) [http://video.google.com/videoplay?docid=2838721966098123222&hl=en Part 1 Google Video] | [http://video.google.com/videoplay?docid=1766766374336659744&hl=en Part 2 Google Video] | [[Media:Proactive_Lifecycle_Security_Management_Presentation_for_OWASP_Mpls-Stp_Chapter_Meeting_-_2-16-09.ppt|PPT]] | [[Media:Generic_System_Security_Plan.doc|Handout: Service/System Security Plan template (DOC)]]<br />
<br />
==== Previous Events ====<br />
<br />
=== OWASP & FLOSS Application Security Mini-Conference 2008 - October 21, 2008 ===<br />
Thanks to all who joined us on October 21, 2008 for a [https://www.owasp.org/index.php/OWASP_Minneapolis_St_Paul_2008_Conference '''mini conference''' in October 2008] at University of Minnesota's Saint Paul campus. Our first conference was a great success, with around 150 people attending! We look forward to the next one.<br />
<br />
==== Chapter Leaders/Contacts ====<br />
President: [mailto:kuai.hinojosa(at)owasp.org Kuai Hinojosa]<br /><br />
Vice President: [mailto:lorna.alamri(at)owasp.org Lorna Alamri]<br />
Adam Baso [mailto:adam.baso(at)owasp.org Adam Baso]<br />
<headertabs/><br />
<br />
[[Category:Minnesota]]</div>Cybermalandrohttps://wiki.owasp.org/index.php?title=AppSec_Academia_Symposium_Irvine_09&diff=59996AppSec Academia Symposium Irvine 092009-05-04T03:57:16Z<p>Cybermalandro: User:Cybermalandro moved to AppSec Academia Symposium</p>
<hr />
<div>== Welcome to the OWASP Application Security Academia Symposium ==<br />
<br />
== Event's Location==<br />
<br />
'''University of California Irvine.'''<br />
<br />
==Call for Presentations / Research Papers==<br />
<br />
To be defined<br />
<br />
<br />
==Agenda and Presentations ==<br />
<br />
<br />
==Venue==<br />
University of California Irvine <br />
<br />
<br />
==Registration==<br />
<br />
Will be available soon.<br />
<br />
=== Location ===<br />
<br />
Calit2 building,building number 325 in quadrant H8 [http://today.uci.edu/pdf/UCI_09_map_campus_core.pdf]<br />
<br />
== Parking ==<br />
<br />
[http://maps.google.com/maps?li=d&hl=en&f=d&iwstate1=dir:to&daddr=Parking+Structure+for+CalIT2%4033.643082,+-117.837593&geocode=CSJ9b4xJxrzxFUpaAQId5_D5-A&iwloc=1&dq=calit2,+uc+irvine,+ca&cid=33643082,-117837593,16505793731713499531&ei=v3bvSabfO6LejAOR2pjgAQ]<br />
<br />
== Registration ==<br />
<br />
There will be no fees for this event, only '''registration''' is required to participate.<br />
<br />
<br />
<br />
Pre-Event Organization Team<br />
<br />
* Kuai Hinojosa (kuai.hinojosa 'at' owasp.org)<br />
<br />
<br />
<br />
==[[OWASP AppSec Event Sponsor]]==<br />
<br />
This conference will be sponsored by the [http://www.uci.edu]<br />
<br />
<br />
[[Category:OWASP AppSec Conference]]</div>Cybermalandrohttps://wiki.owasp.org/index.php?title=User:Cybermalandro&diff=59997User:Cybermalandro2009-05-04T03:57:16Z<p>Cybermalandro: User:Cybermalandro moved to AppSec Academia Symposium</p>
<hr />
<div>#REDIRECT [[AppSec Academia Symposium]]</div>Cybermalandrohttps://wiki.owasp.org/index.php?title=AppSec_Academia_Symposium_Irvine_09&diff=59995AppSec Academia Symposium Irvine 092009-05-04T03:54:51Z<p>Cybermalandro: </p>
<hr />
<div>== Welcome to the OWASP Application Security Academia Symposium ==<br />
<br />
== Event's Location==<br />
<br />
'''University of California Irvine.'''<br />
<br />
==Call for Presentations / Research Papers==<br />
<br />
To be defined<br />
<br />
<br />
==Agenda and Presentations ==<br />
<br />
<br />
==Venue==<br />
University of California Irvine <br />
<br />
<br />
==Registration==<br />
<br />
Will be available soon.<br />
<br />
=== Location ===<br />
<br />
Calit2 building,building number 325 in quadrant H8 [http://today.uci.edu/pdf/UCI_09_map_campus_core.pdf]<br />
<br />
== Parking ==<br />
<br />
[http://maps.google.com/maps?li=d&hl=en&f=d&iwstate1=dir:to&daddr=Parking+Structure+for+CalIT2%4033.643082,+-117.837593&geocode=CSJ9b4xJxrzxFUpaAQId5_D5-A&iwloc=1&dq=calit2,+uc+irvine,+ca&cid=33643082,-117837593,16505793731713499531&ei=v3bvSabfO6LejAOR2pjgAQ]<br />
<br />
== Registration ==<br />
<br />
There will be no fees for this event, only '''registration''' is required to participate.<br />
<br />
<br />
<br />
Pre-Event Organization Team<br />
<br />
* Kuai Hinojosa (kuai.hinojosa 'at' owasp.org)<br />
<br />
<br />
<br />
==[[OWASP AppSec Event Sponsor]]==<br />
<br />
This conference will be sponsored by the [http://www.uci.edu]<br />
<br />
<br />
[[Category:OWASP AppSec Conference]]</div>Cybermalandrohttps://wiki.owasp.org/index.php?title=AppSec_Academia_Symposium_Irvine_09&diff=59993AppSec Academia Symposium Irvine 092009-05-04T03:40:01Z<p>Cybermalandro: New page: Welcome to the OWASP Application Security Academia event == Event's Location== '''University of California Irvine.''' ==Call for Presentations / Research Papers== To be defined ==Age...</p>
<hr />
<div>Welcome to the OWASP Application Security Academia event<br />
<br />
== Event's Location==<br />
<br />
'''University of California Irvine.'''<br />
<br />
==Call for Presentations / Research Papers==<br />
<br />
To be defined<br />
<br />
<br />
==Agenda and Presentations ==<br />
<br />
<br />
==Venue==<br />
<br />
<br />
<br />
==Registration==<br />
<br />
Will be available soon.<br />
<br />
<br />
== Parking ==<br />
<br />
To be defined<br />
<br />
===How to get to the venue?===<br />
<br />
To be defined<br />
<br />
== Registration ==<br />
<br />
There will be no fees for this event, only '''registration''' is required to participate.<br />
<br />
<br />
<br />
Pre-Event Organization Team<br />
<br />
* Kuai Hinojosa (kuai.hinojosa 'at' owasp.org)<br />
<br />
<br />
<br />
==[[OWASP AppSec Event Sponsor]]==<br />
<br />
This conference will be sponsored by the [http://www.uci.edu]<br />
<br />
<br />
[[Category:OWASP AppSec Conference]]</div>Cybermalandrohttps://wiki.owasp.org/index.php?title=Minneapolis_St_Paul&diff=59991Minneapolis St Paul2009-05-04T03:19:59Z<p>Cybermalandro: </p>
<hr />
<div>{{Chapter Template|chaptername=Minneapolis St Paul|extra=The chapter leader is [Kuai]|mailinglistsite=https://lists.owasp.org/mailman/listinfo/owasp-twincities|emailarchives=https://lists.owasp.org/pipermail/owasp-twincities}}<br />
<paypal>Minneapolis St Paul</paypal><br />
<br />
<br />
<br />
=== Upcoming Meetings ===<br />
<h3>June 29th OWASP Meeting – Cassio Goldschmidt<br /><br />
Tracking the progress of an SDL program: lessons from the gym</h3><br />
<br />
Monday, June 29th, 2009, 6:00 p.m.<br />
<br />
<br />
Forcing muscle growth is a long process which requires high intensity weight training and high mental concentration. While the ultimate goal is often clear, one of the greatest mistakes bodybuilders consistently make is to overlook the importance of tracking their weight lifting progress.<br />
<br />
<br />
<br />
Like a successful bodybuilding workout, a security development lifecycle program must consistently log simple to obtain, yet meaningful metrics throughout the entire process. Good metrics must lack subjectivity and clearly aid decision makers to determine areas that need improvement. In this presentation we’ll discuss metrics used to classify and appropriately compare security vulnerabilities found in different phases of the SDL by different teams working in different locations and in different products. We’ll also discuss how to easily provide decision makers different views of the same data and verify whether the process is indeed catching critical vulnerabilities internally.<br />
<br />
=== Speaker Bio === <br />
Cassio Goldschmidt is senior manager of the product security team under the Office of the CTO at Symantec Corporation. In this role he leads efforts across the company to ensure the secure development of software products. His responsibilities include managing Symantec’s internal secure software development process, training, threat modeling and penetration testing. Cassio’s background includes over 12 years of technical and managerial experience in the software industry. During the six years he has been with Symantec, he has helped to architect, design and develop several top selling product releases, conducted numerous security classes, and coordinated various penetration tests.<br />
<br />
<br />
<br />
Cassio represents Symantec on the SAFECode technical committee and (ISC)2 in the development of the CSSLP certification. He holds a bachelor degree in computer science from Pontificia Universidade Catolica do Rio Grande Do Sul, a masters degree in software engineering from Santa Clara University, and a masters of business administration from the University of Southern California.<br />
<br />
=== Where/When ===<br />
Date: Monday, June 29th, 2009<br /><br />
Time: 6:00 p.m.<br /><br />
<br />
Location: L3000 - third Floor of the Library Building, Wheelock Whitney Hall, Minneapolis Community and Technical College (Room and building change from last meeting.)<br />
<br />
Address: 1501 Hennepin Avenue, Minneapolis, MN 55403<br /><br />
<br />
Directions: http://www.minneapolis.edu/campusmaps/index.cfm or http://www.minneapolis.edu/directions.cfm<br />
<br />
=== Agenda ===<br />
5:30 pm – Room opens for Networking<br /><br />
6:00pm - Welcome: OWASP chapter updates, Conference Announcement!<br /><br />
6:30pm – Cassio Goldschmidt – Tracking the progress of an SDL program: lessons from the gym<br /><br />
8:00 pm - Upcoming Events reminder and meeting wrap-up<br />
<br />
Email lalamri@go-integral.com if you plan to attend so we can order enough refreshments.<br />
<br />
===Thank You===<br />
[http://strategicit.org/center/ Center for Strategic Information Technology and Security] for sponsoring our meeting location.<br />
<br />
We currently are looking for a meeting sponsor for refreshments for the meeting and for the book give-away.<br />
<br />
== OWASP & FLOSS Application Security Mini-Conference 2008 - October 21, 2008 ==<br />
Thanks to all who joined us on October 21, 2008 for a [https://www.owasp.org/index.php/OWASP_Minneapolis_St_Paul_2008_Conference '''mini conference''' in October 2008] at University of Minnesota's Saint Paul campus. Our first conference was a great success, with around 150 people attending! We look forward to the next one.<br />
<br />
== Videos ==<br />
<br />
Videos of several past meetings are available at https://www.owasp.org/index.php/Category:OWASP_Video#Videos<br />
<br />
=== Most recent videos: ===<br />
<br />
<br />
[http://www.comotheory.com/owasp/20090427-Gunnar_Peterson_-_OWASP_Top_Ten_Web_Services.mp4 Gunnar Peterson - OWASP Top Ten Web Services - OWASP (MSP) - 27 April 2009 (1 hour, 27 minutes) (MP4, 220 MB...please right click and save)] | Slides Forthcoming<br />
<br />
[http://video.google.com/videoplay?docid=3200887090385342211&hl=en Dan Cornell - Vulnerability Management in an Application Security World - OWASP (MSP) - 16 March 2009 (1 hour, 52 minutes)] | [http://www.owasp.org/images/1/16/VulnerabilityManagementInAnApplicaitonSecurityWorld_OWASPMSP_20090316.pdf Slides (PDF)]<br />
<br />
Rick Ensenbach - Proactive Lifecycle Security Management - OWASP (MSP) - 16 February 2009 ([http://video.google.com/videoplay?docid=2838721966098123222&hl=en Part 1] of 2 - 35 minutes) ([http://video.google.com/videoplay?docid=1766766374336659744&hl=en Part 2] of 2 - 34 minutes) | [https://www.owasp.org/images/f/f8/Proactive_Lifecycle_Security_Management_Presentation_for_OWASP_Mpls-Stp_Chapter_Meeting_-_2-16-09.ppt Slides (PPT)] | [https://www.owasp.org/images/9/9c/Generic_System_Security_Plan.doc Handout: Service/System Security Plan template (DOC)]<br />
<br />
== Upcoming Events ==<br />
=== Bruce Schneier - Special OWASP Chapter Meeting August 24th ===<br />
Please join us to Welcome Bruce Schneier at the University Of Minnesota's Bell Museum Auditorium August 24th<br />
<br />
=== Secure360 ===<br />
[http://www.secure360.org/ Secure360] is an annual<br />
conference providing high quality educational sessions and networking<br />
opportunities while working to identify developing trends in risk<br />
management, physical security, governance, audit, information security,<br />
contingency planning and human capital.<br />
<br />
=== DC612 meetings ===<br />
DC612 meets the 2nd Thursday of the month<br /><br />
http://www.dc612.org/<br />
<br />
== Minneapolis - Saint Paul OWASP Board Members ==<br />
President: [mailto:kuai.hinojosa(at)gmail.com Kuai Hinojosa]<br /><br />
Vice President: [mailto:lorna.alamri(at)owasp.org Lorna Alamri]<br /><br />
Secretary: [mailto:sam.buchanan@gmail.com Sam Buchanan]<br />
<br />
[[Category:Minnesota]]</div>Cybermalandrohttps://wiki.owasp.org/index.php?title=Minneapolis_St_Paul&diff=59990Minneapolis St Paul2009-05-04T02:47:20Z<p>Cybermalandro: </p>
<hr />
<div>{{Chapter Template|chaptername=Minneapolis St Paul|extra=The chapter leader is [Kuai]|mailinglistsite=https://lists.owasp.org/mailman/listinfo/owasp-twincities|emailarchives=https://lists.owasp.org/pipermail/owasp-twincities}}<br />
<paypal>Minneapolis St Paul</paypal><br />
<br />
<br />
<br />
=== Upcoming Meetings ===<br />
<h3>April OWASP Meeting – Gunnar Peterson<br /><br />
OWASP Top Ten Web Services</h3><br />
<br />
Monday, April 27, 2009, 6:00 p.m.<br />
<br />
What do Web apps, Web 2.0, Cloud Computing, SOA, and Rest all have in common? They all use Web services for functionality, data access and integration. Unfortunately, by default Web services also lack a security model. The OWASP Top Ten Web Services goes into the technical details of the vulnerabilities, remediations, and examples of common <br />
<br />
Web services security issues like authentication and authorization flaws, how sensitive data is disclosed, and why security standards like WS-Security and SAML can be your best friend or your worst nightmare.<br />
<br />
=== Speaker Bio === <br />
Gunnar Peterson Managing Principal Arctec Group, a Twin Cities based consulting and training firm. He is also Visiting Scientist at Carnegie Mellon University Software Engineering Institute, editor for IEEE Security & Privacy Journal "Build Security In," and lead on OWASP Top Ten Web Services. He maintains a popular information security blog at http://1raindrop.typepad.com<br />
<br />
=== Where/When ===<br />
Date: Monday, April 27, 2009<br /><br />
Time: 6:00 p.m.<br /><br />
<br />
Location: L3000 - third Floor of the Library Building, Wheelock Whitney Hall, Minneapolis Community and Technical College (Room and building change from last meeting.)<br />
<br />
Address: 1501 Hennepin Avenue, Minneapolis, MN 55403<br /><br />
<br />
Directions: http://www.minneapolis.edu/campusmaps/index.cfm or http://www.minneapolis.edu/directions.cfm<br />
<br />
=== Agenda ===<br />
5:30 pm – Room opens for Networking<br /><br />
6:00pm - Welcome: OWASP chapter updates, Conference Announcement!<br /><br />
6:30pm – Gunnar Peterson – OWASP Top Ten Web Services<br /><br />
8:00 pm - Upcoming Events reminder and meeting wrap-up<br />
<br />
Email lalamri@go-integral.com if you plan to attend so we can order enough refreshments.<br />
<br />
===Thank You===<br />
[http://strategicit.org/center/ Center for Strategic Information Technology and Security] for sponsoring our meeting location.<br />
<br />
We currently are looking for a meeting sponsor for refreshments for the meeting and for the book give-away.<br />
<br />
== OWASP & FLOSS Application Security Mini-Conference 2008 - October 21, 2008 ==<br />
Thanks to all who joined us on October 21, 2008 for a [https://www.owasp.org/index.php/OWASP_Minneapolis_St_Paul_2008_Conference '''mini conference''' in October 2008] at University of Minnesota's Saint Paul campus. Our first conference was a great success, with around 150 people attending! We look forward to the next one.<br />
<br />
== Videos ==<br />
<br />
Videos of several past meetings are available at https://www.owasp.org/index.php/Category:OWASP_Video#Videos<br />
<br />
=== Most recent videos: ===<br />
<br />
<br />
[http://www.comotheory.com/owasp/20090427-Gunnar_Peterson_-_OWASP_Top_Ten_Web_Services.mp4 Gunnar Peterson - OWASP Top Ten Web Services - OWASP (MSP) - 27 April 2009 (1 hour, 27 minutes) (MP4, 220 MB...please right click and save)] | Slides Forthcoming<br />
<br />
[http://video.google.com/videoplay?docid=3200887090385342211&hl=en Dan Cornell - Vulnerability Management in an Application Security World - OWASP (MSP) - 16 March 2009 (1 hour, 52 minutes)] | [http://www.owasp.org/images/1/16/VulnerabilityManagementInAnApplicaitonSecurityWorld_OWASPMSP_20090316.pdf Slides (PDF)]<br />
<br />
Rick Ensenbach - Proactive Lifecycle Security Management - OWASP (MSP) - 16 February 2009 ([http://video.google.com/videoplay?docid=2838721966098123222&hl=en Part 1] of 2 - 35 minutes) ([http://video.google.com/videoplay?docid=1766766374336659744&hl=en Part 2] of 2 - 34 minutes) | [https://www.owasp.org/images/f/f8/Proactive_Lifecycle_Security_Management_Presentation_for_OWASP_Mpls-Stp_Chapter_Meeting_-_2-16-09.ppt Slides (PPT)] | [https://www.owasp.org/images/9/9c/Generic_System_Security_Plan.doc Handout: Service/System Security Plan template (DOC)]<br />
<br />
== Upcoming Events ==<br />
=== Secure360 ===<br />
[http://www.secure360.org/ Secure360] is an annual<br />
conference providing high quality educational sessions and networking<br />
opportunities while working to identify developing trends in risk<br />
management, physical security, governance, audit, information security,<br />
contingency planning and human capital.<br />
<br />
=== DC612 meetings ===<br />
DC612 meets the 2nd Thursday of the month<br /><br />
http://www.dc612.org/<br />
<br />
== Minneapolis - Saint Paul OWASP Board Members ==<br />
President: [mailto:kuai.hinojosa(at)gmail.com Kuai Hinojosa]<br /><br />
Vice President: [mailto:lorna.alamri(at)owasp.org Lorna Alamri]<br /><br />
Secretary: [mailto:sam.buchanan@gmail.com Sam Buchanan]<br />
<br />
[[Category:Minnesota]]</div>Cybermalandrohttps://wiki.owasp.org/index.php?title=Minneapolis_St_Paul&diff=59989Minneapolis St Paul2009-05-04T02:45:09Z<p>Cybermalandro: </p>
<hr />
<div>{{Chapter Template|chaptername=Minneapolis St Paul|extra=The chapter leader is [Kuai]|mailinglistsite=https://lists.owasp.org/mailman/listinfo/owasp-twincities|emailarchives=https://lists.owasp.org/pipermail/owasp-twincities}}<br />
<paypal>Minneapolis St Paul</paypal><br />
<br />
<br />
<br />
==== Upcoming Meetings ====<br />
<h3>April OWASP Meeting – Gunnar Peterson<br /><br />
OWASP Top Ten Web Services</h3><br />
<br />
Monday, April 27, 2009, 6:00 p.m.<br />
<br />
What do Web apps, Web 2.0, Cloud Computing, SOA, and Rest all have in common? They all use Web services for functionality, data access and integration. Unfortunately, by default Web services also lack a security model. The OWASP Top Ten Web Services goes into the technical details of the vulnerabilities, remediations, and examples of common <br />
<br />
Web services security issues like authentication and authorization flaws, how sensitive data is disclosed, and why security standards like WS-Security and SAML can be your best friend or your worst nightmare.<br />
<br />
=== Speaker Bio === <br />
Gunnar Peterson Managing Principal Arctec Group, a Twin Cities based consulting and training firm. He is also Visiting Scientist at Carnegie Mellon University Software Engineering Institute, editor for IEEE Security & Privacy Journal "Build Security In," and lead on OWASP Top Ten Web Services. He maintains a popular information security blog at http://1raindrop.typepad.com<br />
<br />
=== Where/When ===<br />
Date: Monday, April 27, 2009<br /><br />
Time: 6:00 p.m.<br /><br />
<br />
Location: L3000 - third Floor of the Library Building, Wheelock Whitney Hall, Minneapolis Community and Technical College (Room and building change from last meeting.)<br />
<br />
Address: 1501 Hennepin Avenue, Minneapolis, MN 55403<br /><br />
<br />
Directions: http://www.minneapolis.edu/campusmaps/index.cfm or http://www.minneapolis.edu/directions.cfm<br />
<br />
=== Agenda ===<br />
5:30 pm – Room opens for Networking<br /><br />
6:00pm - Welcome: OWASP chapter updates, Conference Announcement!<br /><br />
6:30pm – Gunnar Peterson – OWASP Top Ten Web Services<br /><br />
8:00 pm - Upcoming Events reminder and meeting wrap-up<br />
<br />
Email lalamri@go-integral.com if you plan to attend so we can order enough refreshments.<br />
<br />
===Thank You===<br />
[http://strategicit.org/center/ Center for Strategic Information Technology and Security] for sponsoring our meeting location.<br />
<br />
We currently are looking for a meeting sponsor for refreshments for the meeting and for the book give-away.<br />
<br />
== OWASP & FLOSS Application Security Mini-Conference 2008 - October 21, 2008 ==<br />
Thanks to all who joined us on October 21, 2008 for a [https://www.owasp.org/index.php/OWASP_Minneapolis_St_Paul_2008_Conference '''mini conference''' in October 2008] at University of Minnesota's Saint Paul campus. Our first conference was a great success, with around 150 people attending! We look forward to the next one.<br />
<br />
== Videos ==<br />
<br />
Videos of several past meetings are available at https://www.owasp.org/index.php/Category:OWASP_Video#Videos<br />
<br />
=== Most recent videos: ===<br />
<br />
<br />
[http://www.comotheory.com/owasp/20090427-Gunnar_Peterson_-_OWASP_Top_Ten_Web_Services.mp4 Gunnar Peterson - OWASP Top Ten Web Services - OWASP (MSP) - 27 April 2009 (1 hour, 27 minutes) (MP4, 220 MB...please right click and save)] | Slides Forthcoming<br />
<br />
[http://video.google.com/videoplay?docid=3200887090385342211&hl=en Dan Cornell - Vulnerability Management in an Application Security World - OWASP (MSP) - 16 March 2009 (1 hour, 52 minutes)] | [http://www.owasp.org/images/1/16/VulnerabilityManagementInAnApplicaitonSecurityWorld_OWASPMSP_20090316.pdf Slides (PDF)]<br />
<br />
Rick Ensenbach - Proactive Lifecycle Security Management - OWASP (MSP) - 16 February 2009 ([http://video.google.com/videoplay?docid=2838721966098123222&hl=en Part 1] of 2 - 35 minutes) ([http://video.google.com/videoplay?docid=1766766374336659744&hl=en Part 2] of 2 - 34 minutes) | [https://www.owasp.org/images/f/f8/Proactive_Lifecycle_Security_Management_Presentation_for_OWASP_Mpls-Stp_Chapter_Meeting_-_2-16-09.ppt Slides (PPT)] | [https://www.owasp.org/images/9/9c/Generic_System_Security_Plan.doc Handout: Service/System Security Plan template (DOC)]<br />
<br />
== Upcoming Events ==<br />
=== Secure360 ===<br />
[http://www.secure360.org/ Secure360] is an annual<br />
conference providing high quality educational sessions and networking<br />
opportunities while working to identify developing trends in risk<br />
management, physical security, governance, audit, information security,<br />
contingency planning and human capital.<br />
<br />
=== DC612 meetings ===<br />
DC612 meets the 2nd Thursday of the month<br /><br />
http://www.dc612.org/<br />
<br />
== Minneapolis - Saint Paul OWASP Board Members ==<br />
President: [mailto:kuai.hinojosa(at)gmail.com Kuai Hinojosa]<br /><br />
Vice President: [mailto:lorna.alamri(at)owasp.org Lorna Alamri]<br /><br />
Secretary: [mailto:sam.buchanan@gmail.com Sam Buchanan]<br />
<br />
[[Category:Minnesota]]</div>Cybermalandrohttps://wiki.owasp.org/index.php?title=Global_Education_Committee&diff=52680Global Education Committee2009-02-02T03:57:07Z<p>Cybermalandro: /* Education material */</p>
<hr />
<div>[[Category:OWASP Project]]<br />
<br />
= About the Global Education Committee =<br />
'''The Global Education Committee was created during the OWASP EU Summit in Portugal 2008. The primary purpose of the Global Education Committee is: to work with the [https://www.owasp.org/index.php/Category:OWASP_Education_Project OWASP Education Project] to provide educational materials for both internal and external users, develop liaisons with educational institutions worldwide.'''<br />
<br />
== Mission ==<br />
Provide awareness, training and educational services to corporate,<br />
government and educational institutions on application security.<br />
<br />
== Vision ==<br />
Make OWASP educational material globally available as a well known resource<br />
in easily consumable form mapped to a framework tied specifically to user<br />
roles and responsibilities<br />
<br />
== Committee Members ==<br />
Education Committee (Board Member Rep: [mailto:seba@owasp.org Seba])<br />
<br />
• [mailto:martin.knobloch@owasp.org Martin Knobloch] (Netherlands)<br />
<br />
• [mailto:mano.paul@securisksolutions.com Mano Paul] (U.S.)<br />
<br />
• [mailto:eduardo.neves@owasp.org Eduardo Neves] (Brazil)<br />
<br />
• [mailto:kuai.hinojosa@owasp.org Kuai Hinjosa] (U.S.)<br />
<br />
• [mailto:cecil.su@GRANTTHORNTON.COM.SG Cecil Su] (Singapore)<br />
<br />
• [mailto:fabio.e.cerullo@aib.ie Fabio Cerullo] (Ireland)<br />
<br />
• [mailto:andrzej.targosz@proidea.org.pl Andrzej Targosz] (Poland)<br />
<br />
[https://www.owasp.org/index.php/How_to_Join_a_Committee How to join this committee]<br />
<br />
[https://lists.owasp.org/mailman/listinfo/global_education_committee Join our mailing list]<br />
<br />
== Scheduled Meetings ==<br />
<pre><br />
The Global Education Committee Meetings take place via Skype, see below for the local time: <br />
3:30 p.m. @ Austin, Texas <br />
4:30 p.m. @ New York <br />
7:30 p.m. @ Brasil <br />
22:30 a.m. @ Netherlands<br />
5:30 a.m. @ Singapore (following day)<br />
</pre><br />
Next meeting(s) scheduled for:<br />
* '''January 29th 2009'''<br />
* '''Februari 12th 2009'''<br />
<br />
= Agenda / Timeline <font color="red">'''(DRAFT)'''</font> =<br />
''' Deadline wednesday, 4th Februari'''<br />
== Tasks ==<br />
''' 60 days to make a proposal '''<br />
* ''' December 20th ''' - first draft of the proposal<br />
* ''' January 16th ''' - submit <br />
<br />
<br />
== Targets <font color="red">'''(DRAFT)'''</font> ==<br />
Below you can find the timeline, what has to be achieved by when. <br />
All tasks must be SMART!<br />
<br />
{| class="prettytable"<br />
! Task<br />
! Deadline<br />
! Type<br />
! Status<br />
! Description<br />
! Who<br />
|-<br />
| [[Categorize (Organization) of educational materials]]<br />
| '''TBD'''<br />
| Message<br />
| Status<br />
| Categorize / Organization of the educational materials for audience by roles and responsibilities/technologies and use the summit workshop notes.<br />
| Martin<br />
|-<br />
| [[Train the trainers (Teach the teachers)]]<br />
| '''Q1/Q2/Q3/Q4 2009'''<br />
| Delivery <br />
| Planning<br />
| Develop a train the trainer program that will train trainers to deliver training on OWASP related material.<br />
| Mano<br />
|-<br />
| [[Create an online assessment and training portal]]<br />
| '''Q2/Q3/Q4 2009'''<br />
| Delivery <br />
| Planning<br />
| Develop an OWASP assessment and training portal that end users can use to gauge their knowledge on OWASP concepts and training providers can use to promote their training offerings.<br />
| Mano<br />
|-<br />
| [[OWASP Boot Camp Project]]<br />
| '''Proposal:''' February 2009 '''Final:''' Oktober 2009 at OWASP AppSec US 2009<br />
| Delivery <br />
| started<br />
| OWASP Boot Camp about the OWASP projects, to deliver a Boot Camp presentation should be one of the criteria to get an alpha status as project<br />
| Martin<br />
|-<br />
| [[OWASP CTF event]]<br />
| OWASP AppSec Denver 2009<br />
| Delivery <br />
| Status<br />
| Description<br />
| Martin<br />
|-<br />
| [[Speakers Bureau Project]]<br />
| '''TBD'''<br />
| Delivery <br />
| '''started'''<br />
| List of speakers, Name, Bio, Topics, History <br><br />
Speakers in conferences (OOTM ask for funds on this)/summit <br />
| Martin<br />
|-<br />
| [[Marketing efforts]]<br />
| '''TBD (discussion with other members)'''<br />
| Awareness Services <br />
| Status<br />
| Flyers or Brochures of OWASP Top 10, Testing Guide.<br />
| Eduardo<br />
|-<br />
| [[Internationalization of the training materials]]<br />
| '''TBD (discussion with Juan)'''<br />
| Awareness Services <br />
| Status<br />
| Liaise with Juan Calderon for translation services for highly spoken languages <br />
| Eduardo<br />
|-<br />
| [[Education material]]<br />
| '''TBD'''<br />
| Training & Educational Services <br />
| Status<br />
| All projects should be summoned to create educational material (training service)<br />
1) Each Projects --> Documents (help), Tool, Training; Live CD (Portable)<br />
| Martin<br />
|-<br />
| [[Educational Academic Services]]<br />
| '''TBD'''<br />
| Training & Educational Services <br />
| <br />
<br />
3 Universities already in contact with and planning OWASP events to participate in. <br />
<br />
| Incorporate OWASP into the following top 5 Universities, within the next 12 months by introducing OWASP training and education resources at University's events.<br />
<br />
1) New York University<br />
2) Cornell University<br />
3) Princeton University<br />
4) University of Minnesota<br />
5) Columbia University<br />
<br />
As a result of these initiative we would hope to see:<br />
<br />
1) Confirming participation at arranged events<br />
2) Asking Universities to recognize they are using our resources by allowing us to place their names in wiki pages such as http://www.owasp.org/index.php/OWASP_Top_Ten_Project <br />
3) University faculty, staff and students participate in local and international events/meetings<br />
4) University faculty, staff and students contribute to OWASP projects<br />
<br />
|Kuai Hinojosa<br />
|}<br />
<br />
= Proposal <font color="red">'''(DRAFT)'''</font> =<br />
== Categorize (Organization) of educational materials ==<br />
Objective: Categorize / Organize educational material, estyle the Education Project website.<br><br />
<br />
Activities/Deadline:<br> <br />
* Categorize education material according to the CLASP roles<br><br />
* Group material into management-ish, student-ish, technical-ish <br><br />
<br />
Benefits<br><br />
Target specific demographic (managers, students...) Provide easy access to education material. Efficient categorization of education materials.<br />
<br />
== Train the trainers (Teach the teachers) ==<br />
Objective:<br />
Develop a train the trainer program that will train trainers to deliver training on OWASP related material.<br />
<br />
Activities/Deadline:<br />
# Develop a criteria to identify and approve trainers / Q1 2009<br />
# Identify pertinent OWASP related material that will be included in the training kit / Q2 2009. This is dependent on the education project organizing material.<br />
# Create a training toolkit with pre-built presentation and training materials, assessments etc. / Q3 2009<br />
# Conduct train the trainer sessions (remote or in-person) / Q4 2009<br />
<br />
Benefits:<br />
The training kit and trained trainers will be available resources promoting OWASP in local events worldwide.<br />
<br />
== Create an online assessment and training portal ==<br />
Objective:<br />
Develop an OWASP assessment and training portal that end users can use to gauge their knowledge on OWASP concepts and training providers can use to promote their training offerings.<br />
<br />
Activities/Deadline:<br />
# Generate OWASP assessment items (can use the testing guide and other sources) / Q2-Q3 2009<br />
# Develop an assessment portal to deliver taking of assessments with robust reporting by knowledge area / Q4 2009<br />
# Develop a training portal to allow training providers to publish and promote their training offerings / Q4 2009<br />
This can be developed as a summer of code project but is not a requirement. <br />
<br />
Benefits:<br />
Assessments that can be offered in OWASP events and other conferences to users will increase OWASP awareness. The portal can become the link between trainers and trainees and will eventually help in increasing the awareness and knowledge of application security in the industry.<br />
<br />
== OWASP Boot Camp Project ==<br />
Objective<br><br />
To deliver a Boot Camp session which would lead to be one of the main criteria to produce alpha status projects<br />
<br />
Activities/Deadline:<br> <br />
<br />
Benefits<br><br />
<br />
== OWASP CTF event ==<br />
Objective<br />
Generate a Capture The Flag framework to be offered at OWASP events<br />
<br />
Activities/Deadline: <br />
* Andrzej will contact the organizers of the CTF from the Denver OWASP Conference and work in using same model<br />
<br />
Benefits<br />
Capture The Flag events are very popular in conferences, creating and OWASP specific CTF will offer entertainment at events, generate attendants participation etc.<br />
<br />
== Speakers Bureau Project ==<br />
<br />
Objective<br><br />
OWASP Boot Camp about the OWASP projects, to deliver a Boot Camp presentation should be one of the criteria to get an alpha status as project<br><br />
<br />
Activities/Deadline:<br> <br />
<br />
Benefits<br><br />
List of speakers, Name, Bio, Topics, History <br />
Speakers in conferences (OOTM ask for funds on this)/summit<br />
<br />
Speakers Agreement - https://www.owasp.org/index.php/Speaker_Agreement<br />
<br />
== Marketing efforts ==<br />
Objective: To promote OWASP projects, events, education material and OWASP mission.<br><br />
<br />
Activities/Deadline:<br> <br />
* Gather flyers, Brochures of OWASP Top 10, Testing Guide<br />
<br />
Benefits<br><br />
Group promotional material which can be hand out at events<br />
<br />
== Internationalization of the training materials ==<br />
Objective<br><br />
Translate training materials<br />
<br />
Activities/Deadline:<br> <br />
Identify point of contacts places for translation efforts and setup a deadline<br />
Translate material in French, Portuguese, Spanish, Malay, Italian, Indonesian, Chinese<br />
<br />
Benefits<br><br />
To reach international audiences<br />
<br />
== Education material ==<br />
Objective: Consolidate all projects (Tools, Help Documents, Presentations, LiveCD) create educational material (training service) <br />
<br />
Activities/Deadline:<br> <br />
<br />
Benefits<br><br />
<br />
== Academic Educational Services ==<br />
Objectives<br><br />
Promote and encourage OWASP resources at accredited Universities around the world within the next 12 months by introducing OWASP training and education material at University's events.<br />
<br />
Activities/Deadline:<br />
<br />
* Build a list of at least 5 Universities with computer science or risk management programs that can be targeted /Q1 2009 <br />
* Establish communication with targeted universities, generate key contacts and establish relationships /Q1 - Q4 2009<br />
* Develop a list of possible academic events in which to participate /Q1 - Q2 2009 <br />
* Participate in at least 1 Academic event, present case studies or OWASP education materials /Q1 - Q4<br />
<br />
Benefits<br><br />
OWASP will gain exposure in the academic industry, starting with accredited universities around the world. Universities will become members of OWASP, provide meeting space, students will apply to OWASP grants, and provide support and structure</div>Cybermalandrohttps://wiki.owasp.org/index.php?title=Global_Education_Committee&diff=52679Global Education Committee2009-02-02T03:53:08Z<p>Cybermalandro: /* OWASP Boot Camp Project */</p>
<hr />
<div>[[Category:OWASP Project]]<br />
<br />
= About the Global Education Committee =<br />
'''The Global Education Committee was created during the OWASP EU Summit in Portugal 2008. The primary purpose of the Global Education Committee is: to work with the [https://www.owasp.org/index.php/Category:OWASP_Education_Project OWASP Education Project] to provide educational materials for both internal and external users, develop liaisons with educational institutions worldwide.'''<br />
<br />
== Mission ==<br />
Provide awareness, training and educational services to corporate,<br />
government and educational institutions on application security.<br />
<br />
== Vision ==<br />
Make OWASP educational material globally available as a well known resource<br />
in easily consumable form mapped to a framework tied specifically to user<br />
roles and responsibilities<br />
<br />
== Committee Members ==<br />
Education Committee (Board Member Rep: [mailto:seba@owasp.org Seba])<br />
<br />
• [mailto:martin.knobloch@owasp.org Martin Knobloch] (Netherlands)<br />
<br />
• [mailto:mano.paul@securisksolutions.com Mano Paul] (U.S.)<br />
<br />
• [mailto:eduardo.neves@owasp.org Eduardo Neves] (Brazil)<br />
<br />
• [mailto:kuai.hinojosa@owasp.org Kuai Hinjosa] (U.S.)<br />
<br />
• [mailto:cecil.su@GRANTTHORNTON.COM.SG Cecil Su] (Singapore)<br />
<br />
• [mailto:fabio.e.cerullo@aib.ie Fabio Cerullo] (Ireland)<br />
<br />
• [mailto:andrzej.targosz@proidea.org.pl Andrzej Targosz] (Poland)<br />
<br />
[https://www.owasp.org/index.php/How_to_Join_a_Committee How to join this committee]<br />
<br />
[https://lists.owasp.org/mailman/listinfo/global_education_committee Join our mailing list]<br />
<br />
== Scheduled Meetings ==<br />
<pre><br />
The Global Education Committee Meetings take place via Skype, see below for the local time: <br />
3:30 p.m. @ Austin, Texas <br />
4:30 p.m. @ New York <br />
7:30 p.m. @ Brasil <br />
22:30 a.m. @ Netherlands<br />
5:30 a.m. @ Singapore (following day)<br />
</pre><br />
Next meeting(s) scheduled for:<br />
* '''January 29th 2009'''<br />
* '''Februari 12th 2009'''<br />
<br />
= Agenda / Timeline <font color="red">'''(DRAFT)'''</font> =<br />
''' Deadline wednesday, 4th Februari'''<br />
== Tasks ==<br />
''' 60 days to make a proposal '''<br />
* ''' December 20th ''' - first draft of the proposal<br />
* ''' January 16th ''' - submit <br />
<br />
<br />
== Targets <font color="red">'''(DRAFT)'''</font> ==<br />
Below you can find the timeline, what has to be achieved by when. <br />
All tasks must be SMART!<br />
<br />
{| class="prettytable"<br />
! Task<br />
! Deadline<br />
! Type<br />
! Status<br />
! Description<br />
! Who<br />
|-<br />
| [[Categorize (Organization) of educational materials]]<br />
| '''TBD'''<br />
| Message<br />
| Status<br />
| Categorize / Organization of the educational materials for audience by roles and responsibilities/technologies and use the summit workshop notes.<br />
| Martin<br />
|-<br />
| [[Train the trainers (Teach the teachers)]]<br />
| '''Q1/Q2/Q3/Q4 2009'''<br />
| Delivery <br />
| Planning<br />
| Develop a train the trainer program that will train trainers to deliver training on OWASP related material.<br />
| Mano<br />
|-<br />
| [[Create an online assessment and training portal]]<br />
| '''Q2/Q3/Q4 2009'''<br />
| Delivery <br />
| Planning<br />
| Develop an OWASP assessment and training portal that end users can use to gauge their knowledge on OWASP concepts and training providers can use to promote their training offerings.<br />
| Mano<br />
|-<br />
| [[OWASP Boot Camp Project]]<br />
| '''Proposal:''' February 2009 '''Final:''' Oktober 2009 at OWASP AppSec US 2009<br />
| Delivery <br />
| started<br />
| OWASP Boot Camp about the OWASP projects, to deliver a Boot Camp presentation should be one of the criteria to get an alpha status as project<br />
| Martin<br />
|-<br />
| [[OWASP CTF event]]<br />
| OWASP AppSec Denver 2009<br />
| Delivery <br />
| Status<br />
| Description<br />
| Martin<br />
|-<br />
| [[Speakers Bureau Project]]<br />
| '''TBD'''<br />
| Delivery <br />
| '''started'''<br />
| List of speakers, Name, Bio, Topics, History <br><br />
Speakers in conferences (OOTM ask for funds on this)/summit <br />
| Martin<br />
|-<br />
| [[Marketing efforts]]<br />
| '''TBD (discussion with other members)'''<br />
| Awareness Services <br />
| Status<br />
| Flyers or Brochures of OWASP Top 10, Testing Guide.<br />
| Eduardo<br />
|-<br />
| [[Internationalization of the training materials]]<br />
| '''TBD (discussion with Juan)'''<br />
| Awareness Services <br />
| Status<br />
| Liaise with Juan Calderon for translation services for highly spoken languages <br />
| Eduardo<br />
|-<br />
| [[Education material]]<br />
| '''TBD'''<br />
| Training & Educational Services <br />
| Status<br />
| All projects should be summoned to create educational material (training service)<br />
1) Each Projects --> Documents (help), Tool, Training; Live CD (Portable)<br />
| Martin<br />
|-<br />
| [[Educational Academic Services]]<br />
| '''TBD'''<br />
| Training & Educational Services <br />
| <br />
<br />
3 Universities already in contact with and planning OWASP events to participate in. <br />
<br />
| Incorporate OWASP into the following top 5 Universities, within the next 12 months by introducing OWASP training and education resources at University's events.<br />
<br />
1) New York University<br />
2) Cornell University<br />
3) Princeton University<br />
4) University of Minnesota<br />
5) Columbia University<br />
<br />
As a result of these initiative we would hope to see:<br />
<br />
1) Confirming participation at arranged events<br />
2) Asking Universities to recognize they are using our resources by allowing us to place their names in wiki pages such as http://www.owasp.org/index.php/OWASP_Top_Ten_Project <br />
3) University faculty, staff and students participate in local and international events/meetings<br />
4) University faculty, staff and students contribute to OWASP projects<br />
<br />
|Kuai Hinojosa<br />
|}<br />
<br />
= Proposal <font color="red">'''(DRAFT)'''</font> =<br />
== Categorize (Organization) of educational materials ==<br />
Objective: Categorize / Organize educational material, estyle the Education Project website.<br><br />
<br />
Activities/Deadline:<br> <br />
* Categorize education material according to the CLASP roles<br><br />
* Group material into management-ish, student-ish, technical-ish <br><br />
<br />
Benefits<br><br />
Target specific demographic (managers, students...) Provide easy access to education material. Efficient categorization of education materials.<br />
<br />
== Train the trainers (Teach the teachers) ==<br />
Objective:<br />
Develop a train the trainer program that will train trainers to deliver training on OWASP related material.<br />
<br />
Activities/Deadline:<br />
# Develop a criteria to identify and approve trainers / Q1 2009<br />
# Identify pertinent OWASP related material that will be included in the training kit / Q2 2009. This is dependent on the education project organizing material.<br />
# Create a training toolkit with pre-built presentation and training materials, assessments etc. / Q3 2009<br />
# Conduct train the trainer sessions (remote or in-person) / Q4 2009<br />
<br />
Benefits:<br />
The training kit and trained trainers will be available resources promoting OWASP in local events worldwide.<br />
<br />
== Create an online assessment and training portal ==<br />
Objective:<br />
Develop an OWASP assessment and training portal that end users can use to gauge their knowledge on OWASP concepts and training providers can use to promote their training offerings.<br />
<br />
Activities/Deadline:<br />
# Generate OWASP assessment items (can use the testing guide and other sources) / Q2-Q3 2009<br />
# Develop an assessment portal to deliver taking of assessments with robust reporting by knowledge area / Q4 2009<br />
# Develop a training portal to allow training providers to publish and promote their training offerings / Q4 2009<br />
This can be developed as a summer of code project but is not a requirement. <br />
<br />
Benefits:<br />
Assessments that can be offered in OWASP events and other conferences to users will increase OWASP awareness. The portal can become the link between trainers and trainees and will eventually help in increasing the awareness and knowledge of application security in the industry.<br />
<br />
== OWASP Boot Camp Project ==<br />
Objective<br><br />
To deliver a Boot Camp session which would lead to be one of the main criteria to produce alpha status projects<br />
<br />
Activities/Deadline:<br> <br />
<br />
Benefits<br><br />
<br />
== OWASP CTF event ==<br />
Objective<br />
Generate a Capture The Flag framework to be offered at OWASP events<br />
<br />
Activities/Deadline: <br />
* Andrzej will contact the organizers of the CTF from the Denver OWASP Conference and work in using same model<br />
<br />
Benefits<br />
Capture The Flag events are very popular in conferences, creating and OWASP specific CTF will offer entertainment at events, generate attendants participation etc.<br />
<br />
== Speakers Bureau Project ==<br />
<br />
Objective<br><br />
OWASP Boot Camp about the OWASP projects, to deliver a Boot Camp presentation should be one of the criteria to get an alpha status as project<br><br />
<br />
Activities/Deadline:<br> <br />
<br />
Benefits<br><br />
List of speakers, Name, Bio, Topics, History <br />
Speakers in conferences (OOTM ask for funds on this)/summit<br />
<br />
Speakers Agreement - https://www.owasp.org/index.php/Speaker_Agreement<br />
<br />
== Marketing efforts ==<br />
Objective: To promote OWASP projects, events, education material and OWASP mission.<br><br />
<br />
Activities/Deadline:<br> <br />
* Gather flyers, Brochures of OWASP Top 10, Testing Guide<br />
<br />
Benefits<br><br />
Group promotional material which can be hand out at events<br />
<br />
== Internationalization of the training materials ==<br />
Objective<br><br />
Translate training materials<br />
<br />
Activities/Deadline:<br> <br />
Identify point of contacts places for translation efforts and setup a deadline<br />
Translate material in French, Portuguese, Spanish, Malay, Italian, Indonesian, Chinese<br />
<br />
Benefits<br><br />
To reach international audiences<br />
<br />
== Education material ==<br />
Objective<br><br />
<br />
Activities/Deadline:<br> <br />
<br />
Benefits<br><br />
<br />
Flyers or Brochures of OWASP Top 10, Testing Guide.<br />
<br />
== Academic Educational Services ==<br />
Objectives<br><br />
Promote and encourage OWASP resources at accredited Universities around the world within the next 12 months by introducing OWASP training and education material at University's events.<br />
<br />
Activities/Deadline:<br />
<br />
* Build a list of at least 5 Universities with computer science or risk management programs that can be targeted /Q1 2009 <br />
* Establish communication with targeted universities, generate key contacts and establish relationships /Q1 - Q4 2009<br />
* Develop a list of possible academic events in which to participate /Q1 - Q2 2009 <br />
* Participate in at least 1 Academic event, present case studies or OWASP education materials /Q1 - Q4<br />
<br />
Benefits<br><br />
OWASP will gain exposure in the academic industry, starting with accredited universities around the world. Universities will become members of OWASP, provide meeting space, students will apply to OWASP grants, and provide support and structure</div>Cybermalandrohttps://wiki.owasp.org/index.php?title=Global_Education_Committee&diff=52678Global Education Committee2009-02-02T03:51:20Z<p>Cybermalandro: /* Marketing efforts */</p>
<hr />
<div>[[Category:OWASP Project]]<br />
<br />
= About the Global Education Committee =<br />
'''The Global Education Committee was created during the OWASP EU Summit in Portugal 2008. The primary purpose of the Global Education Committee is: to work with the [https://www.owasp.org/index.php/Category:OWASP_Education_Project OWASP Education Project] to provide educational materials for both internal and external users, develop liaisons with educational institutions worldwide.'''<br />
<br />
== Mission ==<br />
Provide awareness, training and educational services to corporate,<br />
government and educational institutions on application security.<br />
<br />
== Vision ==<br />
Make OWASP educational material globally available as a well known resource<br />
in easily consumable form mapped to a framework tied specifically to user<br />
roles and responsibilities<br />
<br />
== Committee Members ==<br />
Education Committee (Board Member Rep: [mailto:seba@owasp.org Seba])<br />
<br />
• [mailto:martin.knobloch@owasp.org Martin Knobloch] (Netherlands)<br />
<br />
• [mailto:mano.paul@securisksolutions.com Mano Paul] (U.S.)<br />
<br />
• [mailto:eduardo.neves@owasp.org Eduardo Neves] (Brazil)<br />
<br />
• [mailto:kuai.hinojosa@owasp.org Kuai Hinjosa] (U.S.)<br />
<br />
• [mailto:cecil.su@GRANTTHORNTON.COM.SG Cecil Su] (Singapore)<br />
<br />
• [mailto:fabio.e.cerullo@aib.ie Fabio Cerullo] (Ireland)<br />
<br />
• [mailto:andrzej.targosz@proidea.org.pl Andrzej Targosz] (Poland)<br />
<br />
[https://www.owasp.org/index.php/How_to_Join_a_Committee How to join this committee]<br />
<br />
[https://lists.owasp.org/mailman/listinfo/global_education_committee Join our mailing list]<br />
<br />
== Scheduled Meetings ==<br />
<pre><br />
The Global Education Committee Meetings take place via Skype, see below for the local time: <br />
3:30 p.m. @ Austin, Texas <br />
4:30 p.m. @ New York <br />
7:30 p.m. @ Brasil <br />
22:30 a.m. @ Netherlands<br />
5:30 a.m. @ Singapore (following day)<br />
</pre><br />
Next meeting(s) scheduled for:<br />
* '''January 29th 2009'''<br />
* '''Februari 12th 2009'''<br />
<br />
= Agenda / Timeline <font color="red">'''(DRAFT)'''</font> =<br />
''' Deadline wednesday, 4th Februari'''<br />
== Tasks ==<br />
''' 60 days to make a proposal '''<br />
* ''' December 20th ''' - first draft of the proposal<br />
* ''' January 16th ''' - submit <br />
<br />
<br />
== Targets <font color="red">'''(DRAFT)'''</font> ==<br />
Below you can find the timeline, what has to be achieved by when. <br />
All tasks must be SMART!<br />
<br />
{| class="prettytable"<br />
! Task<br />
! Deadline<br />
! Type<br />
! Status<br />
! Description<br />
! Who<br />
|-<br />
| [[Categorize (Organization) of educational materials]]<br />
| '''TBD'''<br />
| Message<br />
| Status<br />
| Categorize / Organization of the educational materials for audience by roles and responsibilities/technologies and use the summit workshop notes.<br />
| Martin<br />
|-<br />
| [[Train the trainers (Teach the teachers)]]<br />
| '''Q1/Q2/Q3/Q4 2009'''<br />
| Delivery <br />
| Planning<br />
| Develop a train the trainer program that will train trainers to deliver training on OWASP related material.<br />
| Mano<br />
|-<br />
| [[Create an online assessment and training portal]]<br />
| '''Q2/Q3/Q4 2009'''<br />
| Delivery <br />
| Planning<br />
| Develop an OWASP assessment and training portal that end users can use to gauge their knowledge on OWASP concepts and training providers can use to promote their training offerings.<br />
| Mano<br />
|-<br />
| [[OWASP Boot Camp Project]]<br />
| '''Proposal:''' February 2009 '''Final:''' Oktober 2009 at OWASP AppSec US 2009<br />
| Delivery <br />
| started<br />
| OWASP Boot Camp about the OWASP projects, to deliver a Boot Camp presentation should be one of the criteria to get an alpha status as project<br />
| Martin<br />
|-<br />
| [[OWASP CTF event]]<br />
| OWASP AppSec Denver 2009<br />
| Delivery <br />
| Status<br />
| Description<br />
| Martin<br />
|-<br />
| [[Speakers Bureau Project]]<br />
| '''TBD'''<br />
| Delivery <br />
| '''started'''<br />
| List of speakers, Name, Bio, Topics, History <br><br />
Speakers in conferences (OOTM ask for funds on this)/summit <br />
| Martin<br />
|-<br />
| [[Marketing efforts]]<br />
| '''TBD (discussion with other members)'''<br />
| Awareness Services <br />
| Status<br />
| Flyers or Brochures of OWASP Top 10, Testing Guide.<br />
| Eduardo<br />
|-<br />
| [[Internationalization of the training materials]]<br />
| '''TBD (discussion with Juan)'''<br />
| Awareness Services <br />
| Status<br />
| Liaise with Juan Calderon for translation services for highly spoken languages <br />
| Eduardo<br />
|-<br />
| [[Education material]]<br />
| '''TBD'''<br />
| Training & Educational Services <br />
| Status<br />
| All projects should be summoned to create educational material (training service)<br />
1) Each Projects --> Documents (help), Tool, Training; Live CD (Portable)<br />
| Martin<br />
|-<br />
| [[Educational Academic Services]]<br />
| '''TBD'''<br />
| Training & Educational Services <br />
| <br />
<br />
3 Universities already in contact with and planning OWASP events to participate in. <br />
<br />
| Incorporate OWASP into the following top 5 Universities, within the next 12 months by introducing OWASP training and education resources at University's events.<br />
<br />
1) New York University<br />
2) Cornell University<br />
3) Princeton University<br />
4) University of Minnesota<br />
5) Columbia University<br />
<br />
As a result of these initiative we would hope to see:<br />
<br />
1) Confirming participation at arranged events<br />
2) Asking Universities to recognize they are using our resources by allowing us to place their names in wiki pages such as http://www.owasp.org/index.php/OWASP_Top_Ten_Project <br />
3) University faculty, staff and students participate in local and international events/meetings<br />
4) University faculty, staff and students contribute to OWASP projects<br />
<br />
|Kuai Hinojosa<br />
|}<br />
<br />
= Proposal <font color="red">'''(DRAFT)'''</font> =<br />
== Categorize (Organization) of educational materials ==<br />
Objective: Categorize / Organize educational material, estyle the Education Project website.<br><br />
<br />
Activities/Deadline:<br> <br />
* Categorize education material according to the CLASP roles<br><br />
* Group material into management-ish, student-ish, technical-ish <br><br />
<br />
Benefits<br><br />
Target specific demographic (managers, students...) Provide easy access to education material. Efficient categorization of education materials.<br />
<br />
== Train the trainers (Teach the teachers) ==<br />
Objective:<br />
Develop a train the trainer program that will train trainers to deliver training on OWASP related material.<br />
<br />
Activities/Deadline:<br />
# Develop a criteria to identify and approve trainers / Q1 2009<br />
# Identify pertinent OWASP related material that will be included in the training kit / Q2 2009. This is dependent on the education project organizing material.<br />
# Create a training toolkit with pre-built presentation and training materials, assessments etc. / Q3 2009<br />
# Conduct train the trainer sessions (remote or in-person) / Q4 2009<br />
<br />
Benefits:<br />
The training kit and trained trainers will be available resources promoting OWASP in local events worldwide.<br />
<br />
== Create an online assessment and training portal ==<br />
Objective:<br />
Develop an OWASP assessment and training portal that end users can use to gauge their knowledge on OWASP concepts and training providers can use to promote their training offerings.<br />
<br />
Activities/Deadline:<br />
# Generate OWASP assessment items (can use the testing guide and other sources) / Q2-Q3 2009<br />
# Develop an assessment portal to deliver taking of assessments with robust reporting by knowledge area / Q4 2009<br />
# Develop a training portal to allow training providers to publish and promote their training offerings / Q4 2009<br />
This can be developed as a summer of code project but is not a requirement. <br />
<br />
Benefits:<br />
Assessments that can be offered in OWASP events and other conferences to users will increase OWASP awareness. The portal can become the link between trainers and trainees and will eventually help in increasing the awareness and knowledge of application security in the industry.<br />
<br />
== OWASP Boot Camp Project ==<br />
Objective<br><br />
To deliver a Boot Camp session which would lead to be one of the main criteria to produce alpha status projects<br />
Activities/Deadline:<br> <br />
<br />
Benefits<br><br />
<br />
== OWASP CTF event ==<br />
Objective<br />
Generate a Capture The Flag framework to be offered at OWASP events<br />
<br />
Activities/Deadline: <br />
* Andrzej will contact the organizers of the CTF from the Denver OWASP Conference and work in using same model<br />
<br />
Benefits<br />
Capture The Flag events are very popular in conferences, creating and OWASP specific CTF will offer entertainment at events, generate attendants participation etc.<br />
<br />
== Speakers Bureau Project ==<br />
<br />
Objective<br><br />
OWASP Boot Camp about the OWASP projects, to deliver a Boot Camp presentation should be one of the criteria to get an alpha status as project<br><br />
<br />
Activities/Deadline:<br> <br />
<br />
Benefits<br><br />
List of speakers, Name, Bio, Topics, History <br />
Speakers in conferences (OOTM ask for funds on this)/summit<br />
<br />
Speakers Agreement - https://www.owasp.org/index.php/Speaker_Agreement<br />
<br />
== Marketing efforts ==<br />
Objective: To promote OWASP projects, events, education material and OWASP mission.<br><br />
<br />
Activities/Deadline:<br> <br />
* Gather flyers, Brochures of OWASP Top 10, Testing Guide<br />
<br />
Benefits<br><br />
Group promotional material which can be hand out at events<br />
<br />
== Internationalization of the training materials ==<br />
Objective<br><br />
Translate training materials<br />
<br />
Activities/Deadline:<br> <br />
Identify point of contacts places for translation efforts and setup a deadline<br />
Translate material in French, Portuguese, Spanish, Malay, Italian, Indonesian, Chinese<br />
<br />
Benefits<br><br />
To reach international audiences<br />
<br />
== Education material ==<br />
Objective<br><br />
<br />
Activities/Deadline:<br> <br />
<br />
Benefits<br><br />
<br />
Flyers or Brochures of OWASP Top 10, Testing Guide.<br />
<br />
== Academic Educational Services ==<br />
Objectives<br><br />
Promote and encourage OWASP resources at accredited Universities around the world within the next 12 months by introducing OWASP training and education material at University's events.<br />
<br />
Activities/Deadline:<br />
<br />
* Build a list of at least 5 Universities with computer science or risk management programs that can be targeted /Q1 2009 <br />
* Establish communication with targeted universities, generate key contacts and establish relationships /Q1 - Q4 2009<br />
* Develop a list of possible academic events in which to participate /Q1 - Q2 2009 <br />
* Participate in at least 1 Academic event, present case studies or OWASP education materials /Q1 - Q4<br />
<br />
Benefits<br><br />
OWASP will gain exposure in the academic industry, starting with accredited universities around the world. Universities will become members of OWASP, provide meeting space, students will apply to OWASP grants, and provide support and structure</div>Cybermalandrohttps://wiki.owasp.org/index.php?title=Global_Education_Committee&diff=52677Global Education Committee2009-02-02T03:24:27Z<p>Cybermalandro: /* Internationalization of the training materials */</p>
<hr />
<div>[[Category:OWASP Project]]<br />
<br />
= About the Global Education Committee =<br />
'''The Global Education Committee was created during the OWASP EU Summit in Portugal 2008. The primary purpose of the Global Education Committee is: to work with the [https://www.owasp.org/index.php/Category:OWASP_Education_Project OWASP Education Project] to provide educational materials for both internal and external users, develop liaisons with educational institutions worldwide.'''<br />
<br />
== Mission ==<br />
Provide awareness, training and educational services to corporate,<br />
government and educational institutions on application security.<br />
<br />
== Vision ==<br />
Make OWASP educational material globally available as a well known resource<br />
in easily consumable form mapped to a framework tied specifically to user<br />
roles and responsibilities<br />
<br />
== Committee Members ==<br />
Education Committee (Board Member Rep: [mailto:seba@owasp.org Seba])<br />
<br />
• [mailto:martin.knobloch@owasp.org Martin Knobloch] (Netherlands)<br />
<br />
• [mailto:mano.paul@securisksolutions.com Mano Paul] (U.S.)<br />
<br />
• [mailto:eduardo.neves@owasp.org Eduardo Neves] (Brazil)<br />
<br />
• [mailto:kuai.hinojosa@owasp.org Kuai Hinjosa] (U.S.)<br />
<br />
• [mailto:cecil.su@GRANTTHORNTON.COM.SG Cecil Su] (Singapore)<br />
<br />
• [mailto:fabio.e.cerullo@aib.ie Fabio Cerullo] (Ireland)<br />
<br />
• [mailto:andrzej.targosz@proidea.org.pl Andrzej Targosz] (Poland)<br />
<br />
[https://www.owasp.org/index.php/How_to_Join_a_Committee How to join this committee]<br />
<br />
[https://lists.owasp.org/mailman/listinfo/global_education_committee Join our mailing list]<br />
<br />
== Scheduled Meetings ==<br />
<pre><br />
The Global Education Committee Meetings take place via Skype, see below for the local time: <br />
3:30 p.m. @ Austin, Texas <br />
4:30 p.m. @ New York <br />
7:30 p.m. @ Brasil <br />
22:30 a.m. @ Netherlands<br />
5:30 a.m. @ Singapore (following day)<br />
</pre><br />
Next meeting(s) scheduled for:<br />
* '''January 29th 2009'''<br />
* '''Februari 12th 2009'''<br />
<br />
= Agenda / Timeline <font color="red">'''(DRAFT)'''</font> =<br />
''' Deadline wednesday, 4th Februari'''<br />
== Tasks ==<br />
''' 60 days to make a proposal '''<br />
* ''' December 20th ''' - first draft of the proposal<br />
* ''' January 16th ''' - submit <br />
<br />
<br />
== Targets <font color="red">'''(DRAFT)'''</font> ==<br />
Below you can find the timeline, what has to be achieved by when. <br />
All tasks must be SMART!<br />
<br />
{| class="prettytable"<br />
! Task<br />
! Deadline<br />
! Type<br />
! Status<br />
! Description<br />
! Who<br />
|-<br />
| [[Categorize (Organization) of educational materials]]<br />
| '''TBD'''<br />
| Message<br />
| Status<br />
| Categorize / Organization of the educational materials for audience by roles and responsibilities/technologies and use the summit workshop notes.<br />
| Martin<br />
|-<br />
| [[Train the trainers (Teach the teachers)]]<br />
| '''Q1/Q2/Q3/Q4 2009'''<br />
| Delivery <br />
| Planning<br />
| Develop a train the trainer program that will train trainers to deliver training on OWASP related material.<br />
| Mano<br />
|-<br />
| [[Create an online assessment and training portal]]<br />
| '''Q2/Q3/Q4 2009'''<br />
| Delivery <br />
| Planning<br />
| Develop an OWASP assessment and training portal that end users can use to gauge their knowledge on OWASP concepts and training providers can use to promote their training offerings.<br />
| Mano<br />
|-<br />
| [[OWASP Boot Camp Project]]<br />
| '''Proposal:''' February 2009 '''Final:''' Oktober 2009 at OWASP AppSec US 2009<br />
| Delivery <br />
| started<br />
| OWASP Boot Camp about the OWASP projects, to deliver a Boot Camp presentation should be one of the criteria to get an alpha status as project<br />
| Martin<br />
|-<br />
| [[OWASP CTF event]]<br />
| OWASP AppSec Denver 2009<br />
| Delivery <br />
| Status<br />
| Description<br />
| Martin<br />
|-<br />
| [[Speakers Bureau Project]]<br />
| '''TBD'''<br />
| Delivery <br />
| '''started'''<br />
| List of speakers, Name, Bio, Topics, History <br><br />
Speakers in conferences (OOTM ask for funds on this)/summit <br />
| Martin<br />
|-<br />
| [[Marketing efforts]]<br />
| '''TBD (discussion with other members)'''<br />
| Awareness Services <br />
| Status<br />
| Flyers or Brochures of OWASP Top 10, Testing Guide.<br />
| Eduardo<br />
|-<br />
| [[Internationalization of the training materials]]<br />
| '''TBD (discussion with Juan)'''<br />
| Awareness Services <br />
| Status<br />
| Liaise with Juan Calderon for translation services for highly spoken languages <br />
| Eduardo<br />
|-<br />
| [[Education material]]<br />
| '''TBD'''<br />
| Training & Educational Services <br />
| Status<br />
| All projects should be summoned to create educational material (training service)<br />
1) Each Projects --> Documents (help), Tool, Training; Live CD (Portable)<br />
| Martin<br />
|-<br />
| [[Educational Academic Services]]<br />
| '''TBD'''<br />
| Training & Educational Services <br />
| <br />
<br />
3 Universities already in contact with and planning OWASP events to participate in. <br />
<br />
| Incorporate OWASP into the following top 5 Universities, within the next 12 months by introducing OWASP training and education resources at University's events.<br />
<br />
1) New York University<br />
2) Cornell University<br />
3) Princeton University<br />
4) University of Minnesota<br />
5) Columbia University<br />
<br />
As a result of these initiative we would hope to see:<br />
<br />
1) Confirming participation at arranged events<br />
2) Asking Universities to recognize they are using our resources by allowing us to place their names in wiki pages such as http://www.owasp.org/index.php/OWASP_Top_Ten_Project <br />
3) University faculty, staff and students participate in local and international events/meetings<br />
4) University faculty, staff and students contribute to OWASP projects<br />
<br />
|Kuai Hinojosa<br />
|}<br />
<br />
= Proposal <font color="red">'''(DRAFT)'''</font> =<br />
== Categorize (Organization) of educational materials ==<br />
Objective: Categorize / Organize educational material, estyle the Education Project website.<br><br />
<br />
Activities/Deadline:<br> <br />
* Categorize education material according to the CLASP roles<br><br />
* Group material into management-ish, student-ish, technical-ish <br><br />
<br />
Benefits<br><br />
Target specific demographic (managers, students...) Provide easy access to education material. Efficient categorization of education materials.<br />
<br />
== Train the trainers (Teach the teachers) ==<br />
Objective:<br />
Develop a train the trainer program that will train trainers to deliver training on OWASP related material.<br />
<br />
Activities/Deadline:<br />
# Develop a criteria to identify and approve trainers / Q1 2009<br />
# Identify pertinent OWASP related material that will be included in the training kit / Q2 2009. This is dependent on the education project organizing material.<br />
# Create a training toolkit with pre-built presentation and training materials, assessments etc. / Q3 2009<br />
# Conduct train the trainer sessions (remote or in-person) / Q4 2009<br />
<br />
Benefits:<br />
The training kit and trained trainers will be available resources promoting OWASP in local events worldwide.<br />
<br />
== Create an online assessment and training portal ==<br />
Objective:<br />
Develop an OWASP assessment and training portal that end users can use to gauge their knowledge on OWASP concepts and training providers can use to promote their training offerings.<br />
<br />
Activities/Deadline:<br />
# Generate OWASP assessment items (can use the testing guide and other sources) / Q2-Q3 2009<br />
# Develop an assessment portal to deliver taking of assessments with robust reporting by knowledge area / Q4 2009<br />
# Develop a training portal to allow training providers to publish and promote their training offerings / Q4 2009<br />
This can be developed as a summer of code project but is not a requirement. <br />
<br />
Benefits:<br />
Assessments that can be offered in OWASP events and other conferences to users will increase OWASP awareness. The portal can become the link between trainers and trainees and will eventually help in increasing the awareness and knowledge of application security in the industry.<br />
<br />
== OWASP Boot Camp Project ==<br />
Objective<br><br />
To deliver a Boot Camp session which would lead to be one of the main criteria to produce alpha status projects<br />
Activities/Deadline:<br> <br />
<br />
Benefits<br><br />
<br />
== OWASP CTF event ==<br />
Objective<br />
Generate a Capture The Flag framework to be offered at OWASP events<br />
<br />
Activities/Deadline: <br />
* Andrzej will contact the organizers of the CTF from the Denver OWASP Conference and work in using same model<br />
<br />
Benefits<br />
Capture The Flag events are very popular in conferences, creating and OWASP specific CTF will offer entertainment at events, generate attendants participation etc.<br />
<br />
== Speakers Bureau Project ==<br />
<br />
Objective<br><br />
OWASP Boot Camp about the OWASP projects, to deliver a Boot Camp presentation should be one of the criteria to get an alpha status as project<br><br />
<br />
Activities/Deadline:<br> <br />
<br />
Benefits<br><br />
List of speakers, Name, Bio, Topics, History <br />
Speakers in conferences (OOTM ask for funds on this)/summit<br />
<br />
Speakers Agreement - https://www.owasp.org/index.php/Speaker_Agreement<br />
<br />
== Marketing efforts ==<br />
Objective<br><br />
<br />
Activities/Deadline:<br> <br />
<br />
Benefits<br><br />
<br />
== Internationalization of the training materials ==<br />
Objective<br><br />
Translate training materials<br />
<br />
Activities/Deadline:<br> <br />
Identify point of contacts places for translation efforts and setup a deadline<br />
Translate material in French, Portuguese, Spanish, Malay, Italian, Indonesian, Chinese<br />
<br />
Benefits<br><br />
To reach international audiences<br />
<br />
== Education material ==<br />
Objective<br><br />
<br />
Activities/Deadline:<br> <br />
<br />
Benefits<br><br />
<br />
Flyers or Brochures of OWASP Top 10, Testing Guide.<br />
<br />
== Academic Educational Services ==<br />
Objectives<br><br />
Promote and encourage OWASP resources at accredited Universities around the world within the next 12 months by introducing OWASP training and education material at University's events.<br />
<br />
Activities/Deadline:<br />
<br />
* Build a list of at least 5 Universities with computer science or risk management programs that can be targeted /Q1 2009 <br />
* Establish communication with targeted universities, generate key contacts and establish relationships /Q1 - Q4 2009<br />
* Develop a list of possible academic events in which to participate /Q1 - Q2 2009 <br />
* Participate in at least 1 Academic event, present case studies or OWASP education materials /Q1 - Q4<br />
<br />
Benefits<br><br />
OWASP will gain exposure in the academic industry, starting with accredited universities around the world. Universities will become members of OWASP, provide meeting space, students will apply to OWASP grants, and provide support and structure</div>Cybermalandrohttps://wiki.owasp.org/index.php?title=Global_Education_Committee&diff=52676Global Education Committee2009-02-02T03:18:48Z<p>Cybermalandro: /* OWASP CTF event */</p>
<hr />
<div>[[Category:OWASP Project]]<br />
<br />
= About the Global Education Committee =<br />
'''The Global Education Committee was created during the OWASP EU Summit in Portugal 2008. The primary purpose of the Global Education Committee is: to work with the [https://www.owasp.org/index.php/Category:OWASP_Education_Project OWASP Education Project] to provide educational materials for both internal and external users, develop liaisons with educational institutions worldwide.'''<br />
<br />
== Mission ==<br />
Provide awareness, training and educational services to corporate,<br />
government and educational institutions on application security.<br />
<br />
== Vision ==<br />
Make OWASP educational material globally available as a well known resource<br />
in easily consumable form mapped to a framework tied specifically to user<br />
roles and responsibilities<br />
<br />
== Committee Members ==<br />
Education Committee (Board Member Rep: [mailto:seba@owasp.org Seba])<br />
<br />
• [mailto:martin.knobloch@owasp.org Martin Knobloch] (Netherlands)<br />
<br />
• [mailto:mano.paul@securisksolutions.com Mano Paul] (U.S.)<br />
<br />
• [mailto:eduardo.neves@owasp.org Eduardo Neves] (Brazil)<br />
<br />
• [mailto:kuai.hinojosa@owasp.org Kuai Hinjosa] (U.S.)<br />
<br />
• [mailto:cecil.su@GRANTTHORNTON.COM.SG Cecil Su] (Singapore)<br />
<br />
• [mailto:fabio.e.cerullo@aib.ie Fabio Cerullo] (Ireland)<br />
<br />
• [mailto:andrzej.targosz@proidea.org.pl Andrzej Targosz] (Poland)<br />
<br />
[https://www.owasp.org/index.php/How_to_Join_a_Committee How to join this committee]<br />
<br />
[https://lists.owasp.org/mailman/listinfo/global_education_committee Join our mailing list]<br />
<br />
== Scheduled Meetings ==<br />
<pre><br />
The Global Education Committee Meetings take place via Skype, see below for the local time: <br />
3:30 p.m. @ Austin, Texas <br />
4:30 p.m. @ New York <br />
7:30 p.m. @ Brasil <br />
22:30 a.m. @ Netherlands<br />
5:30 a.m. @ Singapore (following day)<br />
</pre><br />
Next meeting(s) scheduled for:<br />
* '''January 29th 2009'''<br />
* '''Februari 12th 2009'''<br />
<br />
= Agenda / Timeline <font color="red">'''(DRAFT)'''</font> =<br />
''' Deadline wednesday, 4th Februari'''<br />
== Tasks ==<br />
''' 60 days to make a proposal '''<br />
* ''' December 20th ''' - first draft of the proposal<br />
* ''' January 16th ''' - submit <br />
<br />
<br />
== Targets <font color="red">'''(DRAFT)'''</font> ==<br />
Below you can find the timeline, what has to be achieved by when. <br />
All tasks must be SMART!<br />
<br />
{| class="prettytable"<br />
! Task<br />
! Deadline<br />
! Type<br />
! Status<br />
! Description<br />
! Who<br />
|-<br />
| [[Categorize (Organization) of educational materials]]<br />
| '''TBD'''<br />
| Message<br />
| Status<br />
| Categorize / Organization of the educational materials for audience by roles and responsibilities/technologies and use the summit workshop notes.<br />
| Martin<br />
|-<br />
| [[Train the trainers (Teach the teachers)]]<br />
| '''Q1/Q2/Q3/Q4 2009'''<br />
| Delivery <br />
| Planning<br />
| Develop a train the trainer program that will train trainers to deliver training on OWASP related material.<br />
| Mano<br />
|-<br />
| [[Create an online assessment and training portal]]<br />
| '''Q2/Q3/Q4 2009'''<br />
| Delivery <br />
| Planning<br />
| Develop an OWASP assessment and training portal that end users can use to gauge their knowledge on OWASP concepts and training providers can use to promote their training offerings.<br />
| Mano<br />
|-<br />
| [[OWASP Boot Camp Project]]<br />
| '''Proposal:''' February 2009 '''Final:''' Oktober 2009 at OWASP AppSec US 2009<br />
| Delivery <br />
| started<br />
| OWASP Boot Camp about the OWASP projects, to deliver a Boot Camp presentation should be one of the criteria to get an alpha status as project<br />
| Martin<br />
|-<br />
| [[OWASP CTF event]]<br />
| OWASP AppSec Denver 2009<br />
| Delivery <br />
| Status<br />
| Description<br />
| Martin<br />
|-<br />
| [[Speakers Bureau Project]]<br />
| '''TBD'''<br />
| Delivery <br />
| '''started'''<br />
| List of speakers, Name, Bio, Topics, History <br><br />
Speakers in conferences (OOTM ask for funds on this)/summit <br />
| Martin<br />
|-<br />
| [[Marketing efforts]]<br />
| '''TBD (discussion with other members)'''<br />
| Awareness Services <br />
| Status<br />
| Flyers or Brochures of OWASP Top 10, Testing Guide.<br />
| Eduardo<br />
|-<br />
| [[Internationalization of the training materials]]<br />
| '''TBD (discussion with Juan)'''<br />
| Awareness Services <br />
| Status<br />
| Liaise with Juan Calderon for translation services for highly spoken languages <br />
| Eduardo<br />
|-<br />
| [[Education material]]<br />
| '''TBD'''<br />
| Training & Educational Services <br />
| Status<br />
| All projects should be summoned to create educational material (training service)<br />
1) Each Projects --> Documents (help), Tool, Training; Live CD (Portable)<br />
| Martin<br />
|-<br />
| [[Educational Academic Services]]<br />
| '''TBD'''<br />
| Training & Educational Services <br />
| <br />
<br />
3 Universities already in contact with and planning OWASP events to participate in. <br />
<br />
| Incorporate OWASP into the following top 5 Universities, within the next 12 months by introducing OWASP training and education resources at University's events.<br />
<br />
1) New York University<br />
2) Cornell University<br />
3) Princeton University<br />
4) University of Minnesota<br />
5) Columbia University<br />
<br />
As a result of these initiative we would hope to see:<br />
<br />
1) Confirming participation at arranged events<br />
2) Asking Universities to recognize they are using our resources by allowing us to place their names in wiki pages such as http://www.owasp.org/index.php/OWASP_Top_Ten_Project <br />
3) University faculty, staff and students participate in local and international events/meetings<br />
4) University faculty, staff and students contribute to OWASP projects<br />
<br />
|Kuai Hinojosa<br />
|}<br />
<br />
= Proposal <font color="red">'''(DRAFT)'''</font> =<br />
== Categorize (Organization) of educational materials ==<br />
Objective: Categorize / Organize educational material, estyle the Education Project website.<br><br />
<br />
Activities/Deadline:<br> <br />
* Categorize education material according to the CLASP roles<br><br />
* Group material into management-ish, student-ish, technical-ish <br><br />
<br />
Benefits<br><br />
Target specific demographic (managers, students...) Provide easy access to education material. Efficient categorization of education materials.<br />
<br />
== Train the trainers (Teach the teachers) ==<br />
Objective:<br />
Develop a train the trainer program that will train trainers to deliver training on OWASP related material.<br />
<br />
Activities/Deadline:<br />
# Develop a criteria to identify and approve trainers / Q1 2009<br />
# Identify pertinent OWASP related material that will be included in the training kit / Q2 2009. This is dependent on the education project organizing material.<br />
# Create a training toolkit with pre-built presentation and training materials, assessments etc. / Q3 2009<br />
# Conduct train the trainer sessions (remote or in-person) / Q4 2009<br />
<br />
Benefits:<br />
The training kit and trained trainers will be available resources promoting OWASP in local events worldwide.<br />
<br />
== Create an online assessment and training portal ==<br />
Objective:<br />
Develop an OWASP assessment and training portal that end users can use to gauge their knowledge on OWASP concepts and training providers can use to promote their training offerings.<br />
<br />
Activities/Deadline:<br />
# Generate OWASP assessment items (can use the testing guide and other sources) / Q2-Q3 2009<br />
# Develop an assessment portal to deliver taking of assessments with robust reporting by knowledge area / Q4 2009<br />
# Develop a training portal to allow training providers to publish and promote their training offerings / Q4 2009<br />
This can be developed as a summer of code project but is not a requirement. <br />
<br />
Benefits:<br />
Assessments that can be offered in OWASP events and other conferences to users will increase OWASP awareness. The portal can become the link between trainers and trainees and will eventually help in increasing the awareness and knowledge of application security in the industry.<br />
<br />
== OWASP Boot Camp Project ==<br />
Objective<br><br />
To deliver a Boot Camp session which would lead to be one of the main criteria to produce alpha status projects<br />
Activities/Deadline:<br> <br />
<br />
Benefits<br><br />
<br />
== OWASP CTF event ==<br />
Objective<br />
Generate a Capture The Flag framework to be offered at OWASP events<br />
<br />
Activities/Deadline: <br />
* Andrzej will contact the organizers of the CTF from the Denver OWASP Conference and work in using same model<br />
<br />
Benefits<br />
Capture The Flag events are very popular in conferences, creating and OWASP specific CTF will offer entertainment at events, generate attendants participation etc.<br />
<br />
== Speakers Bureau Project ==<br />
<br />
Objective<br><br />
OWASP Boot Camp about the OWASP projects, to deliver a Boot Camp presentation should be one of the criteria to get an alpha status as project<br><br />
<br />
Activities/Deadline:<br> <br />
<br />
Benefits<br><br />
List of speakers, Name, Bio, Topics, History <br />
Speakers in conferences (OOTM ask for funds on this)/summit<br />
<br />
Speakers Agreement - https://www.owasp.org/index.php/Speaker_Agreement<br />
<br />
== Marketing efforts ==<br />
Objective<br><br />
<br />
Activities/Deadline:<br> <br />
<br />
Benefits<br><br />
<br />
== Internationalization of the training materials ==<br />
Objective<br><br />
OWASP Boot Camp about the OWASP projects, to deliver a Boot Camp presentation should be one of the criteria to get an alpha status as project<br><br />
<br />
Activities/Deadline:<br> <br />
<br />
Benefits<br><br />
<br />
== Education material ==<br />
Objective<br><br />
<br />
Activities/Deadline:<br> <br />
<br />
Benefits<br><br />
<br />
Flyers or Brochures of OWASP Top 10, Testing Guide.<br />
<br />
== Academic Educational Services ==<br />
Objectives<br><br />
Promote and encourage OWASP resources at accredited Universities around the world within the next 12 months by introducing OWASP training and education material at University's events.<br />
<br />
Activities/Deadline:<br />
<br />
* Build a list of at least 5 Universities with computer science or risk management programs that can be targeted /Q1 2009 <br />
* Establish communication with targeted universities, generate key contacts and establish relationships /Q1 - Q4 2009<br />
* Develop a list of possible academic events in which to participate /Q1 - Q2 2009 <br />
* Participate in at least 1 Academic event, present case studies or OWASP education materials /Q1 - Q4<br />
<br />
Benefits<br><br />
OWASP will gain exposure in the academic industry, starting with accredited universities around the world. Universities will become members of OWASP, provide meeting space, students will apply to OWASP grants, and provide support and structure</div>Cybermalandrohttps://wiki.owasp.org/index.php?title=Global_Education_Committee&diff=52675Global Education Committee2009-02-02T03:17:51Z<p>Cybermalandro: /* OWASP Boot Camp Project */</p>
<hr />
<div>[[Category:OWASP Project]]<br />
<br />
= About the Global Education Committee =<br />
'''The Global Education Committee was created during the OWASP EU Summit in Portugal 2008. The primary purpose of the Global Education Committee is: to work with the [https://www.owasp.org/index.php/Category:OWASP_Education_Project OWASP Education Project] to provide educational materials for both internal and external users, develop liaisons with educational institutions worldwide.'''<br />
<br />
== Mission ==<br />
Provide awareness, training and educational services to corporate,<br />
government and educational institutions on application security.<br />
<br />
== Vision ==<br />
Make OWASP educational material globally available as a well known resource<br />
in easily consumable form mapped to a framework tied specifically to user<br />
roles and responsibilities<br />
<br />
== Committee Members ==<br />
Education Committee (Board Member Rep: [mailto:seba@owasp.org Seba])<br />
<br />
• [mailto:martin.knobloch@owasp.org Martin Knobloch] (Netherlands)<br />
<br />
• [mailto:mano.paul@securisksolutions.com Mano Paul] (U.S.)<br />
<br />
• [mailto:eduardo.neves@owasp.org Eduardo Neves] (Brazil)<br />
<br />
• [mailto:kuai.hinojosa@owasp.org Kuai Hinjosa] (U.S.)<br />
<br />
• [mailto:cecil.su@GRANTTHORNTON.COM.SG Cecil Su] (Singapore)<br />
<br />
• [mailto:fabio.e.cerullo@aib.ie Fabio Cerullo] (Ireland)<br />
<br />
• [mailto:andrzej.targosz@proidea.org.pl Andrzej Targosz] (Poland)<br />
<br />
[https://www.owasp.org/index.php/How_to_Join_a_Committee How to join this committee]<br />
<br />
[https://lists.owasp.org/mailman/listinfo/global_education_committee Join our mailing list]<br />
<br />
== Scheduled Meetings ==<br />
<pre><br />
The Global Education Committee Meetings take place via Skype, see below for the local time: <br />
3:30 p.m. @ Austin, Texas <br />
4:30 p.m. @ New York <br />
7:30 p.m. @ Brasil <br />
22:30 a.m. @ Netherlands<br />
5:30 a.m. @ Singapore (following day)<br />
</pre><br />
Next meeting(s) scheduled for:<br />
* '''January 29th 2009'''<br />
* '''Februari 12th 2009'''<br />
<br />
= Agenda / Timeline <font color="red">'''(DRAFT)'''</font> =<br />
''' Deadline wednesday, 4th Februari'''<br />
== Tasks ==<br />
''' 60 days to make a proposal '''<br />
* ''' December 20th ''' - first draft of the proposal<br />
* ''' January 16th ''' - submit <br />
<br />
<br />
== Targets <font color="red">'''(DRAFT)'''</font> ==<br />
Below you can find the timeline, what has to be achieved by when. <br />
All tasks must be SMART!<br />
<br />
{| class="prettytable"<br />
! Task<br />
! Deadline<br />
! Type<br />
! Status<br />
! Description<br />
! Who<br />
|-<br />
| [[Categorize (Organization) of educational materials]]<br />
| '''TBD'''<br />
| Message<br />
| Status<br />
| Categorize / Organization of the educational materials for audience by roles and responsibilities/technologies and use the summit workshop notes.<br />
| Martin<br />
|-<br />
| [[Train the trainers (Teach the teachers)]]<br />
| '''Q1/Q2/Q3/Q4 2009'''<br />
| Delivery <br />
| Planning<br />
| Develop a train the trainer program that will train trainers to deliver training on OWASP related material.<br />
| Mano<br />
|-<br />
| [[Create an online assessment and training portal]]<br />
| '''Q2/Q3/Q4 2009'''<br />
| Delivery <br />
| Planning<br />
| Develop an OWASP assessment and training portal that end users can use to gauge their knowledge on OWASP concepts and training providers can use to promote their training offerings.<br />
| Mano<br />
|-<br />
| [[OWASP Boot Camp Project]]<br />
| '''Proposal:''' February 2009 '''Final:''' Oktober 2009 at OWASP AppSec US 2009<br />
| Delivery <br />
| started<br />
| OWASP Boot Camp about the OWASP projects, to deliver a Boot Camp presentation should be one of the criteria to get an alpha status as project<br />
| Martin<br />
|-<br />
| [[OWASP CTF event]]<br />
| OWASP AppSec Denver 2009<br />
| Delivery <br />
| Status<br />
| Description<br />
| Martin<br />
|-<br />
| [[Speakers Bureau Project]]<br />
| '''TBD'''<br />
| Delivery <br />
| '''started'''<br />
| List of speakers, Name, Bio, Topics, History <br><br />
Speakers in conferences (OOTM ask for funds on this)/summit <br />
| Martin<br />
|-<br />
| [[Marketing efforts]]<br />
| '''TBD (discussion with other members)'''<br />
| Awareness Services <br />
| Status<br />
| Flyers or Brochures of OWASP Top 10, Testing Guide.<br />
| Eduardo<br />
|-<br />
| [[Internationalization of the training materials]]<br />
| '''TBD (discussion with Juan)'''<br />
| Awareness Services <br />
| Status<br />
| Liaise with Juan Calderon for translation services for highly spoken languages <br />
| Eduardo<br />
|-<br />
| [[Education material]]<br />
| '''TBD'''<br />
| Training & Educational Services <br />
| Status<br />
| All projects should be summoned to create educational material (training service)<br />
1) Each Projects --> Documents (help), Tool, Training; Live CD (Portable)<br />
| Martin<br />
|-<br />
| [[Educational Academic Services]]<br />
| '''TBD'''<br />
| Training & Educational Services <br />
| <br />
<br />
3 Universities already in contact with and planning OWASP events to participate in. <br />
<br />
| Incorporate OWASP into the following top 5 Universities, within the next 12 months by introducing OWASP training and education resources at University's events.<br />
<br />
1) New York University<br />
2) Cornell University<br />
3) Princeton University<br />
4) University of Minnesota<br />
5) Columbia University<br />
<br />
As a result of these initiative we would hope to see:<br />
<br />
1) Confirming participation at arranged events<br />
2) Asking Universities to recognize they are using our resources by allowing us to place their names in wiki pages such as http://www.owasp.org/index.php/OWASP_Top_Ten_Project <br />
3) University faculty, staff and students participate in local and international events/meetings<br />
4) University faculty, staff and students contribute to OWASP projects<br />
<br />
|Kuai Hinojosa<br />
|}<br />
<br />
= Proposal <font color="red">'''(DRAFT)'''</font> =<br />
== Categorize (Organization) of educational materials ==<br />
Objective: Categorize / Organize educational material, estyle the Education Project website.<br><br />
<br />
Activities/Deadline:<br> <br />
* Categorize education material according to the CLASP roles<br><br />
* Group material into management-ish, student-ish, technical-ish <br><br />
<br />
Benefits<br><br />
Target specific demographic (managers, students...) Provide easy access to education material. Efficient categorization of education materials.<br />
<br />
== Train the trainers (Teach the teachers) ==<br />
Objective:<br />
Develop a train the trainer program that will train trainers to deliver training on OWASP related material.<br />
<br />
Activities/Deadline:<br />
# Develop a criteria to identify and approve trainers / Q1 2009<br />
# Identify pertinent OWASP related material that will be included in the training kit / Q2 2009. This is dependent on the education project organizing material.<br />
# Create a training toolkit with pre-built presentation and training materials, assessments etc. / Q3 2009<br />
# Conduct train the trainer sessions (remote or in-person) / Q4 2009<br />
<br />
Benefits:<br />
The training kit and trained trainers will be available resources promoting OWASP in local events worldwide.<br />
<br />
== Create an online assessment and training portal ==<br />
Objective:<br />
Develop an OWASP assessment and training portal that end users can use to gauge their knowledge on OWASP concepts and training providers can use to promote their training offerings.<br />
<br />
Activities/Deadline:<br />
# Generate OWASP assessment items (can use the testing guide and other sources) / Q2-Q3 2009<br />
# Develop an assessment portal to deliver taking of assessments with robust reporting by knowledge area / Q4 2009<br />
# Develop a training portal to allow training providers to publish and promote their training offerings / Q4 2009<br />
This can be developed as a summer of code project but is not a requirement. <br />
<br />
Benefits:<br />
Assessments that can be offered in OWASP events and other conferences to users will increase OWASP awareness. The portal can become the link between trainers and trainees and will eventually help in increasing the awareness and knowledge of application security in the industry.<br />
<br />
== OWASP Boot Camp Project ==<br />
Objective<br><br />
To deliver a Boot Camp session which would lead to be one of the main criteria to produce alpha status projects<br />
Activities/Deadline:<br> <br />
<br />
Benefits<br><br />
<br />
== OWASP CTF event ==<br />
Objective<br />
Generate a Capture The Flag framework to be offered at OWASP events<br />
<br />
Activities/Deadline: <br />
* Andrzej will contact the organizers of the CTF from the Denver OWASP Conference and work in using same model<br />
<br />
Benefits<br />
Capture The Flag events are very popular in conferences, creating and OWASP specific CFT will offer entertainment at events, generate attendants participation etc.<br />
<br />
== Speakers Bureau Project ==<br />
<br />
Objective<br><br />
OWASP Boot Camp about the OWASP projects, to deliver a Boot Camp presentation should be one of the criteria to get an alpha status as project<br><br />
<br />
Activities/Deadline:<br> <br />
<br />
Benefits<br><br />
List of speakers, Name, Bio, Topics, History <br />
Speakers in conferences (OOTM ask for funds on this)/summit<br />
<br />
Speakers Agreement - https://www.owasp.org/index.php/Speaker_Agreement<br />
<br />
== Marketing efforts ==<br />
Objective<br><br />
<br />
Activities/Deadline:<br> <br />
<br />
Benefits<br><br />
<br />
== Internationalization of the training materials ==<br />
Objective<br><br />
OWASP Boot Camp about the OWASP projects, to deliver a Boot Camp presentation should be one of the criteria to get an alpha status as project<br><br />
<br />
Activities/Deadline:<br> <br />
<br />
Benefits<br><br />
<br />
== Education material ==<br />
Objective<br><br />
<br />
Activities/Deadline:<br> <br />
<br />
Benefits<br><br />
<br />
Flyers or Brochures of OWASP Top 10, Testing Guide.<br />
<br />
== Academic Educational Services ==<br />
Objectives<br><br />
Promote and encourage OWASP resources at accredited Universities around the world within the next 12 months by introducing OWASP training and education material at University's events.<br />
<br />
Activities/Deadline:<br />
<br />
* Build a list of at least 5 Universities with computer science or risk management programs that can be targeted /Q1 2009 <br />
* Establish communication with targeted universities, generate key contacts and establish relationships /Q1 - Q4 2009<br />
* Develop a list of possible academic events in which to participate /Q1 - Q2 2009 <br />
* Participate in at least 1 Academic event, present case studies or OWASP education materials /Q1 - Q4<br />
<br />
Benefits<br><br />
OWASP will gain exposure in the academic industry, starting with accredited universities around the world. Universities will become members of OWASP, provide meeting space, students will apply to OWASP grants, and provide support and structure</div>Cybermalandrohttps://wiki.owasp.org/index.php?title=Global_Education_Committee&diff=52674Global Education Committee2009-02-02T03:02:52Z<p>Cybermalandro: /* Categorize (Organization) of educational materials */</p>
<hr />
<div>[[Category:OWASP Project]]<br />
<br />
= About the Global Education Committee =<br />
'''The Global Education Committee was created during the OWASP EU Summit in Portugal 2008. The primary purpose of the Global Education Committee is: to work with the [https://www.owasp.org/index.php/Category:OWASP_Education_Project OWASP Education Project] to provide educational materials for both internal and external users, develop liaisons with educational institutions worldwide.'''<br />
<br />
== Mission ==<br />
Provide awareness, training and educational services to corporate,<br />
government and educational institutions on application security.<br />
<br />
== Vision ==<br />
Make OWASP educational material globally available as a well known resource<br />
in easily consumable form mapped to a framework tied specifically to user<br />
roles and responsibilities<br />
<br />
== Committee Members ==<br />
Education Committee (Board Member Rep: [mailto:seba@owasp.org Seba])<br />
<br />
• [mailto:martin.knobloch@owasp.org Martin Knobloch] (Netherlands)<br />
<br />
• [mailto:mano.paul@securisksolutions.com Mano Paul] (U.S.)<br />
<br />
• [mailto:eduardo.neves@owasp.org Eduardo Neves] (Brazil)<br />
<br />
• [mailto:kuai.hinojosa@owasp.org Kuai Hinjosa] (U.S.)<br />
<br />
• [mailto:cecil.su@GRANTTHORNTON.COM.SG Cecil Su] (Singapore)<br />
<br />
• [mailto:fabio.e.cerullo@aib.ie Fabio Cerullo] (Ireland)<br />
<br />
• [mailto:andrzej.targosz@proidea.org.pl Andrzej Targosz] (Poland)<br />
<br />
[https://www.owasp.org/index.php/How_to_Join_a_Committee How to join this committee]<br />
<br />
[https://lists.owasp.org/mailman/listinfo/global_education_committee Join our mailing list]<br />
<br />
== Scheduled Meetings ==<br />
<pre><br />
The Global Education Committee Meetings take place via Skype, see below for the local time: <br />
3:30 p.m. @ Austin, Texas <br />
4:30 p.m. @ New York <br />
7:30 p.m. @ Brasil <br />
22:30 a.m. @ Netherlands<br />
5:30 a.m. @ Singapore (following day)<br />
</pre><br />
Next meeting(s) scheduled for:<br />
* '''January 29th 2009'''<br />
* '''Februari 12th 2009'''<br />
<br />
= Agenda / Timeline <font color="red">'''(DRAFT)'''</font> =<br />
''' Deadline wednesday, 4th Februari'''<br />
== Tasks ==<br />
''' 60 days to make a proposal '''<br />
* ''' December 20th ''' - first draft of the proposal<br />
* ''' January 16th ''' - submit <br />
<br />
<br />
== Targets <font color="red">'''(DRAFT)'''</font> ==<br />
Below you can find the timeline, what has to be achieved by when. <br />
All tasks must be SMART!<br />
<br />
{| class="prettytable"<br />
! Task<br />
! Deadline<br />
! Type<br />
! Status<br />
! Description<br />
! Who<br />
|-<br />
| [[Categorize (Organization) of educational materials]]<br />
| '''TBD'''<br />
| Message<br />
| Status<br />
| Categorize / Organization of the educational materials for audience by roles and responsibilities/technologies and use the summit workshop notes.<br />
| Martin<br />
|-<br />
| [[Train the trainers (Teach the teachers)]]<br />
| '''Q1/Q2/Q3/Q4 2009'''<br />
| Delivery <br />
| Planning<br />
| Develop a train the trainer program that will train trainers to deliver training on OWASP related material.<br />
| Mano<br />
|-<br />
| [[Create an online assessment and training portal]]<br />
| '''Q2/Q3/Q4 2009'''<br />
| Delivery <br />
| Planning<br />
| Develop an OWASP assessment and training portal that end users can use to gauge their knowledge on OWASP concepts and training providers can use to promote their training offerings.<br />
| Mano<br />
|-<br />
| [[OWASP Boot Camp Project]]<br />
| '''Proposal:''' February 2009 '''Final:''' Oktober 2009 at OWASP AppSec US 2009<br />
| Delivery <br />
| started<br />
| OWASP Boot Camp about the OWASP projects, to deliver a Boot Camp presentation should be one of the criteria to get an alpha status as project<br />
| Martin<br />
|-<br />
| [[OWASP CTF event]]<br />
| OWASP AppSec Denver 2009<br />
| Delivery <br />
| Status<br />
| Description<br />
| Martin<br />
|-<br />
| [[Speakers Bureau Project]]<br />
| '''TBD'''<br />
| Delivery <br />
| '''started'''<br />
| List of speakers, Name, Bio, Topics, History <br><br />
Speakers in conferences (OOTM ask for funds on this)/summit <br />
| Martin<br />
|-<br />
| [[Marketing efforts]]<br />
| '''TBD (discussion with other members)'''<br />
| Awareness Services <br />
| Status<br />
| Flyers or Brochures of OWASP Top 10, Testing Guide.<br />
| Eduardo<br />
|-<br />
| [[Internationalization of the training materials]]<br />
| '''TBD (discussion with Juan)'''<br />
| Awareness Services <br />
| Status<br />
| Liaise with Juan Calderon for translation services for highly spoken languages <br />
| Eduardo<br />
|-<br />
| [[Education material]]<br />
| '''TBD'''<br />
| Training & Educational Services <br />
| Status<br />
| All projects should be summoned to create educational material (training service)<br />
1) Each Projects --> Documents (help), Tool, Training; Live CD (Portable)<br />
| Martin<br />
|-<br />
| [[Educational Academic Services]]<br />
| '''TBD'''<br />
| Training & Educational Services <br />
| <br />
<br />
3 Universities already in contact with and planning OWASP events to participate in. <br />
<br />
| Incorporate OWASP into the following top 5 Universities, within the next 12 months by introducing OWASP training and education resources at University's events.<br />
<br />
1) New York University<br />
2) Cornell University<br />
3) Princeton University<br />
4) University of Minnesota<br />
5) Columbia University<br />
<br />
As a result of these initiative we would hope to see:<br />
<br />
1) Confirming participation at arranged events<br />
2) Asking Universities to recognize they are using our resources by allowing us to place their names in wiki pages such as http://www.owasp.org/index.php/OWASP_Top_Ten_Project <br />
3) University faculty, staff and students participate in local and international events/meetings<br />
4) University faculty, staff and students contribute to OWASP projects<br />
<br />
|Kuai Hinojosa<br />
|}<br />
<br />
= Proposal <font color="red">'''(DRAFT)'''</font> =<br />
== Categorize (Organization) of educational materials ==<br />
Objective: Categorize / Organize educational material, estyle the Education Project website.<br><br />
<br />
Activities/Deadline:<br> <br />
* Categorize education material according to the CLASP roles<br><br />
* Group material into management-ish, student-ish, technical-ish <br><br />
<br />
Benefits<br><br />
Target specific demographic (managers, students...) Provide easy access to education material. Efficient categorization of education materials.<br />
<br />
== Train the trainers (Teach the teachers) ==<br />
Objective:<br />
Develop a train the trainer program that will train trainers to deliver training on OWASP related material.<br />
<br />
Activities/Deadline:<br />
# Develop a criteria to identify and approve trainers / Q1 2009<br />
# Identify pertinent OWASP related material that will be included in the training kit / Q2 2009. This is dependent on the education project organizing material.<br />
# Create a training toolkit with pre-built presentation and training materials, assessments etc. / Q3 2009<br />
# Conduct train the trainer sessions (remote or in-person) / Q4 2009<br />
<br />
Benefits:<br />
The training kit and trained trainers will be available resources promoting OWASP in local events worldwide.<br />
<br />
== Create an online assessment and training portal ==<br />
Objective:<br />
Develop an OWASP assessment and training portal that end users can use to gauge their knowledge on OWASP concepts and training providers can use to promote their training offerings.<br />
<br />
Activities/Deadline:<br />
# Generate OWASP assessment items (can use the testing guide and other sources) / Q2-Q3 2009<br />
# Develop an assessment portal to deliver taking of assessments with robust reporting by knowledge area / Q4 2009<br />
# Develop a training portal to allow training providers to publish and promote their training offerings / Q4 2009<br />
This can be developed as a summer of code project but is not a requirement. <br />
<br />
Benefits:<br />
Assessments that can be offered in OWASP events and other conferences to users will increase OWASP awareness. The portal can become the link between trainers and trainees and will eventually help in increasing the awareness and knowledge of application security in the industry.<br />
<br />
== OWASP Boot Camp Project ==<br />
Objective<br><br />
OWASP Boot Camp about the OWASP projects, to deliver a Boot Camp presentation should be one of the criteria to get an alpha status as project<br><br />
<br />
Activities/Deadline:<br> <br />
<br />
Benefits<br><br />
<br />
== OWASP CTF event ==<br />
Objective<br />
Generate a Capture The Flag framework to be offered at OWASP events<br />
<br />
Activities/Deadline: <br />
* Andrzej will contact the organizers of the CTF from the Denver OWASP Conference and work in using same model<br />
<br />
Benefits<br />
Capture The Flag events are very popular in conferences, creating and OWASP specific CFT will offer entertainment at events, generate attendants participation etc.<br />
<br />
== Speakers Bureau Project ==<br />
<br />
Objective<br><br />
OWASP Boot Camp about the OWASP projects, to deliver a Boot Camp presentation should be one of the criteria to get an alpha status as project<br><br />
<br />
Activities/Deadline:<br> <br />
<br />
Benefits<br><br />
List of speakers, Name, Bio, Topics, History <br />
Speakers in conferences (OOTM ask for funds on this)/summit<br />
<br />
Speakers Agreement - https://www.owasp.org/index.php/Speaker_Agreement<br />
<br />
== Marketing efforts ==<br />
Objective<br><br />
<br />
Activities/Deadline:<br> <br />
<br />
Benefits<br><br />
<br />
== Internationalization of the training materials ==<br />
Objective<br><br />
OWASP Boot Camp about the OWASP projects, to deliver a Boot Camp presentation should be one of the criteria to get an alpha status as project<br><br />
<br />
Activities/Deadline:<br> <br />
<br />
Benefits<br><br />
<br />
== Education material ==<br />
Objective<br><br />
<br />
Activities/Deadline:<br> <br />
<br />
Benefits<br><br />
<br />
Flyers or Brochures of OWASP Top 10, Testing Guide.<br />
<br />
== Academic Educational Services ==<br />
Objectives<br><br />
Promote and encourage OWASP resources at accredited Universities around the world within the next 12 months by introducing OWASP training and education material at University's events.<br />
<br />
Activities/Deadline:<br />
<br />
* Build a list of at least 5 Universities with computer science or risk management programs that can be targeted /Q1 2009 <br />
* Establish communication with targeted universities, generate key contacts and establish relationships /Q1 - Q4 2009<br />
* Develop a list of possible academic events in which to participate /Q1 - Q2 2009 <br />
* Participate in at least 1 Academic event, present case studies or OWASP education materials /Q1 - Q4<br />
<br />
Benefits<br><br />
OWASP will gain exposure in the academic industry, starting with accredited universities around the world. Universities will become members of OWASP, provide meeting space, students will apply to OWASP grants, and provide support and structure</div>Cybermalandrohttps://wiki.owasp.org/index.php?title=Global_Education_Committee&diff=52673Global Education Committee2009-02-02T03:02:36Z<p>Cybermalandro: /* Categorize (Organization) of educational materials */</p>
<hr />
<div>[[Category:OWASP Project]]<br />
<br />
= About the Global Education Committee =<br />
'''The Global Education Committee was created during the OWASP EU Summit in Portugal 2008. The primary purpose of the Global Education Committee is: to work with the [https://www.owasp.org/index.php/Category:OWASP_Education_Project OWASP Education Project] to provide educational materials for both internal and external users, develop liaisons with educational institutions worldwide.'''<br />
<br />
== Mission ==<br />
Provide awareness, training and educational services to corporate,<br />
government and educational institutions on application security.<br />
<br />
== Vision ==<br />
Make OWASP educational material globally available as a well known resource<br />
in easily consumable form mapped to a framework tied specifically to user<br />
roles and responsibilities<br />
<br />
== Committee Members ==<br />
Education Committee (Board Member Rep: [mailto:seba@owasp.org Seba])<br />
<br />
• [mailto:martin.knobloch@owasp.org Martin Knobloch] (Netherlands)<br />
<br />
• [mailto:mano.paul@securisksolutions.com Mano Paul] (U.S.)<br />
<br />
• [mailto:eduardo.neves@owasp.org Eduardo Neves] (Brazil)<br />
<br />
• [mailto:kuai.hinojosa@owasp.org Kuai Hinjosa] (U.S.)<br />
<br />
• [mailto:cecil.su@GRANTTHORNTON.COM.SG Cecil Su] (Singapore)<br />
<br />
• [mailto:fabio.e.cerullo@aib.ie Fabio Cerullo] (Ireland)<br />
<br />
• [mailto:andrzej.targosz@proidea.org.pl Andrzej Targosz] (Poland)<br />
<br />
[https://www.owasp.org/index.php/How_to_Join_a_Committee How to join this committee]<br />
<br />
[https://lists.owasp.org/mailman/listinfo/global_education_committee Join our mailing list]<br />
<br />
== Scheduled Meetings ==<br />
<pre><br />
The Global Education Committee Meetings take place via Skype, see below for the local time: <br />
3:30 p.m. @ Austin, Texas <br />
4:30 p.m. @ New York <br />
7:30 p.m. @ Brasil <br />
22:30 a.m. @ Netherlands<br />
5:30 a.m. @ Singapore (following day)<br />
</pre><br />
Next meeting(s) scheduled for:<br />
* '''January 29th 2009'''<br />
* '''Februari 12th 2009'''<br />
<br />
= Agenda / Timeline <font color="red">'''(DRAFT)'''</font> =<br />
''' Deadline wednesday, 4th Februari'''<br />
== Tasks ==<br />
''' 60 days to make a proposal '''<br />
* ''' December 20th ''' - first draft of the proposal<br />
* ''' January 16th ''' - submit <br />
<br />
<br />
== Targets <font color="red">'''(DRAFT)'''</font> ==<br />
Below you can find the timeline, what has to be achieved by when. <br />
All tasks must be SMART!<br />
<br />
{| class="prettytable"<br />
! Task<br />
! Deadline<br />
! Type<br />
! Status<br />
! Description<br />
! Who<br />
|-<br />
| [[Categorize (Organization) of educational materials]]<br />
| '''TBD'''<br />
| Message<br />
| Status<br />
| Categorize / Organization of the educational materials for audience by roles and responsibilities/technologies and use the summit workshop notes.<br />
| Martin<br />
|-<br />
| [[Train the trainers (Teach the teachers)]]<br />
| '''Q1/Q2/Q3/Q4 2009'''<br />
| Delivery <br />
| Planning<br />
| Develop a train the trainer program that will train trainers to deliver training on OWASP related material.<br />
| Mano<br />
|-<br />
| [[Create an online assessment and training portal]]<br />
| '''Q2/Q3/Q4 2009'''<br />
| Delivery <br />
| Planning<br />
| Develop an OWASP assessment and training portal that end users can use to gauge their knowledge on OWASP concepts and training providers can use to promote their training offerings.<br />
| Mano<br />
|-<br />
| [[OWASP Boot Camp Project]]<br />
| '''Proposal:''' February 2009 '''Final:''' Oktober 2009 at OWASP AppSec US 2009<br />
| Delivery <br />
| started<br />
| OWASP Boot Camp about the OWASP projects, to deliver a Boot Camp presentation should be one of the criteria to get an alpha status as project<br />
| Martin<br />
|-<br />
| [[OWASP CTF event]]<br />
| OWASP AppSec Denver 2009<br />
| Delivery <br />
| Status<br />
| Description<br />
| Martin<br />
|-<br />
| [[Speakers Bureau Project]]<br />
| '''TBD'''<br />
| Delivery <br />
| '''started'''<br />
| List of speakers, Name, Bio, Topics, History <br><br />
Speakers in conferences (OOTM ask for funds on this)/summit <br />
| Martin<br />
|-<br />
| [[Marketing efforts]]<br />
| '''TBD (discussion with other members)'''<br />
| Awareness Services <br />
| Status<br />
| Flyers or Brochures of OWASP Top 10, Testing Guide.<br />
| Eduardo<br />
|-<br />
| [[Internationalization of the training materials]]<br />
| '''TBD (discussion with Juan)'''<br />
| Awareness Services <br />
| Status<br />
| Liaise with Juan Calderon for translation services for highly spoken languages <br />
| Eduardo<br />
|-<br />
| [[Education material]]<br />
| '''TBD'''<br />
| Training & Educational Services <br />
| Status<br />
| All projects should be summoned to create educational material (training service)<br />
1) Each Projects --> Documents (help), Tool, Training; Live CD (Portable)<br />
| Martin<br />
|-<br />
| [[Educational Academic Services]]<br />
| '''TBD'''<br />
| Training & Educational Services <br />
| <br />
<br />
3 Universities already in contact with and planning OWASP events to participate in. <br />
<br />
| Incorporate OWASP into the following top 5 Universities, within the next 12 months by introducing OWASP training and education resources at University's events.<br />
<br />
1) New York University<br />
2) Cornell University<br />
3) Princeton University<br />
4) University of Minnesota<br />
5) Columbia University<br />
<br />
As a result of these initiative we would hope to see:<br />
<br />
1) Confirming participation at arranged events<br />
2) Asking Universities to recognize they are using our resources by allowing us to place their names in wiki pages such as http://www.owasp.org/index.php/OWASP_Top_Ten_Project <br />
3) University faculty, staff and students participate in local and international events/meetings<br />
4) University faculty, staff and students contribute to OWASP projects<br />
<br />
|Kuai Hinojosa<br />
|}<br />
<br />
= Proposal <font color="red">'''(DRAFT)'''</font> =<br />
== Categorize (Organization) of educational materials ==<br />
Objective: Categorize / Organize educational material, estyle the Education Project website.<br />
<br><br><br />
Activities/Deadline:<br> <br />
* Categorize education material according to the CLASP roles<br><br />
* Group material into management-ish, student-ish, technical-ish <br><br />
<br />
Benefits<br><br />
Target specific demographic (managers, students...) Provide easy access to education material. Efficient categorization of education materials.<br />
<br />
== Train the trainers (Teach the teachers) ==<br />
Objective:<br />
Develop a train the trainer program that will train trainers to deliver training on OWASP related material.<br />
<br />
Activities/Deadline:<br />
# Develop a criteria to identify and approve trainers / Q1 2009<br />
# Identify pertinent OWASP related material that will be included in the training kit / Q2 2009. This is dependent on the education project organizing material.<br />
# Create a training toolkit with pre-built presentation and training materials, assessments etc. / Q3 2009<br />
# Conduct train the trainer sessions (remote or in-person) / Q4 2009<br />
<br />
Benefits:<br />
The training kit and trained trainers will be available resources promoting OWASP in local events worldwide.<br />
<br />
== Create an online assessment and training portal ==<br />
Objective:<br />
Develop an OWASP assessment and training portal that end users can use to gauge their knowledge on OWASP concepts and training providers can use to promote their training offerings.<br />
<br />
Activities/Deadline:<br />
# Generate OWASP assessment items (can use the testing guide and other sources) / Q2-Q3 2009<br />
# Develop an assessment portal to deliver taking of assessments with robust reporting by knowledge area / Q4 2009<br />
# Develop a training portal to allow training providers to publish and promote their training offerings / Q4 2009<br />
This can be developed as a summer of code project but is not a requirement. <br />
<br />
Benefits:<br />
Assessments that can be offered in OWASP events and other conferences to users will increase OWASP awareness. The portal can become the link between trainers and trainees and will eventually help in increasing the awareness and knowledge of application security in the industry.<br />
<br />
== OWASP Boot Camp Project ==<br />
Objective<br><br />
OWASP Boot Camp about the OWASP projects, to deliver a Boot Camp presentation should be one of the criteria to get an alpha status as project<br><br />
<br />
Activities/Deadline:<br> <br />
<br />
Benefits<br><br />
<br />
== OWASP CTF event ==<br />
Objective<br />
Generate a Capture The Flag framework to be offered at OWASP events<br />
<br />
Activities/Deadline: <br />
* Andrzej will contact the organizers of the CTF from the Denver OWASP Conference and work in using same model<br />
<br />
Benefits<br />
Capture The Flag events are very popular in conferences, creating and OWASP specific CFT will offer entertainment at events, generate attendants participation etc.<br />
<br />
== Speakers Bureau Project ==<br />
<br />
Objective<br><br />
OWASP Boot Camp about the OWASP projects, to deliver a Boot Camp presentation should be one of the criteria to get an alpha status as project<br><br />
<br />
Activities/Deadline:<br> <br />
<br />
Benefits<br><br />
List of speakers, Name, Bio, Topics, History <br />
Speakers in conferences (OOTM ask for funds on this)/summit<br />
<br />
Speakers Agreement - https://www.owasp.org/index.php/Speaker_Agreement<br />
<br />
== Marketing efforts ==<br />
Objective<br><br />
<br />
Activities/Deadline:<br> <br />
<br />
Benefits<br><br />
<br />
== Internationalization of the training materials ==<br />
Objective<br><br />
OWASP Boot Camp about the OWASP projects, to deliver a Boot Camp presentation should be one of the criteria to get an alpha status as project<br><br />
<br />
Activities/Deadline:<br> <br />
<br />
Benefits<br><br />
<br />
== Education material ==<br />
Objective<br><br />
<br />
Activities/Deadline:<br> <br />
<br />
Benefits<br><br />
<br />
Flyers or Brochures of OWASP Top 10, Testing Guide.<br />
<br />
== Academic Educational Services ==<br />
Objectives<br><br />
Promote and encourage OWASP resources at accredited Universities around the world within the next 12 months by introducing OWASP training and education material at University's events.<br />
<br />
Activities/Deadline:<br />
<br />
* Build a list of at least 5 Universities with computer science or risk management programs that can be targeted /Q1 2009 <br />
* Establish communication with targeted universities, generate key contacts and establish relationships /Q1 - Q4 2009<br />
* Develop a list of possible academic events in which to participate /Q1 - Q2 2009 <br />
* Participate in at least 1 Academic event, present case studies or OWASP education materials /Q1 - Q4<br />
<br />
Benefits<br><br />
OWASP will gain exposure in the academic industry, starting with accredited universities around the world. Universities will become members of OWASP, provide meeting space, students will apply to OWASP grants, and provide support and structure</div>Cybermalandrohttps://wiki.owasp.org/index.php?title=Global_Education_Committee&diff=52672Global Education Committee2009-02-02T03:01:48Z<p>Cybermalandro: /* Categorize (Organization) of educational materials */</p>
<hr />
<div>[[Category:OWASP Project]]<br />
<br />
= About the Global Education Committee =<br />
'''The Global Education Committee was created during the OWASP EU Summit in Portugal 2008. The primary purpose of the Global Education Committee is: to work with the [https://www.owasp.org/index.php/Category:OWASP_Education_Project OWASP Education Project] to provide educational materials for both internal and external users, develop liaisons with educational institutions worldwide.'''<br />
<br />
== Mission ==<br />
Provide awareness, training and educational services to corporate,<br />
government and educational institutions on application security.<br />
<br />
== Vision ==<br />
Make OWASP educational material globally available as a well known resource<br />
in easily consumable form mapped to a framework tied specifically to user<br />
roles and responsibilities<br />
<br />
== Committee Members ==<br />
Education Committee (Board Member Rep: [mailto:seba@owasp.org Seba])<br />
<br />
• [mailto:martin.knobloch@owasp.org Martin Knobloch] (Netherlands)<br />
<br />
• [mailto:mano.paul@securisksolutions.com Mano Paul] (U.S.)<br />
<br />
• [mailto:eduardo.neves@owasp.org Eduardo Neves] (Brazil)<br />
<br />
• [mailto:kuai.hinojosa@owasp.org Kuai Hinjosa] (U.S.)<br />
<br />
• [mailto:cecil.su@GRANTTHORNTON.COM.SG Cecil Su] (Singapore)<br />
<br />
• [mailto:fabio.e.cerullo@aib.ie Fabio Cerullo] (Ireland)<br />
<br />
• [mailto:andrzej.targosz@proidea.org.pl Andrzej Targosz] (Poland)<br />
<br />
[https://www.owasp.org/index.php/How_to_Join_a_Committee How to join this committee]<br />
<br />
[https://lists.owasp.org/mailman/listinfo/global_education_committee Join our mailing list]<br />
<br />
== Scheduled Meetings ==<br />
<pre><br />
The Global Education Committee Meetings take place via Skype, see below for the local time: <br />
3:30 p.m. @ Austin, Texas <br />
4:30 p.m. @ New York <br />
7:30 p.m. @ Brasil <br />
22:30 a.m. @ Netherlands<br />
5:30 a.m. @ Singapore (following day)<br />
</pre><br />
Next meeting(s) scheduled for:<br />
* '''January 29th 2009'''<br />
* '''Februari 12th 2009'''<br />
<br />
= Agenda / Timeline <font color="red">'''(DRAFT)'''</font> =<br />
''' Deadline wednesday, 4th Februari'''<br />
== Tasks ==<br />
''' 60 days to make a proposal '''<br />
* ''' December 20th ''' - first draft of the proposal<br />
* ''' January 16th ''' - submit <br />
<br />
<br />
== Targets <font color="red">'''(DRAFT)'''</font> ==<br />
Below you can find the timeline, what has to be achieved by when. <br />
All tasks must be SMART!<br />
<br />
{| class="prettytable"<br />
! Task<br />
! Deadline<br />
! Type<br />
! Status<br />
! Description<br />
! Who<br />
|-<br />
| [[Categorize (Organization) of educational materials]]<br />
| '''TBD'''<br />
| Message<br />
| Status<br />
| Categorize / Organization of the educational materials for audience by roles and responsibilities/technologies and use the summit workshop notes.<br />
| Martin<br />
|-<br />
| [[Train the trainers (Teach the teachers)]]<br />
| '''Q1/Q2/Q3/Q4 2009'''<br />
| Delivery <br />
| Planning<br />
| Develop a train the trainer program that will train trainers to deliver training on OWASP related material.<br />
| Mano<br />
|-<br />
| [[Create an online assessment and training portal]]<br />
| '''Q2/Q3/Q4 2009'''<br />
| Delivery <br />
| Planning<br />
| Develop an OWASP assessment and training portal that end users can use to gauge their knowledge on OWASP concepts and training providers can use to promote their training offerings.<br />
| Mano<br />
|-<br />
| [[OWASP Boot Camp Project]]<br />
| '''Proposal:''' February 2009 '''Final:''' Oktober 2009 at OWASP AppSec US 2009<br />
| Delivery <br />
| started<br />
| OWASP Boot Camp about the OWASP projects, to deliver a Boot Camp presentation should be one of the criteria to get an alpha status as project<br />
| Martin<br />
|-<br />
| [[OWASP CTF event]]<br />
| OWASP AppSec Denver 2009<br />
| Delivery <br />
| Status<br />
| Description<br />
| Martin<br />
|-<br />
| [[Speakers Bureau Project]]<br />
| '''TBD'''<br />
| Delivery <br />
| '''started'''<br />
| List of speakers, Name, Bio, Topics, History <br><br />
Speakers in conferences (OOTM ask for funds on this)/summit <br />
| Martin<br />
|-<br />
| [[Marketing efforts]]<br />
| '''TBD (discussion with other members)'''<br />
| Awareness Services <br />
| Status<br />
| Flyers or Brochures of OWASP Top 10, Testing Guide.<br />
| Eduardo<br />
|-<br />
| [[Internationalization of the training materials]]<br />
| '''TBD (discussion with Juan)'''<br />
| Awareness Services <br />
| Status<br />
| Liaise with Juan Calderon for translation services for highly spoken languages <br />
| Eduardo<br />
|-<br />
| [[Education material]]<br />
| '''TBD'''<br />
| Training & Educational Services <br />
| Status<br />
| All projects should be summoned to create educational material (training service)<br />
1) Each Projects --> Documents (help), Tool, Training; Live CD (Portable)<br />
| Martin<br />
|-<br />
| [[Educational Academic Services]]<br />
| '''TBD'''<br />
| Training & Educational Services <br />
| <br />
<br />
3 Universities already in contact with and planning OWASP events to participate in. <br />
<br />
| Incorporate OWASP into the following top 5 Universities, within the next 12 months by introducing OWASP training and education resources at University's events.<br />
<br />
1) New York University<br />
2) Cornell University<br />
3) Princeton University<br />
4) University of Minnesota<br />
5) Columbia University<br />
<br />
As a result of these initiative we would hope to see:<br />
<br />
1) Confirming participation at arranged events<br />
2) Asking Universities to recognize they are using our resources by allowing us to place their names in wiki pages such as http://www.owasp.org/index.php/OWASP_Top_Ten_Project <br />
3) University faculty, staff and students participate in local and international events/meetings<br />
4) University faculty, staff and students contribute to OWASP projects<br />
<br />
|Kuai Hinojosa<br />
|}<br />
<br />
= Proposal <font color="red">'''(DRAFT)'''</font> =<br />
== Categorize (Organization) of educational materials ==<br />
Objective: Categorize / Organize educational material, estyle the Education Project website.<br />
<br><br />
Activities/Deadline:<br> <br />
* Categorize education material according to the CLASP roles<br><br />
* Group material into management-ish, student-ish, technical-ish <br><br />
<br />
Benefits<br><br />
Target specific demographic (managers, students...) Provide easy access to education material. Efficient categorization of education materials.<br />
<br />
== Train the trainers (Teach the teachers) ==<br />
Objective:<br />
Develop a train the trainer program that will train trainers to deliver training on OWASP related material.<br />
<br />
Activities/Deadline:<br />
# Develop a criteria to identify and approve trainers / Q1 2009<br />
# Identify pertinent OWASP related material that will be included in the training kit / Q2 2009. This is dependent on the education project organizing material.<br />
# Create a training toolkit with pre-built presentation and training materials, assessments etc. / Q3 2009<br />
# Conduct train the trainer sessions (remote or in-person) / Q4 2009<br />
<br />
Benefits:<br />
The training kit and trained trainers will be available resources promoting OWASP in local events worldwide.<br />
<br />
== Create an online assessment and training portal ==<br />
Objective:<br />
Develop an OWASP assessment and training portal that end users can use to gauge their knowledge on OWASP concepts and training providers can use to promote their training offerings.<br />
<br />
Activities/Deadline:<br />
# Generate OWASP assessment items (can use the testing guide and other sources) / Q2-Q3 2009<br />
# Develop an assessment portal to deliver taking of assessments with robust reporting by knowledge area / Q4 2009<br />
# Develop a training portal to allow training providers to publish and promote their training offerings / Q4 2009<br />
This can be developed as a summer of code project but is not a requirement. <br />
<br />
Benefits:<br />
Assessments that can be offered in OWASP events and other conferences to users will increase OWASP awareness. The portal can become the link between trainers and trainees and will eventually help in increasing the awareness and knowledge of application security in the industry.<br />
<br />
== OWASP Boot Camp Project ==<br />
Objective<br><br />
OWASP Boot Camp about the OWASP projects, to deliver a Boot Camp presentation should be one of the criteria to get an alpha status as project<br><br />
<br />
Activities/Deadline:<br> <br />
<br />
Benefits<br><br />
<br />
== OWASP CTF event ==<br />
Objective<br />
Generate a Capture The Flag framework to be offered at OWASP events<br />
<br />
Activities/Deadline: <br />
* Andrzej will contact the organizers of the CTF from the Denver OWASP Conference and work in using same model<br />
<br />
Benefits<br />
Capture The Flag events are very popular in conferences, creating and OWASP specific CFT will offer entertainment at events, generate attendants participation etc.<br />
<br />
== Speakers Bureau Project ==<br />
<br />
Objective<br><br />
OWASP Boot Camp about the OWASP projects, to deliver a Boot Camp presentation should be one of the criteria to get an alpha status as project<br><br />
<br />
Activities/Deadline:<br> <br />
<br />
Benefits<br><br />
List of speakers, Name, Bio, Topics, History <br />
Speakers in conferences (OOTM ask for funds on this)/summit<br />
<br />
Speakers Agreement - https://www.owasp.org/index.php/Speaker_Agreement<br />
<br />
== Marketing efforts ==<br />
Objective<br><br />
<br />
Activities/Deadline:<br> <br />
<br />
Benefits<br><br />
<br />
== Internationalization of the training materials ==<br />
Objective<br><br />
OWASP Boot Camp about the OWASP projects, to deliver a Boot Camp presentation should be one of the criteria to get an alpha status as project<br><br />
<br />
Activities/Deadline:<br> <br />
<br />
Benefits<br><br />
<br />
== Education material ==<br />
Objective<br><br />
<br />
Activities/Deadline:<br> <br />
<br />
Benefits<br><br />
<br />
Flyers or Brochures of OWASP Top 10, Testing Guide.<br />
<br />
== Academic Educational Services ==<br />
Objectives<br><br />
Promote and encourage OWASP resources at accredited Universities around the world within the next 12 months by introducing OWASP training and education material at University's events.<br />
<br />
Activities/Deadline:<br />
<br />
* Build a list of at least 5 Universities with computer science or risk management programs that can be targeted /Q1 2009 <br />
* Establish communication with targeted universities, generate key contacts and establish relationships /Q1 - Q4 2009<br />
* Develop a list of possible academic events in which to participate /Q1 - Q2 2009 <br />
* Participate in at least 1 Academic event, present case studies or OWASP education materials /Q1 - Q4<br />
<br />
Benefits<br><br />
OWASP will gain exposure in the academic industry, starting with accredited universities around the world. Universities will become members of OWASP, provide meeting space, students will apply to OWASP grants, and provide support and structure</div>Cybermalandrohttps://wiki.owasp.org/index.php?title=Global_Education_Committee&diff=52671Global Education Committee2009-02-02T03:01:18Z<p>Cybermalandro: /* Categorize (Organization) of educational materials */</p>
<hr />
<div>[[Category:OWASP Project]]<br />
<br />
= About the Global Education Committee =<br />
'''The Global Education Committee was created during the OWASP EU Summit in Portugal 2008. The primary purpose of the Global Education Committee is: to work with the [https://www.owasp.org/index.php/Category:OWASP_Education_Project OWASP Education Project] to provide educational materials for both internal and external users, develop liaisons with educational institutions worldwide.'''<br />
<br />
== Mission ==<br />
Provide awareness, training and educational services to corporate,<br />
government and educational institutions on application security.<br />
<br />
== Vision ==<br />
Make OWASP educational material globally available as a well known resource<br />
in easily consumable form mapped to a framework tied specifically to user<br />
roles and responsibilities<br />
<br />
== Committee Members ==<br />
Education Committee (Board Member Rep: [mailto:seba@owasp.org Seba])<br />
<br />
• [mailto:martin.knobloch@owasp.org Martin Knobloch] (Netherlands)<br />
<br />
• [mailto:mano.paul@securisksolutions.com Mano Paul] (U.S.)<br />
<br />
• [mailto:eduardo.neves@owasp.org Eduardo Neves] (Brazil)<br />
<br />
• [mailto:kuai.hinojosa@owasp.org Kuai Hinjosa] (U.S.)<br />
<br />
• [mailto:cecil.su@GRANTTHORNTON.COM.SG Cecil Su] (Singapore)<br />
<br />
• [mailto:fabio.e.cerullo@aib.ie Fabio Cerullo] (Ireland)<br />
<br />
• [mailto:andrzej.targosz@proidea.org.pl Andrzej Targosz] (Poland)<br />
<br />
[https://www.owasp.org/index.php/How_to_Join_a_Committee How to join this committee]<br />
<br />
[https://lists.owasp.org/mailman/listinfo/global_education_committee Join our mailing list]<br />
<br />
== Scheduled Meetings ==<br />
<pre><br />
The Global Education Committee Meetings take place via Skype, see below for the local time: <br />
3:30 p.m. @ Austin, Texas <br />
4:30 p.m. @ New York <br />
7:30 p.m. @ Brasil <br />
22:30 a.m. @ Netherlands<br />
5:30 a.m. @ Singapore (following day)<br />
</pre><br />
Next meeting(s) scheduled for:<br />
* '''January 29th 2009'''<br />
* '''Februari 12th 2009'''<br />
<br />
= Agenda / Timeline <font color="red">'''(DRAFT)'''</font> =<br />
''' Deadline wednesday, 4th Februari'''<br />
== Tasks ==<br />
''' 60 days to make a proposal '''<br />
* ''' December 20th ''' - first draft of the proposal<br />
* ''' January 16th ''' - submit <br />
<br />
<br />
== Targets <font color="red">'''(DRAFT)'''</font> ==<br />
Below you can find the timeline, what has to be achieved by when. <br />
All tasks must be SMART!<br />
<br />
{| class="prettytable"<br />
! Task<br />
! Deadline<br />
! Type<br />
! Status<br />
! Description<br />
! Who<br />
|-<br />
| [[Categorize (Organization) of educational materials]]<br />
| '''TBD'''<br />
| Message<br />
| Status<br />
| Categorize / Organization of the educational materials for audience by roles and responsibilities/technologies and use the summit workshop notes.<br />
| Martin<br />
|-<br />
| [[Train the trainers (Teach the teachers)]]<br />
| '''Q1/Q2/Q3/Q4 2009'''<br />
| Delivery <br />
| Planning<br />
| Develop a train the trainer program that will train trainers to deliver training on OWASP related material.<br />
| Mano<br />
|-<br />
| [[Create an online assessment and training portal]]<br />
| '''Q2/Q3/Q4 2009'''<br />
| Delivery <br />
| Planning<br />
| Develop an OWASP assessment and training portal that end users can use to gauge their knowledge on OWASP concepts and training providers can use to promote their training offerings.<br />
| Mano<br />
|-<br />
| [[OWASP Boot Camp Project]]<br />
| '''Proposal:''' February 2009 '''Final:''' Oktober 2009 at OWASP AppSec US 2009<br />
| Delivery <br />
| started<br />
| OWASP Boot Camp about the OWASP projects, to deliver a Boot Camp presentation should be one of the criteria to get an alpha status as project<br />
| Martin<br />
|-<br />
| [[OWASP CTF event]]<br />
| OWASP AppSec Denver 2009<br />
| Delivery <br />
| Status<br />
| Description<br />
| Martin<br />
|-<br />
| [[Speakers Bureau Project]]<br />
| '''TBD'''<br />
| Delivery <br />
| '''started'''<br />
| List of speakers, Name, Bio, Topics, History <br><br />
Speakers in conferences (OOTM ask for funds on this)/summit <br />
| Martin<br />
|-<br />
| [[Marketing efforts]]<br />
| '''TBD (discussion with other members)'''<br />
| Awareness Services <br />
| Status<br />
| Flyers or Brochures of OWASP Top 10, Testing Guide.<br />
| Eduardo<br />
|-<br />
| [[Internationalization of the training materials]]<br />
| '''TBD (discussion with Juan)'''<br />
| Awareness Services <br />
| Status<br />
| Liaise with Juan Calderon for translation services for highly spoken languages <br />
| Eduardo<br />
|-<br />
| [[Education material]]<br />
| '''TBD'''<br />
| Training & Educational Services <br />
| Status<br />
| All projects should be summoned to create educational material (training service)<br />
1) Each Projects --> Documents (help), Tool, Training; Live CD (Portable)<br />
| Martin<br />
|-<br />
| [[Educational Academic Services]]<br />
| '''TBD'''<br />
| Training & Educational Services <br />
| <br />
<br />
3 Universities already in contact with and planning OWASP events to participate in. <br />
<br />
| Incorporate OWASP into the following top 5 Universities, within the next 12 months by introducing OWASP training and education resources at University's events.<br />
<br />
1) New York University<br />
2) Cornell University<br />
3) Princeton University<br />
4) University of Minnesota<br />
5) Columbia University<br />
<br />
As a result of these initiative we would hope to see:<br />
<br />
1) Confirming participation at arranged events<br />
2) Asking Universities to recognize they are using our resources by allowing us to place their names in wiki pages such as http://www.owasp.org/index.php/OWASP_Top_Ten_Project <br />
3) University faculty, staff and students participate in local and international events/meetings<br />
4) University faculty, staff and students contribute to OWASP projects<br />
<br />
|Kuai Hinojosa<br />
|}<br />
<br />
= Proposal <font color="red">'''(DRAFT)'''</font> =<br />
== Categorize (Organization) of educational materials ==<br />
Objective:Categorize / Organize educational material, estyle the Education Project website.<br />
<br><br />
Activities/Deadline:<br> <br />
* Categorize education material according to the CLASP roles<br><br />
* Group material into management-ish, student-ish, technical-ish <br><br />
<br />
Benefits<br><br />
Target specific demographic (managers, students...) Provide easy access to education material. Efficient categorization of education materials.<br />
<br />
== Train the trainers (Teach the teachers) ==<br />
Objective:<br />
Develop a train the trainer program that will train trainers to deliver training on OWASP related material.<br />
<br />
Activities/Deadline:<br />
# Develop a criteria to identify and approve trainers / Q1 2009<br />
# Identify pertinent OWASP related material that will be included in the training kit / Q2 2009. This is dependent on the education project organizing material.<br />
# Create a training toolkit with pre-built presentation and training materials, assessments etc. / Q3 2009<br />
# Conduct train the trainer sessions (remote or in-person) / Q4 2009<br />
<br />
Benefits:<br />
The training kit and trained trainers will be available resources promoting OWASP in local events worldwide.<br />
<br />
== Create an online assessment and training portal ==<br />
Objective:<br />
Develop an OWASP assessment and training portal that end users can use to gauge their knowledge on OWASP concepts and training providers can use to promote their training offerings.<br />
<br />
Activities/Deadline:<br />
# Generate OWASP assessment items (can use the testing guide and other sources) / Q2-Q3 2009<br />
# Develop an assessment portal to deliver taking of assessments with robust reporting by knowledge area / Q4 2009<br />
# Develop a training portal to allow training providers to publish and promote their training offerings / Q4 2009<br />
This can be developed as a summer of code project but is not a requirement. <br />
<br />
Benefits:<br />
Assessments that can be offered in OWASP events and other conferences to users will increase OWASP awareness. The portal can become the link between trainers and trainees and will eventually help in increasing the awareness and knowledge of application security in the industry.<br />
<br />
== OWASP Boot Camp Project ==<br />
Objective<br><br />
OWASP Boot Camp about the OWASP projects, to deliver a Boot Camp presentation should be one of the criteria to get an alpha status as project<br><br />
<br />
Activities/Deadline:<br> <br />
<br />
Benefits<br><br />
<br />
== OWASP CTF event ==<br />
Objective<br />
Generate a Capture The Flag framework to be offered at OWASP events<br />
<br />
Activities/Deadline: <br />
* Andrzej will contact the organizers of the CTF from the Denver OWASP Conference and work in using same model<br />
<br />
Benefits<br />
Capture The Flag events are very popular in conferences, creating and OWASP specific CFT will offer entertainment at events, generate attendants participation etc.<br />
<br />
== Speakers Bureau Project ==<br />
<br />
Objective<br><br />
OWASP Boot Camp about the OWASP projects, to deliver a Boot Camp presentation should be one of the criteria to get an alpha status as project<br><br />
<br />
Activities/Deadline:<br> <br />
<br />
Benefits<br><br />
List of speakers, Name, Bio, Topics, History <br />
Speakers in conferences (OOTM ask for funds on this)/summit<br />
<br />
Speakers Agreement - https://www.owasp.org/index.php/Speaker_Agreement<br />
<br />
== Marketing efforts ==<br />
Objective<br><br />
<br />
Activities/Deadline:<br> <br />
<br />
Benefits<br><br />
<br />
== Internationalization of the training materials ==<br />
Objective<br><br />
OWASP Boot Camp about the OWASP projects, to deliver a Boot Camp presentation should be one of the criteria to get an alpha status as project<br><br />
<br />
Activities/Deadline:<br> <br />
<br />
Benefits<br><br />
<br />
== Education material ==<br />
Objective<br><br />
<br />
Activities/Deadline:<br> <br />
<br />
Benefits<br><br />
<br />
Flyers or Brochures of OWASP Top 10, Testing Guide.<br />
<br />
== Academic Educational Services ==<br />
Objectives<br><br />
Promote and encourage OWASP resources at accredited Universities around the world within the next 12 months by introducing OWASP training and education material at University's events.<br />
<br />
Activities/Deadline:<br />
<br />
* Build a list of at least 5 Universities with computer science or risk management programs that can be targeted /Q1 2009 <br />
* Establish communication with targeted universities, generate key contacts and establish relationships /Q1 - Q4 2009<br />
* Develop a list of possible academic events in which to participate /Q1 - Q2 2009 <br />
* Participate in at least 1 Academic event, present case studies or OWASP education materials /Q1 - Q4<br />
<br />
Benefits<br><br />
OWASP will gain exposure in the academic industry, starting with accredited universities around the world. Universities will become members of OWASP, provide meeting space, students will apply to OWASP grants, and provide support and structure</div>Cybermalandrohttps://wiki.owasp.org/index.php?title=Global_Education_Committee&diff=52670Global Education Committee2009-02-02T03:00:22Z<p>Cybermalandro: /* Categorize (Organization) of educational materials */</p>
<hr />
<div>[[Category:OWASP Project]]<br />
<br />
= About the Global Education Committee =<br />
'''The Global Education Committee was created during the OWASP EU Summit in Portugal 2008. The primary purpose of the Global Education Committee is: to work with the [https://www.owasp.org/index.php/Category:OWASP_Education_Project OWASP Education Project] to provide educational materials for both internal and external users, develop liaisons with educational institutions worldwide.'''<br />
<br />
== Mission ==<br />
Provide awareness, training and educational services to corporate,<br />
government and educational institutions on application security.<br />
<br />
== Vision ==<br />
Make OWASP educational material globally available as a well known resource<br />
in easily consumable form mapped to a framework tied specifically to user<br />
roles and responsibilities<br />
<br />
== Committee Members ==<br />
Education Committee (Board Member Rep: [mailto:seba@owasp.org Seba])<br />
<br />
• [mailto:martin.knobloch@owasp.org Martin Knobloch] (Netherlands)<br />
<br />
• [mailto:mano.paul@securisksolutions.com Mano Paul] (U.S.)<br />
<br />
• [mailto:eduardo.neves@owasp.org Eduardo Neves] (Brazil)<br />
<br />
• [mailto:kuai.hinojosa@owasp.org Kuai Hinjosa] (U.S.)<br />
<br />
• [mailto:cecil.su@GRANTTHORNTON.COM.SG Cecil Su] (Singapore)<br />
<br />
• [mailto:fabio.e.cerullo@aib.ie Fabio Cerullo] (Ireland)<br />
<br />
• [mailto:andrzej.targosz@proidea.org.pl Andrzej Targosz] (Poland)<br />
<br />
[https://www.owasp.org/index.php/How_to_Join_a_Committee How to join this committee]<br />
<br />
[https://lists.owasp.org/mailman/listinfo/global_education_committee Join our mailing list]<br />
<br />
== Scheduled Meetings ==<br />
<pre><br />
The Global Education Committee Meetings take place via Skype, see below for the local time: <br />
3:30 p.m. @ Austin, Texas <br />
4:30 p.m. @ New York <br />
7:30 p.m. @ Brasil <br />
22:30 a.m. @ Netherlands<br />
5:30 a.m. @ Singapore (following day)<br />
</pre><br />
Next meeting(s) scheduled for:<br />
* '''January 29th 2009'''<br />
* '''Februari 12th 2009'''<br />
<br />
= Agenda / Timeline <font color="red">'''(DRAFT)'''</font> =<br />
''' Deadline wednesday, 4th Februari'''<br />
== Tasks ==<br />
''' 60 days to make a proposal '''<br />
* ''' December 20th ''' - first draft of the proposal<br />
* ''' January 16th ''' - submit <br />
<br />
<br />
== Targets <font color="red">'''(DRAFT)'''</font> ==<br />
Below you can find the timeline, what has to be achieved by when. <br />
All tasks must be SMART!<br />
<br />
{| class="prettytable"<br />
! Task<br />
! Deadline<br />
! Type<br />
! Status<br />
! Description<br />
! Who<br />
|-<br />
| [[Categorize (Organization) of educational materials]]<br />
| '''TBD'''<br />
| Message<br />
| Status<br />
| Categorize / Organization of the educational materials for audience by roles and responsibilities/technologies and use the summit workshop notes.<br />
| Martin<br />
|-<br />
| [[Train the trainers (Teach the teachers)]]<br />
| '''Q1/Q2/Q3/Q4 2009'''<br />
| Delivery <br />
| Planning<br />
| Develop a train the trainer program that will train trainers to deliver training on OWASP related material.<br />
| Mano<br />
|-<br />
| [[Create an online assessment and training portal]]<br />
| '''Q2/Q3/Q4 2009'''<br />
| Delivery <br />
| Planning<br />
| Develop an OWASP assessment and training portal that end users can use to gauge their knowledge on OWASP concepts and training providers can use to promote their training offerings.<br />
| Mano<br />
|-<br />
| [[OWASP Boot Camp Project]]<br />
| '''Proposal:''' February 2009 '''Final:''' Oktober 2009 at OWASP AppSec US 2009<br />
| Delivery <br />
| started<br />
| OWASP Boot Camp about the OWASP projects, to deliver a Boot Camp presentation should be one of the criteria to get an alpha status as project<br />
| Martin<br />
|-<br />
| [[OWASP CTF event]]<br />
| OWASP AppSec Denver 2009<br />
| Delivery <br />
| Status<br />
| Description<br />
| Martin<br />
|-<br />
| [[Speakers Bureau Project]]<br />
| '''TBD'''<br />
| Delivery <br />
| '''started'''<br />
| List of speakers, Name, Bio, Topics, History <br><br />
Speakers in conferences (OOTM ask for funds on this)/summit <br />
| Martin<br />
|-<br />
| [[Marketing efforts]]<br />
| '''TBD (discussion with other members)'''<br />
| Awareness Services <br />
| Status<br />
| Flyers or Brochures of OWASP Top 10, Testing Guide.<br />
| Eduardo<br />
|-<br />
| [[Internationalization of the training materials]]<br />
| '''TBD (discussion with Juan)'''<br />
| Awareness Services <br />
| Status<br />
| Liaise with Juan Calderon for translation services for highly spoken languages <br />
| Eduardo<br />
|-<br />
| [[Education material]]<br />
| '''TBD'''<br />
| Training & Educational Services <br />
| Status<br />
| All projects should be summoned to create educational material (training service)<br />
1) Each Projects --> Documents (help), Tool, Training; Live CD (Portable)<br />
| Martin<br />
|-<br />
| [[Educational Academic Services]]<br />
| '''TBD'''<br />
| Training & Educational Services <br />
| <br />
<br />
3 Universities already in contact with and planning OWASP events to participate in. <br />
<br />
| Incorporate OWASP into the following top 5 Universities, within the next 12 months by introducing OWASP training and education resources at University's events.<br />
<br />
1) New York University<br />
2) Cornell University<br />
3) Princeton University<br />
4) University of Minnesota<br />
5) Columbia University<br />
<br />
As a result of these initiative we would hope to see:<br />
<br />
1) Confirming participation at arranged events<br />
2) Asking Universities to recognize they are using our resources by allowing us to place their names in wiki pages such as http://www.owasp.org/index.php/OWASP_Top_Ten_Project <br />
3) University faculty, staff and students participate in local and international events/meetings<br />
4) University faculty, staff and students contribute to OWASP projects<br />
<br />
|Kuai Hinojosa<br />
|}<br />
<br />
= Proposal <font color="red">'''(DRAFT)'''</font> =<br />
== Categorize (Organization) of educational materials ==<br />
Objective<br><br />
Categorize / Organize educational material, estyle the Education Project website.<br />
<br><br />
Activities/Deadline:<br> <br />
* Categorize education material according to the CLASP roles<br><br />
* Group material into management-ish, student-ish, technical-ish <br><br />
<br />
Benefits<br><br />
Target specific demographic (managers, students...) Provide easy access to education material. Efficient categorization of education materials.<br />
<br />
== Train the trainers (Teach the teachers) ==<br />
Objective:<br />
Develop a train the trainer program that will train trainers to deliver training on OWASP related material.<br />
<br />
Activities/Deadline:<br />
# Develop a criteria to identify and approve trainers / Q1 2009<br />
# Identify pertinent OWASP related material that will be included in the training kit / Q2 2009. This is dependent on the education project organizing material.<br />
# Create a training toolkit with pre-built presentation and training materials, assessments etc. / Q3 2009<br />
# Conduct train the trainer sessions (remote or in-person) / Q4 2009<br />
<br />
Benefits:<br />
The training kit and trained trainers will be available resources promoting OWASP in local events worldwide.<br />
<br />
== Create an online assessment and training portal ==<br />
Objective:<br />
Develop an OWASP assessment and training portal that end users can use to gauge their knowledge on OWASP concepts and training providers can use to promote their training offerings.<br />
<br />
Activities/Deadline:<br />
# Generate OWASP assessment items (can use the testing guide and other sources) / Q2-Q3 2009<br />
# Develop an assessment portal to deliver taking of assessments with robust reporting by knowledge area / Q4 2009<br />
# Develop a training portal to allow training providers to publish and promote their training offerings / Q4 2009<br />
This can be developed as a summer of code project but is not a requirement. <br />
<br />
Benefits:<br />
Assessments that can be offered in OWASP events and other conferences to users will increase OWASP awareness. The portal can become the link between trainers and trainees and will eventually help in increasing the awareness and knowledge of application security in the industry.<br />
<br />
== OWASP Boot Camp Project ==<br />
Objective<br><br />
OWASP Boot Camp about the OWASP projects, to deliver a Boot Camp presentation should be one of the criteria to get an alpha status as project<br><br />
<br />
Activities/Deadline:<br> <br />
<br />
Benefits<br><br />
<br />
== OWASP CTF event ==<br />
Objective<br />
Generate a Capture The Flag framework to be offered at OWASP events<br />
<br />
Activities/Deadline: <br />
* Andrzej will contact the organizers of the CTF from the Denver OWASP Conference and work in using same model<br />
<br />
Benefits<br />
Capture The Flag events are very popular in conferences, creating and OWASP specific CFT will offer entertainment at events, generate attendants participation etc.<br />
<br />
== Speakers Bureau Project ==<br />
<br />
Objective<br><br />
OWASP Boot Camp about the OWASP projects, to deliver a Boot Camp presentation should be one of the criteria to get an alpha status as project<br><br />
<br />
Activities/Deadline:<br> <br />
<br />
Benefits<br><br />
List of speakers, Name, Bio, Topics, History <br />
Speakers in conferences (OOTM ask for funds on this)/summit<br />
<br />
Speakers Agreement - https://www.owasp.org/index.php/Speaker_Agreement<br />
<br />
== Marketing efforts ==<br />
Objective<br><br />
<br />
Activities/Deadline:<br> <br />
<br />
Benefits<br><br />
<br />
== Internationalization of the training materials ==<br />
Objective<br><br />
OWASP Boot Camp about the OWASP projects, to deliver a Boot Camp presentation should be one of the criteria to get an alpha status as project<br><br />
<br />
Activities/Deadline:<br> <br />
<br />
Benefits<br><br />
<br />
== Education material ==<br />
Objective<br><br />
<br />
Activities/Deadline:<br> <br />
<br />
Benefits<br><br />
<br />
Flyers or Brochures of OWASP Top 10, Testing Guide.<br />
<br />
== Academic Educational Services ==<br />
Objectives<br><br />
Promote and encourage OWASP resources at accredited Universities around the world within the next 12 months by introducing OWASP training and education material at University's events.<br />
<br />
Activities/Deadline:<br />
<br />
* Build a list of at least 5 Universities with computer science or risk management programs that can be targeted /Q1 2009 <br />
* Establish communication with targeted universities, generate key contacts and establish relationships /Q1 - Q4 2009<br />
* Develop a list of possible academic events in which to participate /Q1 - Q2 2009 <br />
* Participate in at least 1 Academic event, present case studies or OWASP education materials /Q1 - Q4<br />
<br />
Benefits<br><br />
OWASP will gain exposure in the academic industry, starting with accredited universities around the world. Universities will become members of OWASP, provide meeting space, students will apply to OWASP grants, and provide support and structure</div>Cybermalandrohttps://wiki.owasp.org/index.php?title=Global_Education_Committee&diff=52669Global Education Committee2009-02-02T02:59:39Z<p>Cybermalandro: /* Categorize (Organization) of educational materials */</p>
<hr />
<div>[[Category:OWASP Project]]<br />
<br />
= About the Global Education Committee =<br />
'''The Global Education Committee was created during the OWASP EU Summit in Portugal 2008. The primary purpose of the Global Education Committee is: to work with the [https://www.owasp.org/index.php/Category:OWASP_Education_Project OWASP Education Project] to provide educational materials for both internal and external users, develop liaisons with educational institutions worldwide.'''<br />
<br />
== Mission ==<br />
Provide awareness, training and educational services to corporate,<br />
government and educational institutions on application security.<br />
<br />
== Vision ==<br />
Make OWASP educational material globally available as a well known resource<br />
in easily consumable form mapped to a framework tied specifically to user<br />
roles and responsibilities<br />
<br />
== Committee Members ==<br />
Education Committee (Board Member Rep: [mailto:seba@owasp.org Seba])<br />
<br />
• [mailto:martin.knobloch@owasp.org Martin Knobloch] (Netherlands)<br />
<br />
• [mailto:mano.paul@securisksolutions.com Mano Paul] (U.S.)<br />
<br />
• [mailto:eduardo.neves@owasp.org Eduardo Neves] (Brazil)<br />
<br />
• [mailto:kuai.hinojosa@owasp.org Kuai Hinjosa] (U.S.)<br />
<br />
• [mailto:cecil.su@GRANTTHORNTON.COM.SG Cecil Su] (Singapore)<br />
<br />
• [mailto:fabio.e.cerullo@aib.ie Fabio Cerullo] (Ireland)<br />
<br />
• [mailto:andrzej.targosz@proidea.org.pl Andrzej Targosz] (Poland)<br />
<br />
[https://www.owasp.org/index.php/How_to_Join_a_Committee How to join this committee]<br />
<br />
[https://lists.owasp.org/mailman/listinfo/global_education_committee Join our mailing list]<br />
<br />
== Scheduled Meetings ==<br />
<pre><br />
The Global Education Committee Meetings take place via Skype, see below for the local time: <br />
3:30 p.m. @ Austin, Texas <br />
4:30 p.m. @ New York <br />
7:30 p.m. @ Brasil <br />
22:30 a.m. @ Netherlands<br />
5:30 a.m. @ Singapore (following day)<br />
</pre><br />
Next meeting(s) scheduled for:<br />
* '''January 29th 2009'''<br />
* '''Februari 12th 2009'''<br />
<br />
= Agenda / Timeline <font color="red">'''(DRAFT)'''</font> =<br />
''' Deadline wednesday, 4th Februari'''<br />
== Tasks ==<br />
''' 60 days to make a proposal '''<br />
* ''' December 20th ''' - first draft of the proposal<br />
* ''' January 16th ''' - submit <br />
<br />
<br />
== Targets <font color="red">'''(DRAFT)'''</font> ==<br />
Below you can find the timeline, what has to be achieved by when. <br />
All tasks must be SMART!<br />
<br />
{| class="prettytable"<br />
! Task<br />
! Deadline<br />
! Type<br />
! Status<br />
! Description<br />
! Who<br />
|-<br />
| [[Categorize (Organization) of educational materials]]<br />
| '''TBD'''<br />
| Message<br />
| Status<br />
| Categorize / Organization of the educational materials for audience by roles and responsibilities/technologies and use the summit workshop notes.<br />
| Martin<br />
|-<br />
| [[Train the trainers (Teach the teachers)]]<br />
| '''Q1/Q2/Q3/Q4 2009'''<br />
| Delivery <br />
| Planning<br />
| Develop a train the trainer program that will train trainers to deliver training on OWASP related material.<br />
| Mano<br />
|-<br />
| [[Create an online assessment and training portal]]<br />
| '''Q2/Q3/Q4 2009'''<br />
| Delivery <br />
| Planning<br />
| Develop an OWASP assessment and training portal that end users can use to gauge their knowledge on OWASP concepts and training providers can use to promote their training offerings.<br />
| Mano<br />
|-<br />
| [[OWASP Boot Camp Project]]<br />
| '''Proposal:''' February 2009 '''Final:''' Oktober 2009 at OWASP AppSec US 2009<br />
| Delivery <br />
| started<br />
| OWASP Boot Camp about the OWASP projects, to deliver a Boot Camp presentation should be one of the criteria to get an alpha status as project<br />
| Martin<br />
|-<br />
| [[OWASP CTF event]]<br />
| OWASP AppSec Denver 2009<br />
| Delivery <br />
| Status<br />
| Description<br />
| Martin<br />
|-<br />
| [[Speakers Bureau Project]]<br />
| '''TBD'''<br />
| Delivery <br />
| '''started'''<br />
| List of speakers, Name, Bio, Topics, History <br><br />
Speakers in conferences (OOTM ask for funds on this)/summit <br />
| Martin<br />
|-<br />
| [[Marketing efforts]]<br />
| '''TBD (discussion with other members)'''<br />
| Awareness Services <br />
| Status<br />
| Flyers or Brochures of OWASP Top 10, Testing Guide.<br />
| Eduardo<br />
|-<br />
| [[Internationalization of the training materials]]<br />
| '''TBD (discussion with Juan)'''<br />
| Awareness Services <br />
| Status<br />
| Liaise with Juan Calderon for translation services for highly spoken languages <br />
| Eduardo<br />
|-<br />
| [[Education material]]<br />
| '''TBD'''<br />
| Training & Educational Services <br />
| Status<br />
| All projects should be summoned to create educational material (training service)<br />
1) Each Projects --> Documents (help), Tool, Training; Live CD (Portable)<br />
| Martin<br />
|-<br />
| [[Educational Academic Services]]<br />
| '''TBD'''<br />
| Training & Educational Services <br />
| <br />
<br />
3 Universities already in contact with and planning OWASP events to participate in. <br />
<br />
| Incorporate OWASP into the following top 5 Universities, within the next 12 months by introducing OWASP training and education resources at University's events.<br />
<br />
1) New York University<br />
2) Cornell University<br />
3) Princeton University<br />
4) University of Minnesota<br />
5) Columbia University<br />
<br />
As a result of these initiative we would hope to see:<br />
<br />
1) Confirming participation at arranged events<br />
2) Asking Universities to recognize they are using our resources by allowing us to place their names in wiki pages such as http://www.owasp.org/index.php/OWASP_Top_Ten_Project <br />
3) University faculty, staff and students participate in local and international events/meetings<br />
4) University faculty, staff and students contribute to OWASP projects<br />
<br />
|Kuai Hinojosa<br />
|}<br />
<br />
= Proposal <font color="red">'''(DRAFT)'''</font> =<br />
== Categorize (Organization) of educational materials ==<br />
Objective<br><br />
Categorize / Organize educational material, estyle the Education Project website.<br />
<br><br />
Activities/Deadline:<br> <br />
* Categorize education material according to the CLASP roles<br><br />
* Group material into 'management-ish', 'student-ish', technical-ish' <br><br />
<br />
Benefits<br><br />
Target specific demographic (managers, students...) Provide easy access to education material. Efficient categorization of education materials.<br />
<br />
== Train the trainers (Teach the teachers) ==<br />
Objective:<br />
Develop a train the trainer program that will train trainers to deliver training on OWASP related material.<br />
<br />
Activities/Deadline:<br />
# Develop a criteria to identify and approve trainers / Q1 2009<br />
# Identify pertinent OWASP related material that will be included in the training kit / Q2 2009. This is dependent on the education project organizing material.<br />
# Create a training toolkit with pre-built presentation and training materials, assessments etc. / Q3 2009<br />
# Conduct train the trainer sessions (remote or in-person) / Q4 2009<br />
<br />
Benefits:<br />
The training kit and trained trainers will be available resources promoting OWASP in local events worldwide.<br />
<br />
== Create an online assessment and training portal ==<br />
Objective:<br />
Develop an OWASP assessment and training portal that end users can use to gauge their knowledge on OWASP concepts and training providers can use to promote their training offerings.<br />
<br />
Activities/Deadline:<br />
# Generate OWASP assessment items (can use the testing guide and other sources) / Q2-Q3 2009<br />
# Develop an assessment portal to deliver taking of assessments with robust reporting by knowledge area / Q4 2009<br />
# Develop a training portal to allow training providers to publish and promote their training offerings / Q4 2009<br />
This can be developed as a summer of code project but is not a requirement. <br />
<br />
Benefits:<br />
Assessments that can be offered in OWASP events and other conferences to users will increase OWASP awareness. The portal can become the link between trainers and trainees and will eventually help in increasing the awareness and knowledge of application security in the industry.<br />
<br />
== OWASP Boot Camp Project ==<br />
Objective<br><br />
OWASP Boot Camp about the OWASP projects, to deliver a Boot Camp presentation should be one of the criteria to get an alpha status as project<br><br />
<br />
Activities/Deadline:<br> <br />
<br />
Benefits<br><br />
<br />
== OWASP CTF event ==<br />
Objective<br />
Generate a Capture The Flag framework to be offered at OWASP events<br />
<br />
Activities/Deadline: <br />
* Andrzej will contact the organizers of the CTF from the Denver OWASP Conference and work in using same model<br />
<br />
Benefits<br />
Capture The Flag events are very popular in conferences, creating and OWASP specific CFT will offer entertainment at events, generate attendants participation etc.<br />
<br />
== Speakers Bureau Project ==<br />
<br />
Objective<br><br />
OWASP Boot Camp about the OWASP projects, to deliver a Boot Camp presentation should be one of the criteria to get an alpha status as project<br><br />
<br />
Activities/Deadline:<br> <br />
<br />
Benefits<br><br />
List of speakers, Name, Bio, Topics, History <br />
Speakers in conferences (OOTM ask for funds on this)/summit<br />
<br />
Speakers Agreement - https://www.owasp.org/index.php/Speaker_Agreement<br />
<br />
== Marketing efforts ==<br />
Objective<br><br />
<br />
Activities/Deadline:<br> <br />
<br />
Benefits<br><br />
<br />
== Internationalization of the training materials ==<br />
Objective<br><br />
OWASP Boot Camp about the OWASP projects, to deliver a Boot Camp presentation should be one of the criteria to get an alpha status as project<br><br />
<br />
Activities/Deadline:<br> <br />
<br />
Benefits<br><br />
<br />
== Education material ==<br />
Objective<br><br />
<br />
Activities/Deadline:<br> <br />
<br />
Benefits<br><br />
<br />
Flyers or Brochures of OWASP Top 10, Testing Guide.<br />
<br />
== Academic Educational Services ==<br />
Objectives<br><br />
Promote and encourage OWASP resources at accredited Universities around the world within the next 12 months by introducing OWASP training and education material at University's events.<br />
<br />
Activities/Deadline:<br />
<br />
* Build a list of at least 5 Universities with computer science or risk management programs that can be targeted /Q1 2009 <br />
* Establish communication with targeted universities, generate key contacts and establish relationships /Q1 - Q4 2009<br />
* Develop a list of possible academic events in which to participate /Q1 - Q2 2009 <br />
* Participate in at least 1 Academic event, present case studies or OWASP education materials /Q1 - Q4<br />
<br />
Benefits<br><br />
OWASP will gain exposure in the academic industry, starting with accredited universities around the world. Universities will become members of OWASP, provide meeting space, students will apply to OWASP grants, and provide support and structure</div>Cybermalandrohttps://wiki.owasp.org/index.php?title=Global_Education_Committee&diff=52668Global Education Committee2009-02-02T02:50:58Z<p>Cybermalandro: /* Education material */</p>
<hr />
<div>[[Category:OWASP Project]]<br />
<br />
= About the Global Education Committee =<br />
'''The Global Education Committee was created during the OWASP EU Summit in Portugal 2008. The primary purpose of the Global Education Committee is: to work with the [https://www.owasp.org/index.php/Category:OWASP_Education_Project OWASP Education Project] to provide educational materials for both internal and external users, develop liaisons with educational institutions worldwide.'''<br />
<br />
== Mission ==<br />
Provide awareness, training and educational services to corporate,<br />
government and educational institutions on application security.<br />
<br />
== Vision ==<br />
Make OWASP educational material globally available as a well known resource<br />
in easily consumable form mapped to a framework tied specifically to user<br />
roles and responsibilities<br />
<br />
== Committee Members ==<br />
Education Committee (Board Member Rep: [mailto:seba@owasp.org Seba])<br />
<br />
• [mailto:martin.knobloch@owasp.org Martin Knobloch] (Netherlands)<br />
<br />
• [mailto:mano.paul@securisksolutions.com Mano Paul] (U.S.)<br />
<br />
• [mailto:eduardo.neves@owasp.org Eduardo Neves] (Brazil)<br />
<br />
• [mailto:kuai.hinojosa@owasp.org Kuai Hinjosa] (U.S.)<br />
<br />
• [mailto:cecil.su@GRANTTHORNTON.COM.SG Cecil Su] (Singapore)<br />
<br />
• [mailto:fabio.e.cerullo@aib.ie Fabio Cerullo] (Ireland)<br />
<br />
• [mailto:andrzej.targosz@proidea.org.pl Andrzej Targosz] (Poland)<br />
<br />
[https://www.owasp.org/index.php/How_to_Join_a_Committee How to join this committee]<br />
<br />
[https://lists.owasp.org/mailman/listinfo/global_education_committee Join our mailing list]<br />
<br />
== Scheduled Meetings ==<br />
<pre><br />
The Global Education Committee Meetings take place via Skype, see below for the local time: <br />
3:30 p.m. @ Austin, Texas <br />
4:30 p.m. @ New York <br />
7:30 p.m. @ Brasil <br />
22:30 a.m. @ Netherlands<br />
5:30 a.m. @ Singapore (following day)<br />
</pre><br />
Next meeting(s) scheduled for:<br />
* '''January 29th 2009'''<br />
* '''Februari 12th 2009'''<br />
<br />
= Agenda / Timeline <font color="red">'''(DRAFT)'''</font> =<br />
''' Deadline wednesday, 4th Februari'''<br />
== Tasks ==<br />
''' 60 days to make a proposal '''<br />
* ''' December 20th ''' - first draft of the proposal<br />
* ''' January 16th ''' - submit <br />
<br />
<br />
== Targets <font color="red">'''(DRAFT)'''</font> ==<br />
Below you can find the timeline, what has to be achieved by when. <br />
All tasks must be SMART!<br />
<br />
{| class="prettytable"<br />
! Task<br />
! Deadline<br />
! Type<br />
! Status<br />
! Description<br />
! Who<br />
|-<br />
| [[Categorize (Organization) of educational materials]]<br />
| '''TBD'''<br />
| Message<br />
| Status<br />
| Categorize / Organization of the educational materials for audience by roles and responsibilities/technologies and use the summit workshop notes.<br />
| Martin<br />
|-<br />
| [[Train the trainers (Teach the teachers)]]<br />
| '''Q1/Q2/Q3/Q4 2009'''<br />
| Delivery <br />
| Planning<br />
| Develop a train the trainer program that will train trainers to deliver training on OWASP related material.<br />
| Mano<br />
|-<br />
| [[Create an online assessment and training portal]]<br />
| '''Q2/Q3/Q4 2009'''<br />
| Delivery <br />
| Planning<br />
| Develop an OWASP assessment and training portal that end users can use to gauge their knowledge on OWASP concepts and training providers can use to promote their training offerings.<br />
| Mano<br />
|-<br />
| [[OWASP Boot Camp Project]]<br />
| '''Proposal:''' February 2009 '''Final:''' Oktober 2009 at OWASP AppSec US 2009<br />
| Delivery <br />
| started<br />
| OWASP Boot Camp about the OWASP projects, to deliver a Boot Camp presentation should be one of the criteria to get an alpha status as project<br />
| Martin<br />
|-<br />
| [[OWASP CTF event]]<br />
| OWASP AppSec Denver 2009<br />
| Delivery <br />
| Status<br />
| Description<br />
| Martin<br />
|-<br />
| [[Speakers Bureau Project]]<br />
| '''TBD'''<br />
| Delivery <br />
| '''started'''<br />
| List of speakers, Name, Bio, Topics, History <br><br />
Speakers in conferences (OOTM ask for funds on this)/summit <br />
| Martin<br />
|-<br />
| [[Marketing efforts]]<br />
| '''TBD (discussion with other members)'''<br />
| Awareness Services <br />
| Status<br />
| Flyers or Brochures of OWASP Top 10, Testing Guide.<br />
| Eduardo<br />
|-<br />
| [[Internationalization of the training materials]]<br />
| '''TBD (discussion with Juan)'''<br />
| Awareness Services <br />
| Status<br />
| Liaise with Juan Calderon for translation services for highly spoken languages <br />
| Eduardo<br />
|-<br />
| [[Education material]]<br />
| '''TBD'''<br />
| Training & Educational Services <br />
| Status<br />
| All projects should be summoned to create educational material (training service)<br />
1) Each Projects --> Documents (help), Tool, Training; Live CD (Portable)<br />
| Martin<br />
|-<br />
| [[Educational Academic Services]]<br />
| '''TBD'''<br />
| Training & Educational Services <br />
| <br />
<br />
3 Universities already in contact with and planning OWASP events to participate in. <br />
<br />
| Incorporate OWASP into the following top 5 Universities, within the next 12 months by introducing OWASP training and education resources at University's events.<br />
<br />
1) New York University<br />
2) Cornell University<br />
3) Princeton University<br />
4) University of Minnesota<br />
5) Columbia University<br />
<br />
As a result of these initiative we would hope to see:<br />
<br />
1) Confirming participation at arranged events<br />
2) Asking Universities to recognize they are using our resources by allowing us to place their names in wiki pages such as http://www.owasp.org/index.php/OWASP_Top_Ten_Project <br />
3) University faculty, staff and students participate in local and international events/meetings<br />
4) University faculty, staff and students contribute to OWASP projects<br />
<br />
|Kuai Hinojosa<br />
|}<br />
<br />
= Proposal <font color="red">'''(DRAFT)'''</font> =<br />
== Categorize (Organization) of educational materials ==<br />
Objective<br><br />
Categorize / Organization of the educational materials for audiance by roles and responsibilities/technologies and use the summit workshop notes.<br />
<br><br />
Activities/Deadline:<br> <br />
<br />
Benefits<br><br />
<br />
== Train the trainers (Teach the teachers) ==<br />
Objective:<br />
Develop a train the trainer program that will train trainers to deliver training on OWASP related material.<br />
<br />
Activities/Deadline:<br />
# Develop a criteria to identify and approve trainers / Q1 2009<br />
# Identify pertinent OWASP related material that will be included in the training kit / Q2 2009. This is dependent on the education project organizing material.<br />
# Create a training toolkit with pre-built presentation and training materials, assessments etc. / Q3 2009<br />
# Conduct train the trainer sessions (remote or in-person) / Q4 2009<br />
<br />
Benefits:<br />
The training kit and trained trainers will be available resources promoting OWASP in local events worldwide.<br />
<br />
== Create an online assessment and training portal ==<br />
Objective:<br />
Develop an OWASP assessment and training portal that end users can use to gauge their knowledge on OWASP concepts and training providers can use to promote their training offerings.<br />
<br />
Activities/Deadline:<br />
# Generate OWASP assessment items (can use the testing guide and other sources) / Q2-Q3 2009<br />
# Develop an assessment portal to deliver taking of assessments with robust reporting by knowledge area / Q4 2009<br />
# Develop a training portal to allow training providers to publish and promote their training offerings / Q4 2009<br />
This can be developed as a summer of code project but is not a requirement. <br />
<br />
Benefits:<br />
Assessments that can be offered in OWASP events and other conferences to users will increase OWASP awareness. The portal can become the link between trainers and trainees and will eventually help in increasing the awareness and knowledge of application security in the industry.<br />
<br />
== OWASP Boot Camp Project ==<br />
Objective<br><br />
OWASP Boot Camp about the OWASP projects, to deliver a Boot Camp presentation should be one of the criteria to get an alpha status as project<br><br />
<br />
Activities/Deadline:<br> <br />
<br />
Benefits<br><br />
<br />
== OWASP CTF event ==<br />
Objective<br />
Generate a Capture The Flag framework to be offered at OWASP events<br />
<br />
Activities/Deadline: <br />
* Andrzej will contact the organizers of the CTF from the Denver OWASP Conference and work in using same model<br />
<br />
Benefits<br />
Capture The Flag events are very popular in conferences, creating and OWASP specific CFT will offer entertainment at events, generate attendants participation etc.<br />
<br />
== Speakers Bureau Project ==<br />
<br />
Objective<br><br />
OWASP Boot Camp about the OWASP projects, to deliver a Boot Camp presentation should be one of the criteria to get an alpha status as project<br><br />
<br />
Activities/Deadline:<br> <br />
<br />
Benefits<br><br />
List of speakers, Name, Bio, Topics, History <br />
Speakers in conferences (OOTM ask for funds on this)/summit<br />
<br />
Speakers Agreement - https://www.owasp.org/index.php/Speaker_Agreement<br />
<br />
== Marketing efforts ==<br />
Objective<br><br />
<br />
Activities/Deadline:<br> <br />
<br />
Benefits<br><br />
<br />
== Internationalization of the training materials ==<br />
Objective<br><br />
OWASP Boot Camp about the OWASP projects, to deliver a Boot Camp presentation should be one of the criteria to get an alpha status as project<br><br />
<br />
Activities/Deadline:<br> <br />
<br />
Benefits<br><br />
<br />
== Education material ==<br />
Objective<br><br />
<br />
Activities/Deadline:<br> <br />
<br />
Benefits<br><br />
<br />
Flyers or Brochures of OWASP Top 10, Testing Guide.<br />
<br />
== Academic Educational Services ==<br />
Objectives<br><br />
Promote and encourage OWASP resources at accredited Universities around the world within the next 12 months by introducing OWASP training and education material at University's events.<br />
<br />
Activities/Deadline:<br />
<br />
* Build a list of at least 5 Universities with computer science or risk management programs that can be targeted /Q1 2009 <br />
* Establish communication with targeted universities, generate key contacts and establish relationships /Q1 - Q4 2009<br />
* Develop a list of possible academic events in which to participate /Q1 - Q2 2009 <br />
* Participate in at least 1 Academic event, present case studies or OWASP education materials /Q1 - Q4<br />
<br />
Benefits<br><br />
OWASP will gain exposure in the academic industry, starting with accredited universities around the world. Universities will become members of OWASP, provide meeting space, students will apply to OWASP grants, and provide support and structure</div>Cybermalandrohttps://wiki.owasp.org/index.php?title=Global_Education_Committee&diff=52667Global Education Committee2009-02-02T02:50:37Z<p>Cybermalandro: /* Marketing efforts */</p>
<hr />
<div>[[Category:OWASP Project]]<br />
<br />
= About the Global Education Committee =<br />
'''The Global Education Committee was created during the OWASP EU Summit in Portugal 2008. The primary purpose of the Global Education Committee is: to work with the [https://www.owasp.org/index.php/Category:OWASP_Education_Project OWASP Education Project] to provide educational materials for both internal and external users, develop liaisons with educational institutions worldwide.'''<br />
<br />
== Mission ==<br />
Provide awareness, training and educational services to corporate,<br />
government and educational institutions on application security.<br />
<br />
== Vision ==<br />
Make OWASP educational material globally available as a well known resource<br />
in easily consumable form mapped to a framework tied specifically to user<br />
roles and responsibilities<br />
<br />
== Committee Members ==<br />
Education Committee (Board Member Rep: [mailto:seba@owasp.org Seba])<br />
<br />
• [mailto:martin.knobloch@owasp.org Martin Knobloch] (Netherlands)<br />
<br />
• [mailto:mano.paul@securisksolutions.com Mano Paul] (U.S.)<br />
<br />
• [mailto:eduardo.neves@owasp.org Eduardo Neves] (Brazil)<br />
<br />
• [mailto:kuai.hinojosa@owasp.org Kuai Hinjosa] (U.S.)<br />
<br />
• [mailto:cecil.su@GRANTTHORNTON.COM.SG Cecil Su] (Singapore)<br />
<br />
• [mailto:fabio.e.cerullo@aib.ie Fabio Cerullo] (Ireland)<br />
<br />
• [mailto:andrzej.targosz@proidea.org.pl Andrzej Targosz] (Poland)<br />
<br />
[https://www.owasp.org/index.php/How_to_Join_a_Committee How to join this committee]<br />
<br />
[https://lists.owasp.org/mailman/listinfo/global_education_committee Join our mailing list]<br />
<br />
== Scheduled Meetings ==<br />
<pre><br />
The Global Education Committee Meetings take place via Skype, see below for the local time: <br />
3:30 p.m. @ Austin, Texas <br />
4:30 p.m. @ New York <br />
7:30 p.m. @ Brasil <br />
22:30 a.m. @ Netherlands<br />
5:30 a.m. @ Singapore (following day)<br />
</pre><br />
Next meeting(s) scheduled for:<br />
* '''January 29th 2009'''<br />
* '''Februari 12th 2009'''<br />
<br />
= Agenda / Timeline <font color="red">'''(DRAFT)'''</font> =<br />
''' Deadline wednesday, 4th Februari'''<br />
== Tasks ==<br />
''' 60 days to make a proposal '''<br />
* ''' December 20th ''' - first draft of the proposal<br />
* ''' January 16th ''' - submit <br />
<br />
<br />
== Targets <font color="red">'''(DRAFT)'''</font> ==<br />
Below you can find the timeline, what has to be achieved by when. <br />
All tasks must be SMART!<br />
<br />
{| class="prettytable"<br />
! Task<br />
! Deadline<br />
! Type<br />
! Status<br />
! Description<br />
! Who<br />
|-<br />
| [[Categorize (Organization) of educational materials]]<br />
| '''TBD'''<br />
| Message<br />
| Status<br />
| Categorize / Organization of the educational materials for audience by roles and responsibilities/technologies and use the summit workshop notes.<br />
| Martin<br />
|-<br />
| [[Train the trainers (Teach the teachers)]]<br />
| '''Q1/Q2/Q3/Q4 2009'''<br />
| Delivery <br />
| Planning<br />
| Develop a train the trainer program that will train trainers to deliver training on OWASP related material.<br />
| Mano<br />
|-<br />
| [[Create an online assessment and training portal]]<br />
| '''Q2/Q3/Q4 2009'''<br />
| Delivery <br />
| Planning<br />
| Develop an OWASP assessment and training portal that end users can use to gauge their knowledge on OWASP concepts and training providers can use to promote their training offerings.<br />
| Mano<br />
|-<br />
| [[OWASP Boot Camp Project]]<br />
| '''Proposal:''' February 2009 '''Final:''' Oktober 2009 at OWASP AppSec US 2009<br />
| Delivery <br />
| started<br />
| OWASP Boot Camp about the OWASP projects, to deliver a Boot Camp presentation should be one of the criteria to get an alpha status as project<br />
| Martin<br />
|-<br />
| [[OWASP CTF event]]<br />
| OWASP AppSec Denver 2009<br />
| Delivery <br />
| Status<br />
| Description<br />
| Martin<br />
|-<br />
| [[Speakers Bureau Project]]<br />
| '''TBD'''<br />
| Delivery <br />
| '''started'''<br />
| List of speakers, Name, Bio, Topics, History <br><br />
Speakers in conferences (OOTM ask for funds on this)/summit <br />
| Martin<br />
|-<br />
| [[Marketing efforts]]<br />
| '''TBD (discussion with other members)'''<br />
| Awareness Services <br />
| Status<br />
| Flyers or Brochures of OWASP Top 10, Testing Guide.<br />
| Eduardo<br />
|-<br />
| [[Internationalization of the training materials]]<br />
| '''TBD (discussion with Juan)'''<br />
| Awareness Services <br />
| Status<br />
| Liaise with Juan Calderon for translation services for highly spoken languages <br />
| Eduardo<br />
|-<br />
| [[Education material]]<br />
| '''TBD'''<br />
| Training & Educational Services <br />
| Status<br />
| All projects should be summoned to create educational material (training service)<br />
1) Each Projects --> Documents (help), Tool, Training; Live CD (Portable)<br />
| Martin<br />
|-<br />
| [[Educational Academic Services]]<br />
| '''TBD'''<br />
| Training & Educational Services <br />
| <br />
<br />
3 Universities already in contact with and planning OWASP events to participate in. <br />
<br />
| Incorporate OWASP into the following top 5 Universities, within the next 12 months by introducing OWASP training and education resources at University's events.<br />
<br />
1) New York University<br />
2) Cornell University<br />
3) Princeton University<br />
4) University of Minnesota<br />
5) Columbia University<br />
<br />
As a result of these initiative we would hope to see:<br />
<br />
1) Confirming participation at arranged events<br />
2) Asking Universities to recognize they are using our resources by allowing us to place their names in wiki pages such as http://www.owasp.org/index.php/OWASP_Top_Ten_Project <br />
3) University faculty, staff and students participate in local and international events/meetings<br />
4) University faculty, staff and students contribute to OWASP projects<br />
<br />
|Kuai Hinojosa<br />
|}<br />
<br />
= Proposal <font color="red">'''(DRAFT)'''</font> =<br />
== Categorize (Organization) of educational materials ==<br />
Objective<br><br />
Categorize / Organization of the educational materials for audiance by roles and responsibilities/technologies and use the summit workshop notes.<br />
<br><br />
Activities/Deadline:<br> <br />
<br />
Benefits<br><br />
<br />
== Train the trainers (Teach the teachers) ==<br />
Objective:<br />
Develop a train the trainer program that will train trainers to deliver training on OWASP related material.<br />
<br />
Activities/Deadline:<br />
# Develop a criteria to identify and approve trainers / Q1 2009<br />
# Identify pertinent OWASP related material that will be included in the training kit / Q2 2009. This is dependent on the education project organizing material.<br />
# Create a training toolkit with pre-built presentation and training materials, assessments etc. / Q3 2009<br />
# Conduct train the trainer sessions (remote or in-person) / Q4 2009<br />
<br />
Benefits:<br />
The training kit and trained trainers will be available resources promoting OWASP in local events worldwide.<br />
<br />
== Create an online assessment and training portal ==<br />
Objective:<br />
Develop an OWASP assessment and training portal that end users can use to gauge their knowledge on OWASP concepts and training providers can use to promote their training offerings.<br />
<br />
Activities/Deadline:<br />
# Generate OWASP assessment items (can use the testing guide and other sources) / Q2-Q3 2009<br />
# Develop an assessment portal to deliver taking of assessments with robust reporting by knowledge area / Q4 2009<br />
# Develop a training portal to allow training providers to publish and promote their training offerings / Q4 2009<br />
This can be developed as a summer of code project but is not a requirement. <br />
<br />
Benefits:<br />
Assessments that can be offered in OWASP events and other conferences to users will increase OWASP awareness. The portal can become the link between trainers and trainees and will eventually help in increasing the awareness and knowledge of application security in the industry.<br />
<br />
== OWASP Boot Camp Project ==<br />
Objective<br><br />
OWASP Boot Camp about the OWASP projects, to deliver a Boot Camp presentation should be one of the criteria to get an alpha status as project<br><br />
<br />
Activities/Deadline:<br> <br />
<br />
Benefits<br><br />
<br />
== OWASP CTF event ==<br />
Objective<br />
Generate a Capture The Flag framework to be offered at OWASP events<br />
<br />
Activities/Deadline: <br />
* Andrzej will contact the organizers of the CTF from the Denver OWASP Conference and work in using same model<br />
<br />
Benefits<br />
Capture The Flag events are very popular in conferences, creating and OWASP specific CFT will offer entertainment at events, generate attendants participation etc.<br />
<br />
== Speakers Bureau Project ==<br />
<br />
Objective<br><br />
OWASP Boot Camp about the OWASP projects, to deliver a Boot Camp presentation should be one of the criteria to get an alpha status as project<br><br />
<br />
Activities/Deadline:<br> <br />
<br />
Benefits<br><br />
List of speakers, Name, Bio, Topics, History <br />
Speakers in conferences (OOTM ask for funds on this)/summit<br />
<br />
Speakers Agreement - https://www.owasp.org/index.php/Speaker_Agreement<br />
<br />
== Marketing efforts ==<br />
Objective<br><br />
<br />
Activities/Deadline:<br> <br />
<br />
Benefits<br><br />
<br />
== Internationalization of the training materials ==<br />
Objective<br><br />
OWASP Boot Camp about the OWASP projects, to deliver a Boot Camp presentation should be one of the criteria to get an alpha status as project<br><br />
<br />
Activities/Deadline:<br> <br />
<br />
Benefits<br><br />
<br />
== Education material ==<br />
Objective<br><br />
OWASP Boot Camp about the OWASP projects, to deliver a Boot Camp presentation should be one of the criteria to get an alpha status as project<br><br />
<br />
Activities/Deadline:<br> <br />
<br />
Benefits<br><br />
<br />
Flyers or Brochures of OWASP Top 10, Testing Guide.<br />
<br />
== Academic Educational Services ==<br />
Objectives<br><br />
Promote and encourage OWASP resources at accredited Universities around the world within the next 12 months by introducing OWASP training and education material at University's events.<br />
<br />
Activities/Deadline:<br />
<br />
* Build a list of at least 5 Universities with computer science or risk management programs that can be targeted /Q1 2009 <br />
* Establish communication with targeted universities, generate key contacts and establish relationships /Q1 - Q4 2009<br />
* Develop a list of possible academic events in which to participate /Q1 - Q2 2009 <br />
* Participate in at least 1 Academic event, present case studies or OWASP education materials /Q1 - Q4<br />
<br />
Benefits<br><br />
OWASP will gain exposure in the academic industry, starting with accredited universities around the world. Universities will become members of OWASP, provide meeting space, students will apply to OWASP grants, and provide support and structure</div>Cybermalandrohttps://wiki.owasp.org/index.php?title=Global_Education_Committee&diff=52666Global Education Committee2009-02-02T02:50:26Z<p>Cybermalandro: /* Internationalization of the training materials */</p>
<hr />
<div>[[Category:OWASP Project]]<br />
<br />
= About the Global Education Committee =<br />
'''The Global Education Committee was created during the OWASP EU Summit in Portugal 2008. The primary purpose of the Global Education Committee is: to work with the [https://www.owasp.org/index.php/Category:OWASP_Education_Project OWASP Education Project] to provide educational materials for both internal and external users, develop liaisons with educational institutions worldwide.'''<br />
<br />
== Mission ==<br />
Provide awareness, training and educational services to corporate,<br />
government and educational institutions on application security.<br />
<br />
== Vision ==<br />
Make OWASP educational material globally available as a well known resource<br />
in easily consumable form mapped to a framework tied specifically to user<br />
roles and responsibilities<br />
<br />
== Committee Members ==<br />
Education Committee (Board Member Rep: [mailto:seba@owasp.org Seba])<br />
<br />
• [mailto:martin.knobloch@owasp.org Martin Knobloch] (Netherlands)<br />
<br />
• [mailto:mano.paul@securisksolutions.com Mano Paul] (U.S.)<br />
<br />
• [mailto:eduardo.neves@owasp.org Eduardo Neves] (Brazil)<br />
<br />
• [mailto:kuai.hinojosa@owasp.org Kuai Hinjosa] (U.S.)<br />
<br />
• [mailto:cecil.su@GRANTTHORNTON.COM.SG Cecil Su] (Singapore)<br />
<br />
• [mailto:fabio.e.cerullo@aib.ie Fabio Cerullo] (Ireland)<br />
<br />
• [mailto:andrzej.targosz@proidea.org.pl Andrzej Targosz] (Poland)<br />
<br />
[https://www.owasp.org/index.php/How_to_Join_a_Committee How to join this committee]<br />
<br />
[https://lists.owasp.org/mailman/listinfo/global_education_committee Join our mailing list]<br />
<br />
== Scheduled Meetings ==<br />
<pre><br />
The Global Education Committee Meetings take place via Skype, see below for the local time: <br />
3:30 p.m. @ Austin, Texas <br />
4:30 p.m. @ New York <br />
7:30 p.m. @ Brasil <br />
22:30 a.m. @ Netherlands<br />
5:30 a.m. @ Singapore (following day)<br />
</pre><br />
Next meeting(s) scheduled for:<br />
* '''January 29th 2009'''<br />
* '''Februari 12th 2009'''<br />
<br />
= Agenda / Timeline <font color="red">'''(DRAFT)'''</font> =<br />
''' Deadline wednesday, 4th Februari'''<br />
== Tasks ==<br />
''' 60 days to make a proposal '''<br />
* ''' December 20th ''' - first draft of the proposal<br />
* ''' January 16th ''' - submit <br />
<br />
<br />
== Targets <font color="red">'''(DRAFT)'''</font> ==<br />
Below you can find the timeline, what has to be achieved by when. <br />
All tasks must be SMART!<br />
<br />
{| class="prettytable"<br />
! Task<br />
! Deadline<br />
! Type<br />
! Status<br />
! Description<br />
! Who<br />
|-<br />
| [[Categorize (Organization) of educational materials]]<br />
| '''TBD'''<br />
| Message<br />
| Status<br />
| Categorize / Organization of the educational materials for audience by roles and responsibilities/technologies and use the summit workshop notes.<br />
| Martin<br />
|-<br />
| [[Train the trainers (Teach the teachers)]]<br />
| '''Q1/Q2/Q3/Q4 2009'''<br />
| Delivery <br />
| Planning<br />
| Develop a train the trainer program that will train trainers to deliver training on OWASP related material.<br />
| Mano<br />
|-<br />
| [[Create an online assessment and training portal]]<br />
| '''Q2/Q3/Q4 2009'''<br />
| Delivery <br />
| Planning<br />
| Develop an OWASP assessment and training portal that end users can use to gauge their knowledge on OWASP concepts and training providers can use to promote their training offerings.<br />
| Mano<br />
|-<br />
| [[OWASP Boot Camp Project]]<br />
| '''Proposal:''' February 2009 '''Final:''' Oktober 2009 at OWASP AppSec US 2009<br />
| Delivery <br />
| started<br />
| OWASP Boot Camp about the OWASP projects, to deliver a Boot Camp presentation should be one of the criteria to get an alpha status as project<br />
| Martin<br />
|-<br />
| [[OWASP CTF event]]<br />
| OWASP AppSec Denver 2009<br />
| Delivery <br />
| Status<br />
| Description<br />
| Martin<br />
|-<br />
| [[Speakers Bureau Project]]<br />
| '''TBD'''<br />
| Delivery <br />
| '''started'''<br />
| List of speakers, Name, Bio, Topics, History <br><br />
Speakers in conferences (OOTM ask for funds on this)/summit <br />
| Martin<br />
|-<br />
| [[Marketing efforts]]<br />
| '''TBD (discussion with other members)'''<br />
| Awareness Services <br />
| Status<br />
| Flyers or Brochures of OWASP Top 10, Testing Guide.<br />
| Eduardo<br />
|-<br />
| [[Internationalization of the training materials]]<br />
| '''TBD (discussion with Juan)'''<br />
| Awareness Services <br />
| Status<br />
| Liaise with Juan Calderon for translation services for highly spoken languages <br />
| Eduardo<br />
|-<br />
| [[Education material]]<br />
| '''TBD'''<br />
| Training & Educational Services <br />
| Status<br />
| All projects should be summoned to create educational material (training service)<br />
1) Each Projects --> Documents (help), Tool, Training; Live CD (Portable)<br />
| Martin<br />
|-<br />
| [[Educational Academic Services]]<br />
| '''TBD'''<br />
| Training & Educational Services <br />
| <br />
<br />
3 Universities already in contact with and planning OWASP events to participate in. <br />
<br />
| Incorporate OWASP into the following top 5 Universities, within the next 12 months by introducing OWASP training and education resources at University's events.<br />
<br />
1) New York University<br />
2) Cornell University<br />
3) Princeton University<br />
4) University of Minnesota<br />
5) Columbia University<br />
<br />
As a result of these initiative we would hope to see:<br />
<br />
1) Confirming participation at arranged events<br />
2) Asking Universities to recognize they are using our resources by allowing us to place their names in wiki pages such as http://www.owasp.org/index.php/OWASP_Top_Ten_Project <br />
3) University faculty, staff and students participate in local and international events/meetings<br />
4) University faculty, staff and students contribute to OWASP projects<br />
<br />
|Kuai Hinojosa<br />
|}<br />
<br />
= Proposal <font color="red">'''(DRAFT)'''</font> =<br />
== Categorize (Organization) of educational materials ==<br />
Objective<br><br />
Categorize / Organization of the educational materials for audiance by roles and responsibilities/technologies and use the summit workshop notes.<br />
<br><br />
Activities/Deadline:<br> <br />
<br />
Benefits<br><br />
<br />
== Train the trainers (Teach the teachers) ==<br />
Objective:<br />
Develop a train the trainer program that will train trainers to deliver training on OWASP related material.<br />
<br />
Activities/Deadline:<br />
# Develop a criteria to identify and approve trainers / Q1 2009<br />
# Identify pertinent OWASP related material that will be included in the training kit / Q2 2009. This is dependent on the education project organizing material.<br />
# Create a training toolkit with pre-built presentation and training materials, assessments etc. / Q3 2009<br />
# Conduct train the trainer sessions (remote or in-person) / Q4 2009<br />
<br />
Benefits:<br />
The training kit and trained trainers will be available resources promoting OWASP in local events worldwide.<br />
<br />
== Create an online assessment and training portal ==<br />
Objective:<br />
Develop an OWASP assessment and training portal that end users can use to gauge their knowledge on OWASP concepts and training providers can use to promote their training offerings.<br />
<br />
Activities/Deadline:<br />
# Generate OWASP assessment items (can use the testing guide and other sources) / Q2-Q3 2009<br />
# Develop an assessment portal to deliver taking of assessments with robust reporting by knowledge area / Q4 2009<br />
# Develop a training portal to allow training providers to publish and promote their training offerings / Q4 2009<br />
This can be developed as a summer of code project but is not a requirement. <br />
<br />
Benefits:<br />
Assessments that can be offered in OWASP events and other conferences to users will increase OWASP awareness. The portal can become the link between trainers and trainees and will eventually help in increasing the awareness and knowledge of application security in the industry.<br />
<br />
== OWASP Boot Camp Project ==<br />
Objective<br><br />
OWASP Boot Camp about the OWASP projects, to deliver a Boot Camp presentation should be one of the criteria to get an alpha status as project<br><br />
<br />
Activities/Deadline:<br> <br />
<br />
Benefits<br><br />
<br />
== OWASP CTF event ==<br />
Objective<br />
Generate a Capture The Flag framework to be offered at OWASP events<br />
<br />
Activities/Deadline: <br />
* Andrzej will contact the organizers of the CTF from the Denver OWASP Conference and work in using same model<br />
<br />
Benefits<br />
Capture The Flag events are very popular in conferences, creating and OWASP specific CFT will offer entertainment at events, generate attendants participation etc.<br />
<br />
== Speakers Bureau Project ==<br />
<br />
Objective<br><br />
OWASP Boot Camp about the OWASP projects, to deliver a Boot Camp presentation should be one of the criteria to get an alpha status as project<br><br />
<br />
Activities/Deadline:<br> <br />
<br />
Benefits<br><br />
List of speakers, Name, Bio, Topics, History <br />
Speakers in conferences (OOTM ask for funds on this)/summit<br />
<br />
Speakers Agreement - https://www.owasp.org/index.php/Speaker_Agreement<br />
<br />
== Marketing efforts ==<br />
== Internationalization of the training materials ==<br />
Objective<br><br />
OWASP Boot Camp about the OWASP projects, to deliver a Boot Camp presentation should be one of the criteria to get an alpha status as project<br><br />
<br />
Activities/Deadline:<br> <br />
<br />
Benefits<br><br />
<br />
== Education material ==<br />
Objective<br><br />
OWASP Boot Camp about the OWASP projects, to deliver a Boot Camp presentation should be one of the criteria to get an alpha status as project<br><br />
<br />
Activities/Deadline:<br> <br />
<br />
Benefits<br><br />
<br />
Flyers or Brochures of OWASP Top 10, Testing Guide.<br />
<br />
== Academic Educational Services ==<br />
Objectives<br><br />
Promote and encourage OWASP resources at accredited Universities around the world within the next 12 months by introducing OWASP training and education material at University's events.<br />
<br />
Activities/Deadline:<br />
<br />
* Build a list of at least 5 Universities with computer science or risk management programs that can be targeted /Q1 2009 <br />
* Establish communication with targeted universities, generate key contacts and establish relationships /Q1 - Q4 2009<br />
* Develop a list of possible academic events in which to participate /Q1 - Q2 2009 <br />
* Participate in at least 1 Academic event, present case studies or OWASP education materials /Q1 - Q4<br />
<br />
Benefits<br><br />
OWASP will gain exposure in the academic industry, starting with accredited universities around the world. Universities will become members of OWASP, provide meeting space, students will apply to OWASP grants, and provide support and structure</div>Cybermalandrohttps://wiki.owasp.org/index.php?title=Global_Education_Committee&diff=52665Global Education Committee2009-02-02T02:50:14Z<p>Cybermalandro: /* Education material */</p>
<hr />
<div>[[Category:OWASP Project]]<br />
<br />
= About the Global Education Committee =<br />
'''The Global Education Committee was created during the OWASP EU Summit in Portugal 2008. The primary purpose of the Global Education Committee is: to work with the [https://www.owasp.org/index.php/Category:OWASP_Education_Project OWASP Education Project] to provide educational materials for both internal and external users, develop liaisons with educational institutions worldwide.'''<br />
<br />
== Mission ==<br />
Provide awareness, training and educational services to corporate,<br />
government and educational institutions on application security.<br />
<br />
== Vision ==<br />
Make OWASP educational material globally available as a well known resource<br />
in easily consumable form mapped to a framework tied specifically to user<br />
roles and responsibilities<br />
<br />
== Committee Members ==<br />
Education Committee (Board Member Rep: [mailto:seba@owasp.org Seba])<br />
<br />
• [mailto:martin.knobloch@owasp.org Martin Knobloch] (Netherlands)<br />
<br />
• [mailto:mano.paul@securisksolutions.com Mano Paul] (U.S.)<br />
<br />
• [mailto:eduardo.neves@owasp.org Eduardo Neves] (Brazil)<br />
<br />
• [mailto:kuai.hinojosa@owasp.org Kuai Hinjosa] (U.S.)<br />
<br />
• [mailto:cecil.su@GRANTTHORNTON.COM.SG Cecil Su] (Singapore)<br />
<br />
• [mailto:fabio.e.cerullo@aib.ie Fabio Cerullo] (Ireland)<br />
<br />
• [mailto:andrzej.targosz@proidea.org.pl Andrzej Targosz] (Poland)<br />
<br />
[https://www.owasp.org/index.php/How_to_Join_a_Committee How to join this committee]<br />
<br />
[https://lists.owasp.org/mailman/listinfo/global_education_committee Join our mailing list]<br />
<br />
== Scheduled Meetings ==<br />
<pre><br />
The Global Education Committee Meetings take place via Skype, see below for the local time: <br />
3:30 p.m. @ Austin, Texas <br />
4:30 p.m. @ New York <br />
7:30 p.m. @ Brasil <br />
22:30 a.m. @ Netherlands<br />
5:30 a.m. @ Singapore (following day)<br />
</pre><br />
Next meeting(s) scheduled for:<br />
* '''January 29th 2009'''<br />
* '''Februari 12th 2009'''<br />
<br />
= Agenda / Timeline <font color="red">'''(DRAFT)'''</font> =<br />
''' Deadline wednesday, 4th Februari'''<br />
== Tasks ==<br />
''' 60 days to make a proposal '''<br />
* ''' December 20th ''' - first draft of the proposal<br />
* ''' January 16th ''' - submit <br />
<br />
<br />
== Targets <font color="red">'''(DRAFT)'''</font> ==<br />
Below you can find the timeline, what has to be achieved by when. <br />
All tasks must be SMART!<br />
<br />
{| class="prettytable"<br />
! Task<br />
! Deadline<br />
! Type<br />
! Status<br />
! Description<br />
! Who<br />
|-<br />
| [[Categorize (Organization) of educational materials]]<br />
| '''TBD'''<br />
| Message<br />
| Status<br />
| Categorize / Organization of the educational materials for audience by roles and responsibilities/technologies and use the summit workshop notes.<br />
| Martin<br />
|-<br />
| [[Train the trainers (Teach the teachers)]]<br />
| '''Q1/Q2/Q3/Q4 2009'''<br />
| Delivery <br />
| Planning<br />
| Develop a train the trainer program that will train trainers to deliver training on OWASP related material.<br />
| Mano<br />
|-<br />
| [[Create an online assessment and training portal]]<br />
| '''Q2/Q3/Q4 2009'''<br />
| Delivery <br />
| Planning<br />
| Develop an OWASP assessment and training portal that end users can use to gauge their knowledge on OWASP concepts and training providers can use to promote their training offerings.<br />
| Mano<br />
|-<br />
| [[OWASP Boot Camp Project]]<br />
| '''Proposal:''' February 2009 '''Final:''' Oktober 2009 at OWASP AppSec US 2009<br />
| Delivery <br />
| started<br />
| OWASP Boot Camp about the OWASP projects, to deliver a Boot Camp presentation should be one of the criteria to get an alpha status as project<br />
| Martin<br />
|-<br />
| [[OWASP CTF event]]<br />
| OWASP AppSec Denver 2009<br />
| Delivery <br />
| Status<br />
| Description<br />
| Martin<br />
|-<br />
| [[Speakers Bureau Project]]<br />
| '''TBD'''<br />
| Delivery <br />
| '''started'''<br />
| List of speakers, Name, Bio, Topics, History <br><br />
Speakers in conferences (OOTM ask for funds on this)/summit <br />
| Martin<br />
|-<br />
| [[Marketing efforts]]<br />
| '''TBD (discussion with other members)'''<br />
| Awareness Services <br />
| Status<br />
| Flyers or Brochures of OWASP Top 10, Testing Guide.<br />
| Eduardo<br />
|-<br />
| [[Internationalization of the training materials]]<br />
| '''TBD (discussion with Juan)'''<br />
| Awareness Services <br />
| Status<br />
| Liaise with Juan Calderon for translation services for highly spoken languages <br />
| Eduardo<br />
|-<br />
| [[Education material]]<br />
| '''TBD'''<br />
| Training & Educational Services <br />
| Status<br />
| All projects should be summoned to create educational material (training service)<br />
1) Each Projects --> Documents (help), Tool, Training; Live CD (Portable)<br />
| Martin<br />
|-<br />
| [[Educational Academic Services]]<br />
| '''TBD'''<br />
| Training & Educational Services <br />
| <br />
<br />
3 Universities already in contact with and planning OWASP events to participate in. <br />
<br />
| Incorporate OWASP into the following top 5 Universities, within the next 12 months by introducing OWASP training and education resources at University's events.<br />
<br />
1) New York University<br />
2) Cornell University<br />
3) Princeton University<br />
4) University of Minnesota<br />
5) Columbia University<br />
<br />
As a result of these initiative we would hope to see:<br />
<br />
1) Confirming participation at arranged events<br />
2) Asking Universities to recognize they are using our resources by allowing us to place their names in wiki pages such as http://www.owasp.org/index.php/OWASP_Top_Ten_Project <br />
3) University faculty, staff and students participate in local and international events/meetings<br />
4) University faculty, staff and students contribute to OWASP projects<br />
<br />
|Kuai Hinojosa<br />
|}<br />
<br />
= Proposal <font color="red">'''(DRAFT)'''</font> =<br />
== Categorize (Organization) of educational materials ==<br />
Objective<br><br />
Categorize / Organization of the educational materials for audiance by roles and responsibilities/technologies and use the summit workshop notes.<br />
<br><br />
Activities/Deadline:<br> <br />
<br />
Benefits<br><br />
<br />
== Train the trainers (Teach the teachers) ==<br />
Objective:<br />
Develop a train the trainer program that will train trainers to deliver training on OWASP related material.<br />
<br />
Activities/Deadline:<br />
# Develop a criteria to identify and approve trainers / Q1 2009<br />
# Identify pertinent OWASP related material that will be included in the training kit / Q2 2009. This is dependent on the education project organizing material.<br />
# Create a training toolkit with pre-built presentation and training materials, assessments etc. / Q3 2009<br />
# Conduct train the trainer sessions (remote or in-person) / Q4 2009<br />
<br />
Benefits:<br />
The training kit and trained trainers will be available resources promoting OWASP in local events worldwide.<br />
<br />
== Create an online assessment and training portal ==<br />
Objective:<br />
Develop an OWASP assessment and training portal that end users can use to gauge their knowledge on OWASP concepts and training providers can use to promote their training offerings.<br />
<br />
Activities/Deadline:<br />
# Generate OWASP assessment items (can use the testing guide and other sources) / Q2-Q3 2009<br />
# Develop an assessment portal to deliver taking of assessments with robust reporting by knowledge area / Q4 2009<br />
# Develop a training portal to allow training providers to publish and promote their training offerings / Q4 2009<br />
This can be developed as a summer of code project but is not a requirement. <br />
<br />
Benefits:<br />
Assessments that can be offered in OWASP events and other conferences to users will increase OWASP awareness. The portal can become the link between trainers and trainees and will eventually help in increasing the awareness and knowledge of application security in the industry.<br />
<br />
== OWASP Boot Camp Project ==<br />
Objective<br><br />
OWASP Boot Camp about the OWASP projects, to deliver a Boot Camp presentation should be one of the criteria to get an alpha status as project<br><br />
<br />
Activities/Deadline:<br> <br />
<br />
Benefits<br><br />
<br />
== OWASP CTF event ==<br />
Objective<br />
Generate a Capture The Flag framework to be offered at OWASP events<br />
<br />
Activities/Deadline: <br />
* Andrzej will contact the organizers of the CTF from the Denver OWASP Conference and work in using same model<br />
<br />
Benefits<br />
Capture The Flag events are very popular in conferences, creating and OWASP specific CFT will offer entertainment at events, generate attendants participation etc.<br />
<br />
== Speakers Bureau Project ==<br />
<br />
Objective<br><br />
OWASP Boot Camp about the OWASP projects, to deliver a Boot Camp presentation should be one of the criteria to get an alpha status as project<br><br />
<br />
Activities/Deadline:<br> <br />
<br />
Benefits<br><br />
List of speakers, Name, Bio, Topics, History <br />
Speakers in conferences (OOTM ask for funds on this)/summit<br />
<br />
Speakers Agreement - https://www.owasp.org/index.php/Speaker_Agreement<br />
<br />
== Marketing efforts ==<br />
== Internationalization of the training materials ==<br />
== Education material ==<br />
Objective<br><br />
OWASP Boot Camp about the OWASP projects, to deliver a Boot Camp presentation should be one of the criteria to get an alpha status as project<br><br />
<br />
Activities/Deadline:<br> <br />
<br />
Benefits<br><br />
<br />
Flyers or Brochures of OWASP Top 10, Testing Guide.<br />
<br />
== Academic Educational Services ==<br />
Objectives<br><br />
Promote and encourage OWASP resources at accredited Universities around the world within the next 12 months by introducing OWASP training and education material at University's events.<br />
<br />
Activities/Deadline:<br />
<br />
* Build a list of at least 5 Universities with computer science or risk management programs that can be targeted /Q1 2009 <br />
* Establish communication with targeted universities, generate key contacts and establish relationships /Q1 - Q4 2009<br />
* Develop a list of possible academic events in which to participate /Q1 - Q2 2009 <br />
* Participate in at least 1 Academic event, present case studies or OWASP education materials /Q1 - Q4<br />
<br />
Benefits<br><br />
OWASP will gain exposure in the academic industry, starting with accredited universities around the world. Universities will become members of OWASP, provide meeting space, students will apply to OWASP grants, and provide support and structure</div>Cybermalandrohttps://wiki.owasp.org/index.php?title=Global_Education_Committee&diff=52664Global Education Committee2009-02-02T02:50:04Z<p>Cybermalandro: /* Speakers Bureau Project */</p>
<hr />
<div>[[Category:OWASP Project]]<br />
<br />
= About the Global Education Committee =<br />
'''The Global Education Committee was created during the OWASP EU Summit in Portugal 2008. The primary purpose of the Global Education Committee is: to work with the [https://www.owasp.org/index.php/Category:OWASP_Education_Project OWASP Education Project] to provide educational materials for both internal and external users, develop liaisons with educational institutions worldwide.'''<br />
<br />
== Mission ==<br />
Provide awareness, training and educational services to corporate,<br />
government and educational institutions on application security.<br />
<br />
== Vision ==<br />
Make OWASP educational material globally available as a well known resource<br />
in easily consumable form mapped to a framework tied specifically to user<br />
roles and responsibilities<br />
<br />
== Committee Members ==<br />
Education Committee (Board Member Rep: [mailto:seba@owasp.org Seba])<br />
<br />
• [mailto:martin.knobloch@owasp.org Martin Knobloch] (Netherlands)<br />
<br />
• [mailto:mano.paul@securisksolutions.com Mano Paul] (U.S.)<br />
<br />
• [mailto:eduardo.neves@owasp.org Eduardo Neves] (Brazil)<br />
<br />
• [mailto:kuai.hinojosa@owasp.org Kuai Hinjosa] (U.S.)<br />
<br />
• [mailto:cecil.su@GRANTTHORNTON.COM.SG Cecil Su] (Singapore)<br />
<br />
• [mailto:fabio.e.cerullo@aib.ie Fabio Cerullo] (Ireland)<br />
<br />
• [mailto:andrzej.targosz@proidea.org.pl Andrzej Targosz] (Poland)<br />
<br />
[https://www.owasp.org/index.php/How_to_Join_a_Committee How to join this committee]<br />
<br />
[https://lists.owasp.org/mailman/listinfo/global_education_committee Join our mailing list]<br />
<br />
== Scheduled Meetings ==<br />
<pre><br />
The Global Education Committee Meetings take place via Skype, see below for the local time: <br />
3:30 p.m. @ Austin, Texas <br />
4:30 p.m. @ New York <br />
7:30 p.m. @ Brasil <br />
22:30 a.m. @ Netherlands<br />
5:30 a.m. @ Singapore (following day)<br />
</pre><br />
Next meeting(s) scheduled for:<br />
* '''January 29th 2009'''<br />
* '''Februari 12th 2009'''<br />
<br />
= Agenda / Timeline <font color="red">'''(DRAFT)'''</font> =<br />
''' Deadline wednesday, 4th Februari'''<br />
== Tasks ==<br />
''' 60 days to make a proposal '''<br />
* ''' December 20th ''' - first draft of the proposal<br />
* ''' January 16th ''' - submit <br />
<br />
<br />
== Targets <font color="red">'''(DRAFT)'''</font> ==<br />
Below you can find the timeline, what has to be achieved by when. <br />
All tasks must be SMART!<br />
<br />
{| class="prettytable"<br />
! Task<br />
! Deadline<br />
! Type<br />
! Status<br />
! Description<br />
! Who<br />
|-<br />
| [[Categorize (Organization) of educational materials]]<br />
| '''TBD'''<br />
| Message<br />
| Status<br />
| Categorize / Organization of the educational materials for audience by roles and responsibilities/technologies and use the summit workshop notes.<br />
| Martin<br />
|-<br />
| [[Train the trainers (Teach the teachers)]]<br />
| '''Q1/Q2/Q3/Q4 2009'''<br />
| Delivery <br />
| Planning<br />
| Develop a train the trainer program that will train trainers to deliver training on OWASP related material.<br />
| Mano<br />
|-<br />
| [[Create an online assessment and training portal]]<br />
| '''Q2/Q3/Q4 2009'''<br />
| Delivery <br />
| Planning<br />
| Develop an OWASP assessment and training portal that end users can use to gauge their knowledge on OWASP concepts and training providers can use to promote their training offerings.<br />
| Mano<br />
|-<br />
| [[OWASP Boot Camp Project]]<br />
| '''Proposal:''' February 2009 '''Final:''' Oktober 2009 at OWASP AppSec US 2009<br />
| Delivery <br />
| started<br />
| OWASP Boot Camp about the OWASP projects, to deliver a Boot Camp presentation should be one of the criteria to get an alpha status as project<br />
| Martin<br />
|-<br />
| [[OWASP CTF event]]<br />
| OWASP AppSec Denver 2009<br />
| Delivery <br />
| Status<br />
| Description<br />
| Martin<br />
|-<br />
| [[Speakers Bureau Project]]<br />
| '''TBD'''<br />
| Delivery <br />
| '''started'''<br />
| List of speakers, Name, Bio, Topics, History <br><br />
Speakers in conferences (OOTM ask for funds on this)/summit <br />
| Martin<br />
|-<br />
| [[Marketing efforts]]<br />
| '''TBD (discussion with other members)'''<br />
| Awareness Services <br />
| Status<br />
| Flyers or Brochures of OWASP Top 10, Testing Guide.<br />
| Eduardo<br />
|-<br />
| [[Internationalization of the training materials]]<br />
| '''TBD (discussion with Juan)'''<br />
| Awareness Services <br />
| Status<br />
| Liaise with Juan Calderon for translation services for highly spoken languages <br />
| Eduardo<br />
|-<br />
| [[Education material]]<br />
| '''TBD'''<br />
| Training & Educational Services <br />
| Status<br />
| All projects should be summoned to create educational material (training service)<br />
1) Each Projects --> Documents (help), Tool, Training; Live CD (Portable)<br />
| Martin<br />
|-<br />
| [[Educational Academic Services]]<br />
| '''TBD'''<br />
| Training & Educational Services <br />
| <br />
<br />
3 Universities already in contact with and planning OWASP events to participate in. <br />
<br />
| Incorporate OWASP into the following top 5 Universities, within the next 12 months by introducing OWASP training and education resources at University's events.<br />
<br />
1) New York University<br />
2) Cornell University<br />
3) Princeton University<br />
4) University of Minnesota<br />
5) Columbia University<br />
<br />
As a result of these initiative we would hope to see:<br />
<br />
1) Confirming participation at arranged events<br />
2) Asking Universities to recognize they are using our resources by allowing us to place their names in wiki pages such as http://www.owasp.org/index.php/OWASP_Top_Ten_Project <br />
3) University faculty, staff and students participate in local and international events/meetings<br />
4) University faculty, staff and students contribute to OWASP projects<br />
<br />
|Kuai Hinojosa<br />
|}<br />
<br />
= Proposal <font color="red">'''(DRAFT)'''</font> =<br />
== Categorize (Organization) of educational materials ==<br />
Objective<br><br />
Categorize / Organization of the educational materials for audiance by roles and responsibilities/technologies and use the summit workshop notes.<br />
<br><br />
Activities/Deadline:<br> <br />
<br />
Benefits<br><br />
<br />
== Train the trainers (Teach the teachers) ==<br />
Objective:<br />
Develop a train the trainer program that will train trainers to deliver training on OWASP related material.<br />
<br />
Activities/Deadline:<br />
# Develop a criteria to identify and approve trainers / Q1 2009<br />
# Identify pertinent OWASP related material that will be included in the training kit / Q2 2009. This is dependent on the education project organizing material.<br />
# Create a training toolkit with pre-built presentation and training materials, assessments etc. / Q3 2009<br />
# Conduct train the trainer sessions (remote or in-person) / Q4 2009<br />
<br />
Benefits:<br />
The training kit and trained trainers will be available resources promoting OWASP in local events worldwide.<br />
<br />
== Create an online assessment and training portal ==<br />
Objective:<br />
Develop an OWASP assessment and training portal that end users can use to gauge their knowledge on OWASP concepts and training providers can use to promote their training offerings.<br />
<br />
Activities/Deadline:<br />
# Generate OWASP assessment items (can use the testing guide and other sources) / Q2-Q3 2009<br />
# Develop an assessment portal to deliver taking of assessments with robust reporting by knowledge area / Q4 2009<br />
# Develop a training portal to allow training providers to publish and promote their training offerings / Q4 2009<br />
This can be developed as a summer of code project but is not a requirement. <br />
<br />
Benefits:<br />
Assessments that can be offered in OWASP events and other conferences to users will increase OWASP awareness. The portal can become the link between trainers and trainees and will eventually help in increasing the awareness and knowledge of application security in the industry.<br />
<br />
== OWASP Boot Camp Project ==<br />
Objective<br><br />
OWASP Boot Camp about the OWASP projects, to deliver a Boot Camp presentation should be one of the criteria to get an alpha status as project<br><br />
<br />
Activities/Deadline:<br> <br />
<br />
Benefits<br><br />
<br />
== OWASP CTF event ==<br />
Objective<br />
Generate a Capture The Flag framework to be offered at OWASP events<br />
<br />
Activities/Deadline: <br />
* Andrzej will contact the organizers of the CTF from the Denver OWASP Conference and work in using same model<br />
<br />
Benefits<br />
Capture The Flag events are very popular in conferences, creating and OWASP specific CFT will offer entertainment at events, generate attendants participation etc.<br />
<br />
== Speakers Bureau Project ==<br />
<br />
Objective<br><br />
OWASP Boot Camp about the OWASP projects, to deliver a Boot Camp presentation should be one of the criteria to get an alpha status as project<br><br />
<br />
Activities/Deadline:<br> <br />
<br />
Benefits<br><br />
List of speakers, Name, Bio, Topics, History <br />
Speakers in conferences (OOTM ask for funds on this)/summit<br />
<br />
Speakers Agreement - https://www.owasp.org/index.php/Speaker_Agreement<br />
<br />
== Marketing efforts ==<br />
== Internationalization of the training materials ==<br />
== Education material ==<br />
Flyers or Brochures of OWASP Top 10, Testing Guide.<br />
<br />
== Academic Educational Services ==<br />
Objectives<br><br />
Promote and encourage OWASP resources at accredited Universities around the world within the next 12 months by introducing OWASP training and education material at University's events.<br />
<br />
Activities/Deadline:<br />
<br />
* Build a list of at least 5 Universities with computer science or risk management programs that can be targeted /Q1 2009 <br />
* Establish communication with targeted universities, generate key contacts and establish relationships /Q1 - Q4 2009<br />
* Develop a list of possible academic events in which to participate /Q1 - Q2 2009 <br />
* Participate in at least 1 Academic event, present case studies or OWASP education materials /Q1 - Q4<br />
<br />
Benefits<br><br />
OWASP will gain exposure in the academic industry, starting with accredited universities around the world. Universities will become members of OWASP, provide meeting space, students will apply to OWASP grants, and provide support and structure</div>Cybermalandrohttps://wiki.owasp.org/index.php?title=Global_Education_Committee&diff=52663Global Education Committee2009-02-02T02:49:17Z<p>Cybermalandro: /* OWASP Boot Camp Project */</p>
<hr />
<div>[[Category:OWASP Project]]<br />
<br />
= About the Global Education Committee =<br />
'''The Global Education Committee was created during the OWASP EU Summit in Portugal 2008. The primary purpose of the Global Education Committee is: to work with the [https://www.owasp.org/index.php/Category:OWASP_Education_Project OWASP Education Project] to provide educational materials for both internal and external users, develop liaisons with educational institutions worldwide.'''<br />
<br />
== Mission ==<br />
Provide awareness, training and educational services to corporate,<br />
government and educational institutions on application security.<br />
<br />
== Vision ==<br />
Make OWASP educational material globally available as a well known resource<br />
in easily consumable form mapped to a framework tied specifically to user<br />
roles and responsibilities<br />
<br />
== Committee Members ==<br />
Education Committee (Board Member Rep: [mailto:seba@owasp.org Seba])<br />
<br />
• [mailto:martin.knobloch@owasp.org Martin Knobloch] (Netherlands)<br />
<br />
• [mailto:mano.paul@securisksolutions.com Mano Paul] (U.S.)<br />
<br />
• [mailto:eduardo.neves@owasp.org Eduardo Neves] (Brazil)<br />
<br />
• [mailto:kuai.hinojosa@owasp.org Kuai Hinjosa] (U.S.)<br />
<br />
• [mailto:cecil.su@GRANTTHORNTON.COM.SG Cecil Su] (Singapore)<br />
<br />
• [mailto:fabio.e.cerullo@aib.ie Fabio Cerullo] (Ireland)<br />
<br />
• [mailto:andrzej.targosz@proidea.org.pl Andrzej Targosz] (Poland)<br />
<br />
[https://www.owasp.org/index.php/How_to_Join_a_Committee How to join this committee]<br />
<br />
[https://lists.owasp.org/mailman/listinfo/global_education_committee Join our mailing list]<br />
<br />
== Scheduled Meetings ==<br />
<pre><br />
The Global Education Committee Meetings take place via Skype, see below for the local time: <br />
3:30 p.m. @ Austin, Texas <br />
4:30 p.m. @ New York <br />
7:30 p.m. @ Brasil <br />
22:30 a.m. @ Netherlands<br />
5:30 a.m. @ Singapore (following day)<br />
</pre><br />
Next meeting(s) scheduled for:<br />
* '''January 29th 2009'''<br />
* '''Februari 12th 2009'''<br />
<br />
= Agenda / Timeline <font color="red">'''(DRAFT)'''</font> =<br />
''' Deadline wednesday, 4th Februari'''<br />
== Tasks ==<br />
''' 60 days to make a proposal '''<br />
* ''' December 20th ''' - first draft of the proposal<br />
* ''' January 16th ''' - submit <br />
<br />
<br />
== Targets <font color="red">'''(DRAFT)'''</font> ==<br />
Below you can find the timeline, what has to be achieved by when. <br />
All tasks must be SMART!<br />
<br />
{| class="prettytable"<br />
! Task<br />
! Deadline<br />
! Type<br />
! Status<br />
! Description<br />
! Who<br />
|-<br />
| [[Categorize (Organization) of educational materials]]<br />
| '''TBD'''<br />
| Message<br />
| Status<br />
| Categorize / Organization of the educational materials for audience by roles and responsibilities/technologies and use the summit workshop notes.<br />
| Martin<br />
|-<br />
| [[Train the trainers (Teach the teachers)]]<br />
| '''Q1/Q2/Q3/Q4 2009'''<br />
| Delivery <br />
| Planning<br />
| Develop a train the trainer program that will train trainers to deliver training on OWASP related material.<br />
| Mano<br />
|-<br />
| [[Create an online assessment and training portal]]<br />
| '''Q2/Q3/Q4 2009'''<br />
| Delivery <br />
| Planning<br />
| Develop an OWASP assessment and training portal that end users can use to gauge their knowledge on OWASP concepts and training providers can use to promote their training offerings.<br />
| Mano<br />
|-<br />
| [[OWASP Boot Camp Project]]<br />
| '''Proposal:''' February 2009 '''Final:''' Oktober 2009 at OWASP AppSec US 2009<br />
| Delivery <br />
| started<br />
| OWASP Boot Camp about the OWASP projects, to deliver a Boot Camp presentation should be one of the criteria to get an alpha status as project<br />
| Martin<br />
|-<br />
| [[OWASP CTF event]]<br />
| OWASP AppSec Denver 2009<br />
| Delivery <br />
| Status<br />
| Description<br />
| Martin<br />
|-<br />
| [[Speakers Bureau Project]]<br />
| '''TBD'''<br />
| Delivery <br />
| '''started'''<br />
| List of speakers, Name, Bio, Topics, History <br><br />
Speakers in conferences (OOTM ask for funds on this)/summit <br />
| Martin<br />
|-<br />
| [[Marketing efforts]]<br />
| '''TBD (discussion with other members)'''<br />
| Awareness Services <br />
| Status<br />
| Flyers or Brochures of OWASP Top 10, Testing Guide.<br />
| Eduardo<br />
|-<br />
| [[Internationalization of the training materials]]<br />
| '''TBD (discussion with Juan)'''<br />
| Awareness Services <br />
| Status<br />
| Liaise with Juan Calderon for translation services for highly spoken languages <br />
| Eduardo<br />
|-<br />
| [[Education material]]<br />
| '''TBD'''<br />
| Training & Educational Services <br />
| Status<br />
| All projects should be summoned to create educational material (training service)<br />
1) Each Projects --> Documents (help), Tool, Training; Live CD (Portable)<br />
| Martin<br />
|-<br />
| [[Educational Academic Services]]<br />
| '''TBD'''<br />
| Training & Educational Services <br />
| <br />
<br />
3 Universities already in contact with and planning OWASP events to participate in. <br />
<br />
| Incorporate OWASP into the following top 5 Universities, within the next 12 months by introducing OWASP training and education resources at University's events.<br />
<br />
1) New York University<br />
2) Cornell University<br />
3) Princeton University<br />
4) University of Minnesota<br />
5) Columbia University<br />
<br />
As a result of these initiative we would hope to see:<br />
<br />
1) Confirming participation at arranged events<br />
2) Asking Universities to recognize they are using our resources by allowing us to place their names in wiki pages such as http://www.owasp.org/index.php/OWASP_Top_Ten_Project <br />
3) University faculty, staff and students participate in local and international events/meetings<br />
4) University faculty, staff and students contribute to OWASP projects<br />
<br />
|Kuai Hinojosa<br />
|}<br />
<br />
= Proposal <font color="red">'''(DRAFT)'''</font> =<br />
== Categorize (Organization) of educational materials ==<br />
Objective<br><br />
Categorize / Organization of the educational materials for audiance by roles and responsibilities/technologies and use the summit workshop notes.<br />
<br><br />
Activities/Deadline:<br> <br />
<br />
Benefits<br><br />
<br />
== Train the trainers (Teach the teachers) ==<br />
Objective:<br />
Develop a train the trainer program that will train trainers to deliver training on OWASP related material.<br />
<br />
Activities/Deadline:<br />
# Develop a criteria to identify and approve trainers / Q1 2009<br />
# Identify pertinent OWASP related material that will be included in the training kit / Q2 2009. This is dependent on the education project organizing material.<br />
# Create a training toolkit with pre-built presentation and training materials, assessments etc. / Q3 2009<br />
# Conduct train the trainer sessions (remote or in-person) / Q4 2009<br />
<br />
Benefits:<br />
The training kit and trained trainers will be available resources promoting OWASP in local events worldwide.<br />
<br />
== Create an online assessment and training portal ==<br />
Objective:<br />
Develop an OWASP assessment and training portal that end users can use to gauge their knowledge on OWASP concepts and training providers can use to promote their training offerings.<br />
<br />
Activities/Deadline:<br />
# Generate OWASP assessment items (can use the testing guide and other sources) / Q2-Q3 2009<br />
# Develop an assessment portal to deliver taking of assessments with robust reporting by knowledge area / Q4 2009<br />
# Develop a training portal to allow training providers to publish and promote their training offerings / Q4 2009<br />
This can be developed as a summer of code project but is not a requirement. <br />
<br />
Benefits:<br />
Assessments that can be offered in OWASP events and other conferences to users will increase OWASP awareness. The portal can become the link between trainers and trainees and will eventually help in increasing the awareness and knowledge of application security in the industry.<br />
<br />
== OWASP Boot Camp Project ==<br />
Objective<br><br />
OWASP Boot Camp about the OWASP projects, to deliver a Boot Camp presentation should be one of the criteria to get an alpha status as project<br><br />
<br />
Activities/Deadline:<br> <br />
<br />
Benefits<br><br />
<br />
== OWASP CTF event ==<br />
Objective<br />
Generate a Capture The Flag framework to be offered at OWASP events<br />
<br />
Activities/Deadline: <br />
* Andrzej will contact the organizers of the CTF from the Denver OWASP Conference and work in using same model<br />
<br />
Benefits<br />
Capture The Flag events are very popular in conferences, creating and OWASP specific CFT will offer entertainment at events, generate attendants participation etc.<br />
<br />
== Speakers Bureau Project ==<br />
List of speakers, Name, Bio, Topics, History <br />
Speakers in conferences (OOTM ask for funds on this)/summit<br />
<br />
Speakers Agreement - https://www.owasp.org/index.php/Speaker_Agreement<br />
<br />
== Marketing efforts ==<br />
== Internationalization of the training materials ==<br />
== Education material ==<br />
Flyers or Brochures of OWASP Top 10, Testing Guide.<br />
<br />
== Academic Educational Services ==<br />
Objectives<br><br />
Promote and encourage OWASP resources at accredited Universities around the world within the next 12 months by introducing OWASP training and education material at University's events.<br />
<br />
Activities/Deadline:<br />
<br />
* Build a list of at least 5 Universities with computer science or risk management programs that can be targeted /Q1 2009 <br />
* Establish communication with targeted universities, generate key contacts and establish relationships /Q1 - Q4 2009<br />
* Develop a list of possible academic events in which to participate /Q1 - Q2 2009 <br />
* Participate in at least 1 Academic event, present case studies or OWASP education materials /Q1 - Q4<br />
<br />
Benefits<br><br />
OWASP will gain exposure in the academic industry, starting with accredited universities around the world. Universities will become members of OWASP, provide meeting space, students will apply to OWASP grants, and provide support and structure</div>Cybermalandrohttps://wiki.owasp.org/index.php?title=Global_Education_Committee&diff=52662Global Education Committee2009-02-02T02:47:12Z<p>Cybermalandro: /* Categorize (Organization) of educational materials */</p>
<hr />
<div>[[Category:OWASP Project]]<br />
<br />
= About the Global Education Committee =<br />
'''The Global Education Committee was created during the OWASP EU Summit in Portugal 2008. The primary purpose of the Global Education Committee is: to work with the [https://www.owasp.org/index.php/Category:OWASP_Education_Project OWASP Education Project] to provide educational materials for both internal and external users, develop liaisons with educational institutions worldwide.'''<br />
<br />
== Mission ==<br />
Provide awareness, training and educational services to corporate,<br />
government and educational institutions on application security.<br />
<br />
== Vision ==<br />
Make OWASP educational material globally available as a well known resource<br />
in easily consumable form mapped to a framework tied specifically to user<br />
roles and responsibilities<br />
<br />
== Committee Members ==<br />
Education Committee (Board Member Rep: [mailto:seba@owasp.org Seba])<br />
<br />
• [mailto:martin.knobloch@owasp.org Martin Knobloch] (Netherlands)<br />
<br />
• [mailto:mano.paul@securisksolutions.com Mano Paul] (U.S.)<br />
<br />
• [mailto:eduardo.neves@owasp.org Eduardo Neves] (Brazil)<br />
<br />
• [mailto:kuai.hinojosa@owasp.org Kuai Hinjosa] (U.S.)<br />
<br />
• [mailto:cecil.su@GRANTTHORNTON.COM.SG Cecil Su] (Singapore)<br />
<br />
• [mailto:fabio.e.cerullo@aib.ie Fabio Cerullo] (Ireland)<br />
<br />
• [mailto:andrzej.targosz@proidea.org.pl Andrzej Targosz] (Poland)<br />
<br />
[https://www.owasp.org/index.php/How_to_Join_a_Committee How to join this committee]<br />
<br />
[https://lists.owasp.org/mailman/listinfo/global_education_committee Join our mailing list]<br />
<br />
== Scheduled Meetings ==<br />
<pre><br />
The Global Education Committee Meetings take place via Skype, see below for the local time: <br />
3:30 p.m. @ Austin, Texas <br />
4:30 p.m. @ New York <br />
7:30 p.m. @ Brasil <br />
22:30 a.m. @ Netherlands<br />
5:30 a.m. @ Singapore (following day)<br />
</pre><br />
Next meeting(s) scheduled for:<br />
* '''January 29th 2009'''<br />
* '''Februari 12th 2009'''<br />
<br />
= Agenda / Timeline <font color="red">'''(DRAFT)'''</font> =<br />
''' Deadline wednesday, 4th Februari'''<br />
== Tasks ==<br />
''' 60 days to make a proposal '''<br />
* ''' December 20th ''' - first draft of the proposal<br />
* ''' January 16th ''' - submit <br />
<br />
<br />
== Targets <font color="red">'''(DRAFT)'''</font> ==<br />
Below you can find the timeline, what has to be achieved by when. <br />
All tasks must be SMART!<br />
<br />
{| class="prettytable"<br />
! Task<br />
! Deadline<br />
! Type<br />
! Status<br />
! Description<br />
! Who<br />
|-<br />
| [[Categorize (Organization) of educational materials]]<br />
| '''TBD'''<br />
| Message<br />
| Status<br />
| Categorize / Organization of the educational materials for audience by roles and responsibilities/technologies and use the summit workshop notes.<br />
| Martin<br />
|-<br />
| [[Train the trainers (Teach the teachers)]]<br />
| '''Q1/Q2/Q3/Q4 2009'''<br />
| Delivery <br />
| Planning<br />
| Develop a train the trainer program that will train trainers to deliver training on OWASP related material.<br />
| Mano<br />
|-<br />
| [[Create an online assessment and training portal]]<br />
| '''Q2/Q3/Q4 2009'''<br />
| Delivery <br />
| Planning<br />
| Develop an OWASP assessment and training portal that end users can use to gauge their knowledge on OWASP concepts and training providers can use to promote their training offerings.<br />
| Mano<br />
|-<br />
| [[OWASP Boot Camp Project]]<br />
| '''Proposal:''' February 2009 '''Final:''' Oktober 2009 at OWASP AppSec US 2009<br />
| Delivery <br />
| started<br />
| OWASP Boot Camp about the OWASP projects, to deliver a Boot Camp presentation should be one of the criteria to get an alpha status as project<br />
| Martin<br />
|-<br />
| [[OWASP CTF event]]<br />
| OWASP AppSec Denver 2009<br />
| Delivery <br />
| Status<br />
| Description<br />
| Martin<br />
|-<br />
| [[Speakers Bureau Project]]<br />
| '''TBD'''<br />
| Delivery <br />
| '''started'''<br />
| List of speakers, Name, Bio, Topics, History <br><br />
Speakers in conferences (OOTM ask for funds on this)/summit <br />
| Martin<br />
|-<br />
| [[Marketing efforts]]<br />
| '''TBD (discussion with other members)'''<br />
| Awareness Services <br />
| Status<br />
| Flyers or Brochures of OWASP Top 10, Testing Guide.<br />
| Eduardo<br />
|-<br />
| [[Internationalization of the training materials]]<br />
| '''TBD (discussion with Juan)'''<br />
| Awareness Services <br />
| Status<br />
| Liaise with Juan Calderon for translation services for highly spoken languages <br />
| Eduardo<br />
|-<br />
| [[Education material]]<br />
| '''TBD'''<br />
| Training & Educational Services <br />
| Status<br />
| All projects should be summoned to create educational material (training service)<br />
1) Each Projects --> Documents (help), Tool, Training; Live CD (Portable)<br />
| Martin<br />
|-<br />
| [[Educational Academic Services]]<br />
| '''TBD'''<br />
| Training & Educational Services <br />
| <br />
<br />
3 Universities already in contact with and planning OWASP events to participate in. <br />
<br />
| Incorporate OWASP into the following top 5 Universities, within the next 12 months by introducing OWASP training and education resources at University's events.<br />
<br />
1) New York University<br />
2) Cornell University<br />
3) Princeton University<br />
4) University of Minnesota<br />
5) Columbia University<br />
<br />
As a result of these initiative we would hope to see:<br />
<br />
1) Confirming participation at arranged events<br />
2) Asking Universities to recognize they are using our resources by allowing us to place their names in wiki pages such as http://www.owasp.org/index.php/OWASP_Top_Ten_Project <br />
3) University faculty, staff and students participate in local and international events/meetings<br />
4) University faculty, staff and students contribute to OWASP projects<br />
<br />
|Kuai Hinojosa<br />
|}<br />
<br />
= Proposal <font color="red">'''(DRAFT)'''</font> =<br />
== Categorize (Organization) of educational materials ==<br />
Objective<br><br />
Categorize / Organization of the educational materials for audiance by roles and responsibilities/technologies and use the summit workshop notes.<br />
<br><br />
Activities/Deadline:<br> <br />
<br />
Benefits<br><br />
<br />
== Train the trainers (Teach the teachers) ==<br />
Objective:<br />
Develop a train the trainer program that will train trainers to deliver training on OWASP related material.<br />
<br />
Activities/Deadline:<br />
# Develop a criteria to identify and approve trainers / Q1 2009<br />
# Identify pertinent OWASP related material that will be included in the training kit / Q2 2009. This is dependent on the education project organizing material.<br />
# Create a training toolkit with pre-built presentation and training materials, assessments etc. / Q3 2009<br />
# Conduct train the trainer sessions (remote or in-person) / Q4 2009<br />
<br />
Benefits:<br />
The training kit and trained trainers will be available resources promoting OWASP in local events worldwide.<br />
<br />
== Create an online assessment and training portal ==<br />
Objective:<br />
Develop an OWASP assessment and training portal that end users can use to gauge their knowledge on OWASP concepts and training providers can use to promote their training offerings.<br />
<br />
Activities/Deadline:<br />
# Generate OWASP assessment items (can use the testing guide and other sources) / Q2-Q3 2009<br />
# Develop an assessment portal to deliver taking of assessments with robust reporting by knowledge area / Q4 2009<br />
# Develop a training portal to allow training providers to publish and promote their training offerings / Q4 2009<br />
This can be developed as a summer of code project but is not a requirement. <br />
<br />
Benefits:<br />
Assessments that can be offered in OWASP events and other conferences to users will increase OWASP awareness. The portal can become the link between trainers and trainees and will eventually help in increasing the awareness and knowledge of application security in the industry.<br />
<br />
== OWASP Boot Camp Project ==<br />
Objective<br><br />
OWASP Boot Camp about the OWASP projects, to deliver a Boot Camp presentation should be one of the criteria to get an alpha status as project<br><br />
<br />
== OWASP CTF event ==<br />
Objective<br />
Generate a Capture The Flag framework to be offered at OWASP events<br />
<br />
Activities/Deadline: <br />
* Andrzej will contact the organizers of the CTF from the Denver OWASP Conference and work in using same model<br />
<br />
Benefits<br />
Capture The Flag events are very popular in conferences, creating and OWASP specific CFT will offer entertainment at events, generate attendants participation etc.<br />
<br />
== Speakers Bureau Project ==<br />
List of speakers, Name, Bio, Topics, History <br />
Speakers in conferences (OOTM ask for funds on this)/summit<br />
<br />
Speakers Agreement - https://www.owasp.org/index.php/Speaker_Agreement<br />
<br />
== Marketing efforts ==<br />
== Internationalization of the training materials ==<br />
== Education material ==<br />
Flyers or Brochures of OWASP Top 10, Testing Guide.<br />
<br />
== Academic Educational Services ==<br />
Objectives<br><br />
Promote and encourage OWASP resources at accredited Universities around the world within the next 12 months by introducing OWASP training and education material at University's events.<br />
<br />
Activities/Deadline:<br />
<br />
* Build a list of at least 5 Universities with computer science or risk management programs that can be targeted /Q1 2009 <br />
* Establish communication with targeted universities, generate key contacts and establish relationships /Q1 - Q4 2009<br />
* Develop a list of possible academic events in which to participate /Q1 - Q2 2009 <br />
* Participate in at least 1 Academic event, present case studies or OWASP education materials /Q1 - Q4<br />
<br />
Benefits<br><br />
OWASP will gain exposure in the academic industry, starting with accredited universities around the world. Universities will become members of OWASP, provide meeting space, students will apply to OWASP grants, and provide support and structure</div>Cybermalandrohttps://wiki.owasp.org/index.php?title=Global_Education_Committee&diff=52661Global Education Committee2009-02-02T02:46:07Z<p>Cybermalandro: /* OWASP Boot Camp Project */</p>
<hr />
<div>[[Category:OWASP Project]]<br />
<br />
= About the Global Education Committee =<br />
'''The Global Education Committee was created during the OWASP EU Summit in Portugal 2008. The primary purpose of the Global Education Committee is: to work with the [https://www.owasp.org/index.php/Category:OWASP_Education_Project OWASP Education Project] to provide educational materials for both internal and external users, develop liaisons with educational institutions worldwide.'''<br />
<br />
== Mission ==<br />
Provide awareness, training and educational services to corporate,<br />
government and educational institutions on application security.<br />
<br />
== Vision ==<br />
Make OWASP educational material globally available as a well known resource<br />
in easily consumable form mapped to a framework tied specifically to user<br />
roles and responsibilities<br />
<br />
== Committee Members ==<br />
Education Committee (Board Member Rep: [mailto:seba@owasp.org Seba])<br />
<br />
• [mailto:martin.knobloch@owasp.org Martin Knobloch] (Netherlands)<br />
<br />
• [mailto:mano.paul@securisksolutions.com Mano Paul] (U.S.)<br />
<br />
• [mailto:eduardo.neves@owasp.org Eduardo Neves] (Brazil)<br />
<br />
• [mailto:kuai.hinojosa@owasp.org Kuai Hinjosa] (U.S.)<br />
<br />
• [mailto:cecil.su@GRANTTHORNTON.COM.SG Cecil Su] (Singapore)<br />
<br />
• [mailto:fabio.e.cerullo@aib.ie Fabio Cerullo] (Ireland)<br />
<br />
• [mailto:andrzej.targosz@proidea.org.pl Andrzej Targosz] (Poland)<br />
<br />
[https://www.owasp.org/index.php/How_to_Join_a_Committee How to join this committee]<br />
<br />
[https://lists.owasp.org/mailman/listinfo/global_education_committee Join our mailing list]<br />
<br />
== Scheduled Meetings ==<br />
<pre><br />
The Global Education Committee Meetings take place via Skype, see below for the local time: <br />
3:30 p.m. @ Austin, Texas <br />
4:30 p.m. @ New York <br />
7:30 p.m. @ Brasil <br />
22:30 a.m. @ Netherlands<br />
5:30 a.m. @ Singapore (following day)<br />
</pre><br />
Next meeting(s) scheduled for:<br />
* '''January 29th 2009'''<br />
* '''Februari 12th 2009'''<br />
<br />
= Agenda / Timeline <font color="red">'''(DRAFT)'''</font> =<br />
''' Deadline wednesday, 4th Februari'''<br />
== Tasks ==<br />
''' 60 days to make a proposal '''<br />
* ''' December 20th ''' - first draft of the proposal<br />
* ''' January 16th ''' - submit <br />
<br />
<br />
== Targets <font color="red">'''(DRAFT)'''</font> ==<br />
Below you can find the timeline, what has to be achieved by when. <br />
All tasks must be SMART!<br />
<br />
{| class="prettytable"<br />
! Task<br />
! Deadline<br />
! Type<br />
! Status<br />
! Description<br />
! Who<br />
|-<br />
| [[Categorize (Organization) of educational materials]]<br />
| '''TBD'''<br />
| Message<br />
| Status<br />
| Categorize / Organization of the educational materials for audience by roles and responsibilities/technologies and use the summit workshop notes.<br />
| Martin<br />
|-<br />
| [[Train the trainers (Teach the teachers)]]<br />
| '''Q1/Q2/Q3/Q4 2009'''<br />
| Delivery <br />
| Planning<br />
| Develop a train the trainer program that will train trainers to deliver training on OWASP related material.<br />
| Mano<br />
|-<br />
| [[Create an online assessment and training portal]]<br />
| '''Q2/Q3/Q4 2009'''<br />
| Delivery <br />
| Planning<br />
| Develop an OWASP assessment and training portal that end users can use to gauge their knowledge on OWASP concepts and training providers can use to promote their training offerings.<br />
| Mano<br />
|-<br />
| [[OWASP Boot Camp Project]]<br />
| '''Proposal:''' February 2009 '''Final:''' Oktober 2009 at OWASP AppSec US 2009<br />
| Delivery <br />
| started<br />
| OWASP Boot Camp about the OWASP projects, to deliver a Boot Camp presentation should be one of the criteria to get an alpha status as project<br />
| Martin<br />
|-<br />
| [[OWASP CTF event]]<br />
| OWASP AppSec Denver 2009<br />
| Delivery <br />
| Status<br />
| Description<br />
| Martin<br />
|-<br />
| [[Speakers Bureau Project]]<br />
| '''TBD'''<br />
| Delivery <br />
| '''started'''<br />
| List of speakers, Name, Bio, Topics, History <br><br />
Speakers in conferences (OOTM ask for funds on this)/summit <br />
| Martin<br />
|-<br />
| [[Marketing efforts]]<br />
| '''TBD (discussion with other members)'''<br />
| Awareness Services <br />
| Status<br />
| Flyers or Brochures of OWASP Top 10, Testing Guide.<br />
| Eduardo<br />
|-<br />
| [[Internationalization of the training materials]]<br />
| '''TBD (discussion with Juan)'''<br />
| Awareness Services <br />
| Status<br />
| Liaise with Juan Calderon for translation services for highly spoken languages <br />
| Eduardo<br />
|-<br />
| [[Education material]]<br />
| '''TBD'''<br />
| Training & Educational Services <br />
| Status<br />
| All projects should be summoned to create educational material (training service)<br />
1) Each Projects --> Documents (help), Tool, Training; Live CD (Portable)<br />
| Martin<br />
|-<br />
| [[Educational Academic Services]]<br />
| '''TBD'''<br />
| Training & Educational Services <br />
| <br />
<br />
3 Universities already in contact with and planning OWASP events to participate in. <br />
<br />
| Incorporate OWASP into the following top 5 Universities, within the next 12 months by introducing OWASP training and education resources at University's events.<br />
<br />
1) New York University<br />
2) Cornell University<br />
3) Princeton University<br />
4) University of Minnesota<br />
5) Columbia University<br />
<br />
As a result of these initiative we would hope to see:<br />
<br />
1) Confirming participation at arranged events<br />
2) Asking Universities to recognize they are using our resources by allowing us to place their names in wiki pages such as http://www.owasp.org/index.php/OWASP_Top_Ten_Project <br />
3) University faculty, staff and students participate in local and international events/meetings<br />
4) University faculty, staff and students contribute to OWASP projects<br />
<br />
|Kuai Hinojosa<br />
|}<br />
<br />
= Proposal <font color="red">'''(DRAFT)'''</font> =<br />
== Categorize (Organization) of educational materials ==<br />
Categorize / Organization of the educational materials for audiance by roles and responsibilities/technologies and use the summit workshop notes. <br />
== Train the trainers (Teach the teachers) ==<br />
Objective:<br />
Develop a train the trainer program that will train trainers to deliver training on OWASP related material.<br />
<br />
Activities/Deadline:<br />
# Develop a criteria to identify and approve trainers / Q1 2009<br />
# Identify pertinent OWASP related material that will be included in the training kit / Q2 2009. This is dependent on the education project organizing material.<br />
# Create a training toolkit with pre-built presentation and training materials, assessments etc. / Q3 2009<br />
# Conduct train the trainer sessions (remote or in-person) / Q4 2009<br />
<br />
Benefits:<br />
The training kit and trained trainers will be available resources promoting OWASP in local events worldwide.<br />
<br />
== Create an online assessment and training portal ==<br />
Objective:<br />
Develop an OWASP assessment and training portal that end users can use to gauge their knowledge on OWASP concepts and training providers can use to promote their training offerings.<br />
<br />
Activities/Deadline:<br />
# Generate OWASP assessment items (can use the testing guide and other sources) / Q2-Q3 2009<br />
# Develop an assessment portal to deliver taking of assessments with robust reporting by knowledge area / Q4 2009<br />
# Develop a training portal to allow training providers to publish and promote their training offerings / Q4 2009<br />
This can be developed as a summer of code project but is not a requirement. <br />
<br />
Benefits:<br />
Assessments that can be offered in OWASP events and other conferences to users will increase OWASP awareness. The portal can become the link between trainers and trainees and will eventually help in increasing the awareness and knowledge of application security in the industry.<br />
<br />
== OWASP Boot Camp Project ==<br />
Objective<br><br />
OWASP Boot Camp about the OWASP projects, to deliver a Boot Camp presentation should be one of the criteria to get an alpha status as project<br><br />
<br />
== OWASP CTF event ==<br />
Objective<br />
Generate a Capture The Flag framework to be offered at OWASP events<br />
<br />
Activities/Deadline: <br />
* Andrzej will contact the organizers of the CTF from the Denver OWASP Conference and work in using same model<br />
<br />
Benefits<br />
Capture The Flag events are very popular in conferences, creating and OWASP specific CFT will offer entertainment at events, generate attendants participation etc.<br />
<br />
== Speakers Bureau Project ==<br />
List of speakers, Name, Bio, Topics, History <br />
Speakers in conferences (OOTM ask for funds on this)/summit<br />
<br />
Speakers Agreement - https://www.owasp.org/index.php/Speaker_Agreement<br />
<br />
== Marketing efforts ==<br />
== Internationalization of the training materials ==<br />
== Education material ==<br />
Flyers or Brochures of OWASP Top 10, Testing Guide.<br />
<br />
== Academic Educational Services ==<br />
Objectives<br><br />
Promote and encourage OWASP resources at accredited Universities around the world within the next 12 months by introducing OWASP training and education material at University's events.<br />
<br />
Activities/Deadline:<br />
<br />
* Build a list of at least 5 Universities with computer science or risk management programs that can be targeted /Q1 2009 <br />
* Establish communication with targeted universities, generate key contacts and establish relationships /Q1 - Q4 2009<br />
* Develop a list of possible academic events in which to participate /Q1 - Q2 2009 <br />
* Participate in at least 1 Academic event, present case studies or OWASP education materials /Q1 - Q4<br />
<br />
Benefits<br><br />
OWASP will gain exposure in the academic industry, starting with accredited universities around the world. Universities will become members of OWASP, provide meeting space, students will apply to OWASP grants, and provide support and structure</div>Cybermalandrohttps://wiki.owasp.org/index.php?title=Global_Education_Committee&diff=52660Global Education Committee2009-02-02T02:44:46Z<p>Cybermalandro: /* OWASP CTF event */</p>
<hr />
<div>[[Category:OWASP Project]]<br />
<br />
= About the Global Education Committee =<br />
'''The Global Education Committee was created during the OWASP EU Summit in Portugal 2008. The primary purpose of the Global Education Committee is: to work with the [https://www.owasp.org/index.php/Category:OWASP_Education_Project OWASP Education Project] to provide educational materials for both internal and external users, develop liaisons with educational institutions worldwide.'''<br />
<br />
== Mission ==<br />
Provide awareness, training and educational services to corporate,<br />
government and educational institutions on application security.<br />
<br />
== Vision ==<br />
Make OWASP educational material globally available as a well known resource<br />
in easily consumable form mapped to a framework tied specifically to user<br />
roles and responsibilities<br />
<br />
== Committee Members ==<br />
Education Committee (Board Member Rep: [mailto:seba@owasp.org Seba])<br />
<br />
• [mailto:martin.knobloch@owasp.org Martin Knobloch] (Netherlands)<br />
<br />
• [mailto:mano.paul@securisksolutions.com Mano Paul] (U.S.)<br />
<br />
• [mailto:eduardo.neves@owasp.org Eduardo Neves] (Brazil)<br />
<br />
• [mailto:kuai.hinojosa@owasp.org Kuai Hinjosa] (U.S.)<br />
<br />
• [mailto:cecil.su@GRANTTHORNTON.COM.SG Cecil Su] (Singapore)<br />
<br />
• [mailto:fabio.e.cerullo@aib.ie Fabio Cerullo] (Ireland)<br />
<br />
• [mailto:andrzej.targosz@proidea.org.pl Andrzej Targosz] (Poland)<br />
<br />
[https://www.owasp.org/index.php/How_to_Join_a_Committee How to join this committee]<br />
<br />
[https://lists.owasp.org/mailman/listinfo/global_education_committee Join our mailing list]<br />
<br />
== Scheduled Meetings ==<br />
<pre><br />
The Global Education Committee Meetings take place via Skype, see below for the local time: <br />
3:30 p.m. @ Austin, Texas <br />
4:30 p.m. @ New York <br />
7:30 p.m. @ Brasil <br />
22:30 a.m. @ Netherlands<br />
5:30 a.m. @ Singapore (following day)<br />
</pre><br />
Next meeting(s) scheduled for:<br />
* '''January 29th 2009'''<br />
* '''Februari 12th 2009'''<br />
<br />
= Agenda / Timeline <font color="red">'''(DRAFT)'''</font> =<br />
''' Deadline wednesday, 4th Februari'''<br />
== Tasks ==<br />
''' 60 days to make a proposal '''<br />
* ''' December 20th ''' - first draft of the proposal<br />
* ''' January 16th ''' - submit <br />
<br />
<br />
== Targets <font color="red">'''(DRAFT)'''</font> ==<br />
Below you can find the timeline, what has to be achieved by when. <br />
All tasks must be SMART!<br />
<br />
{| class="prettytable"<br />
! Task<br />
! Deadline<br />
! Type<br />
! Status<br />
! Description<br />
! Who<br />
|-<br />
| [[Categorize (Organization) of educational materials]]<br />
| '''TBD'''<br />
| Message<br />
| Status<br />
| Categorize / Organization of the educational materials for audience by roles and responsibilities/technologies and use the summit workshop notes.<br />
| Martin<br />
|-<br />
| [[Train the trainers (Teach the teachers)]]<br />
| '''Q1/Q2/Q3/Q4 2009'''<br />
| Delivery <br />
| Planning<br />
| Develop a train the trainer program that will train trainers to deliver training on OWASP related material.<br />
| Mano<br />
|-<br />
| [[Create an online assessment and training portal]]<br />
| '''Q2/Q3/Q4 2009'''<br />
| Delivery <br />
| Planning<br />
| Develop an OWASP assessment and training portal that end users can use to gauge their knowledge on OWASP concepts and training providers can use to promote their training offerings.<br />
| Mano<br />
|-<br />
| [[OWASP Boot Camp Project]]<br />
| '''Proposal:''' February 2009 '''Final:''' Oktober 2009 at OWASP AppSec US 2009<br />
| Delivery <br />
| started<br />
| OWASP Boot Camp about the OWASP projects, to deliver a Boot Camp presentation should be one of the criteria to get an alpha status as project<br />
| Martin<br />
|-<br />
| [[OWASP CTF event]]<br />
| OWASP AppSec Denver 2009<br />
| Delivery <br />
| Status<br />
| Description<br />
| Martin<br />
|-<br />
| [[Speakers Bureau Project]]<br />
| '''TBD'''<br />
| Delivery <br />
| '''started'''<br />
| List of speakers, Name, Bio, Topics, History <br><br />
Speakers in conferences (OOTM ask for funds on this)/summit <br />
| Martin<br />
|-<br />
| [[Marketing efforts]]<br />
| '''TBD (discussion with other members)'''<br />
| Awareness Services <br />
| Status<br />
| Flyers or Brochures of OWASP Top 10, Testing Guide.<br />
| Eduardo<br />
|-<br />
| [[Internationalization of the training materials]]<br />
| '''TBD (discussion with Juan)'''<br />
| Awareness Services <br />
| Status<br />
| Liaise with Juan Calderon for translation services for highly spoken languages <br />
| Eduardo<br />
|-<br />
| [[Education material]]<br />
| '''TBD'''<br />
| Training & Educational Services <br />
| Status<br />
| All projects should be summoned to create educational material (training service)<br />
1) Each Projects --> Documents (help), Tool, Training; Live CD (Portable)<br />
| Martin<br />
|-<br />
| [[Educational Academic Services]]<br />
| '''TBD'''<br />
| Training & Educational Services <br />
| <br />
<br />
3 Universities already in contact with and planning OWASP events to participate in. <br />
<br />
| Incorporate OWASP into the following top 5 Universities, within the next 12 months by introducing OWASP training and education resources at University's events.<br />
<br />
1) New York University<br />
2) Cornell University<br />
3) Princeton University<br />
4) University of Minnesota<br />
5) Columbia University<br />
<br />
As a result of these initiative we would hope to see:<br />
<br />
1) Confirming participation at arranged events<br />
2) Asking Universities to recognize they are using our resources by allowing us to place their names in wiki pages such as http://www.owasp.org/index.php/OWASP_Top_Ten_Project <br />
3) University faculty, staff and students participate in local and international events/meetings<br />
4) University faculty, staff and students contribute to OWASP projects<br />
<br />
|Kuai Hinojosa<br />
|}<br />
<br />
= Proposal <font color="red">'''(DRAFT)'''</font> =<br />
== Categorize (Organization) of educational materials ==<br />
Categorize / Organization of the educational materials for audiance by roles and responsibilities/technologies and use the summit workshop notes. <br />
== Train the trainers (Teach the teachers) ==<br />
Objective:<br />
Develop a train the trainer program that will train trainers to deliver training on OWASP related material.<br />
<br />
Activities/Deadline:<br />
# Develop a criteria to identify and approve trainers / Q1 2009<br />
# Identify pertinent OWASP related material that will be included in the training kit / Q2 2009. This is dependent on the education project organizing material.<br />
# Create a training toolkit with pre-built presentation and training materials, assessments etc. / Q3 2009<br />
# Conduct train the trainer sessions (remote or in-person) / Q4 2009<br />
<br />
Benefits:<br />
The training kit and trained trainers will be available resources promoting OWASP in local events worldwide.<br />
<br />
== Create an online assessment and training portal ==<br />
Objective:<br />
Develop an OWASP assessment and training portal that end users can use to gauge their knowledge on OWASP concepts and training providers can use to promote their training offerings.<br />
<br />
Activities/Deadline:<br />
# Generate OWASP assessment items (can use the testing guide and other sources) / Q2-Q3 2009<br />
# Develop an assessment portal to deliver taking of assessments with robust reporting by knowledge area / Q4 2009<br />
# Develop a training portal to allow training providers to publish and promote their training offerings / Q4 2009<br />
This can be developed as a summer of code project but is not a requirement. <br />
<br />
Benefits:<br />
Assessments that can be offered in OWASP events and other conferences to users will increase OWASP awareness. The portal can become the link between trainers and trainees and will eventually help in increasing the awareness and knowledge of application security in the industry.<br />
<br />
== OWASP Boot Camp Project ==<br />
OWASP Boot Camp about the OWASP projects, to deliver a Boot Camp presentation should be one of the criteria to get an alpha status as project <br />
== OWASP CTF event ==<br />
Objective<br />
Generate a Capture The Flag framework to be offered at OWASP events<br />
<br />
Activities/Deadline: <br />
* Andrzej will contact the organizers of the CTF from the Denver OWASP Conference and work in using same model<br />
<br />
Benefits<br />
Capture The Flag events are very popular in conferences, creating and OWASP specific CFT will offer entertainment at events, generate attendants participation etc.<br />
<br />
== Speakers Bureau Project ==<br />
List of speakers, Name, Bio, Topics, History <br />
Speakers in conferences (OOTM ask for funds on this)/summit<br />
<br />
Speakers Agreement - https://www.owasp.org/index.php/Speaker_Agreement<br />
<br />
== Marketing efforts ==<br />
== Internationalization of the training materials ==<br />
== Education material ==<br />
Flyers or Brochures of OWASP Top 10, Testing Guide.<br />
<br />
== Academic Educational Services ==<br />
Objectives<br><br />
Promote and encourage OWASP resources at accredited Universities around the world within the next 12 months by introducing OWASP training and education material at University's events.<br />
<br />
Activities/Deadline:<br />
<br />
* Build a list of at least 5 Universities with computer science or risk management programs that can be targeted /Q1 2009 <br />
* Establish communication with targeted universities, generate key contacts and establish relationships /Q1 - Q4 2009<br />
* Develop a list of possible academic events in which to participate /Q1 - Q2 2009 <br />
* Participate in at least 1 Academic event, present case studies or OWASP education materials /Q1 - Q4<br />
<br />
Benefits<br><br />
OWASP will gain exposure in the academic industry, starting with accredited universities around the world. Universities will become members of OWASP, provide meeting space, students will apply to OWASP grants, and provide support and structure</div>Cybermalandrohttps://wiki.owasp.org/index.php?title=Global_Education_Committee&diff=52659Global Education Committee2009-02-02T02:27:59Z<p>Cybermalandro: /* Educational Academic Services */</p>
<hr />
<div>[[Category:OWASP Project]]<br />
<br />
= About the Global Education Committee =<br />
'''The Global Education Committee was created during the OWASP EU Summit in Portugal 2008. The primary purpose of the Global Education Committee is: to work with the [https://www.owasp.org/index.php/Category:OWASP_Education_Project OWASP Education Project] to provide educational materials for both internal and external users, develop liaisons with educational institutions worldwide.'''<br />
<br />
== Mission ==<br />
Provide awareness, training and educational services to corporate,<br />
government and educational institutions on application security.<br />
<br />
== Vision ==<br />
Make OWASP educational material globally available as a well known resource<br />
in easily consumable form mapped to a framework tied specifically to user<br />
roles and responsibilities<br />
<br />
== Committee Members ==<br />
Education Committee (Board Member Rep: [mailto:seba@owasp.org Seba])<br />
<br />
• [mailto:martin.knobloch@owasp.org Martin Knobloch] (Netherlands)<br />
<br />
• [mailto:mano.paul@securisksolutions.com Mano Paul] (U.S.)<br />
<br />
• [mailto:eduardo.neves@owasp.org Eduardo Neves] (Brazil)<br />
<br />
• [mailto:kuai.hinojosa@owasp.org Kuai Hinjosa] (U.S.)<br />
<br />
• [mailto:cecil.su@GRANTTHORNTON.COM.SG Cecil Su] (Singapore)<br />
<br />
• [mailto:fabio.e.cerullo@aib.ie Fabio Cerullo] (Ireland)<br />
<br />
• [mailto:andrzej.targosz@proidea.org.pl Andrzej Targosz] (Poland)<br />
<br />
[https://www.owasp.org/index.php/How_to_Join_a_Committee How to join this committee]<br />
<br />
[https://lists.owasp.org/mailman/listinfo/global_education_committee Join our mailing list]<br />
<br />
== Scheduled Meetings ==<br />
<pre><br />
The Global Education Committee Meetings take place via Skype, see below for the local time: <br />
3:30 p.m. @ Austin, Texas <br />
4:30 p.m. @ New York <br />
7:30 p.m. @ Brasil <br />
22:30 a.m. @ Netherlands<br />
5:30 a.m. @ Singapore (following day)<br />
</pre><br />
Next meeting(s) scheduled for:<br />
* '''January 29th 2009'''<br />
* '''Februari 12th 2009'''<br />
<br />
= Agenda / Timeline <font color="red">'''(DRAFT)'''</font> =<br />
''' Deadline wednesday, 4th Februari'''<br />
== Tasks ==<br />
''' 60 days to make a proposal '''<br />
* ''' December 20th ''' - first draft of the proposal<br />
* ''' January 16th ''' - submit <br />
<br />
<br />
== Targets <font color="red">'''(DRAFT)'''</font> ==<br />
Below you can find the timeline, what has to be achieved by when. <br />
All tasks must be SMART!<br />
<br />
{| class="prettytable"<br />
! Task<br />
! Deadline<br />
! Type<br />
! Status<br />
! Description<br />
! Who<br />
|-<br />
| [[Categorize (Organization) of educational materials]]<br />
| '''TBD'''<br />
| Message<br />
| Status<br />
| Categorize / Organization of the educational materials for audience by roles and responsibilities/technologies and use the summit workshop notes.<br />
| Martin<br />
|-<br />
| [[Train the trainers (Teach the teachers)]]<br />
| '''Q1/Q2/Q3/Q4 2009'''<br />
| Delivery <br />
| Planning<br />
| Develop a train the trainer program that will train trainers to deliver training on OWASP related material.<br />
| Mano<br />
|-<br />
| [[Create an online assessment and training portal]]<br />
| '''Q2/Q3/Q4 2009'''<br />
| Delivery <br />
| Planning<br />
| Develop an OWASP assessment and training portal that end users can use to gauge their knowledge on OWASP concepts and training providers can use to promote their training offerings.<br />
| Mano<br />
|-<br />
| [[OWASP Boot Camp Project]]<br />
| '''Proposal:''' February 2009 '''Final:''' Oktober 2009 at OWASP AppSec US 2009<br />
| Delivery <br />
| started<br />
| OWASP Boot Camp about the OWASP projects, to deliver a Boot Camp presentation should be one of the criteria to get an alpha status as project<br />
| Martin<br />
|-<br />
| [[OWASP CTF event]]<br />
| OWASP AppSec Denver 2009<br />
| Delivery <br />
| Status<br />
| Description<br />
| Martin<br />
|-<br />
| [[Speakers Bureau Project]]<br />
| '''TBD'''<br />
| Delivery <br />
| '''started'''<br />
| List of speakers, Name, Bio, Topics, History <br><br />
Speakers in conferences (OOTM ask for funds on this)/summit <br />
| Martin<br />
|-<br />
| [[Marketing efforts]]<br />
| '''TBD (discussion with other members)'''<br />
| Awareness Services <br />
| Status<br />
| Flyers or Brochures of OWASP Top 10, Testing Guide.<br />
| Eduardo<br />
|-<br />
| [[Internationalization of the training materials]]<br />
| '''TBD (discussion with Juan)'''<br />
| Awareness Services <br />
| Status<br />
| Liaise with Juan Calderon for translation services for highly spoken languages <br />
| Eduardo<br />
|-<br />
| [[Education material]]<br />
| '''TBD'''<br />
| Training & Educational Services <br />
| Status<br />
| All projects should be summoned to create educational material (training service)<br />
1) Each Projects --> Documents (help), Tool, Training; Live CD (Portable)<br />
| Martin<br />
|-<br />
| [[Educational Academic Services]]<br />
| '''TBD'''<br />
| Training & Educational Services <br />
| <br />
<br />
3 Universities already in contact with and planning OWASP events to participate in. <br />
<br />
| Incorporate OWASP into the following top 5 Universities, within the next 12 months by introducing OWASP training and education resources at University's events.<br />
<br />
1) New York University<br />
2) Cornell University<br />
3) Princeton University<br />
4) University of Minnesota<br />
5) Columbia University<br />
<br />
As a result of these initiative we would hope to see:<br />
<br />
1) Confirming participation at arranged events<br />
2) Asking Universities to recognize they are using our resources by allowing us to place their names in wiki pages such as http://www.owasp.org/index.php/OWASP_Top_Ten_Project <br />
3) University faculty, staff and students participate in local and international events/meetings<br />
4) University faculty, staff and students contribute to OWASP projects<br />
<br />
|Kuai Hinojosa<br />
|}<br />
<br />
= Proposal <font color="red">'''(DRAFT)'''</font> =<br />
== Categorize (Organization) of educational materials ==<br />
Categorize / Organization of the educational materials for audiance by roles and responsibilities/technologies and use the summit workshop notes. <br />
== Train the trainers (Teach the teachers) ==<br />
Objective:<br />
Develop a train the trainer program that will train trainers to deliver training on OWASP related material.<br />
<br />
Activities/Deadline:<br />
# Develop a criteria to identify and approve trainers / Q1 2009<br />
# Identify pertinent OWASP related material that will be included in the training kit / Q2 2009. This is dependent on the education project organizing material.<br />
# Create a training toolkit with pre-built presentation and training materials, assessments etc. / Q3 2009<br />
# Conduct train the trainer sessions (remote or in-person) / Q4 2009<br />
<br />
Benefits:<br />
The training kit and trained trainers will be available resources promoting OWASP in local events worldwide.<br />
<br />
== Create an online assessment and training portal ==<br />
Objective:<br />
Develop an OWASP assessment and training portal that end users can use to gauge their knowledge on OWASP concepts and training providers can use to promote their training offerings.<br />
<br />
Activities/Deadline:<br />
# Generate OWASP assessment items (can use the testing guide and other sources) / Q2-Q3 2009<br />
# Develop an assessment portal to deliver taking of assessments with robust reporting by knowledge area / Q4 2009<br />
# Develop a training portal to allow training providers to publish and promote their training offerings / Q4 2009<br />
This can be developed as a summer of code project but is not a requirement. <br />
<br />
Benefits:<br />
Assessments that can be offered in OWASP events and other conferences to users will increase OWASP awareness. The portal can become the link between trainers and trainees and will eventually help in increasing the awareness and knowledge of application security in the industry.<br />
<br />
== OWASP Boot Camp Project ==<br />
OWASP Boot Camp about the OWASP projects, to deliver a Boot Camp presentation should be one of the criteria to get an alpha status as project <br />
== OWASP CTF event ==<br />
== Speakers Bureau Project ==<br />
List of speakers, Name, Bio, Topics, History <br />
Speakers in conferences (OOTM ask for funds on this)/summit<br />
<br />
Speakers Agreement - https://www.owasp.org/index.php/Speaker_Agreement<br />
<br />
== Marketing efforts ==<br />
== Internationalization of the training materials ==<br />
== Education material ==<br />
Flyers or Brochures of OWASP Top 10, Testing Guide.<br />
<br />
== Academic Educational Services ==<br />
Objectives<br><br />
Promote and encourage OWASP resources at accredited Universities around the world within the next 12 months by introducing OWASP training and education material at University's events.<br />
<br />
Activities/Deadline:<br />
<br />
* Build a list of at least 5 Universities with computer science or risk management programs that can be targeted /Q1 2009 <br />
* Establish communication with targeted universities, generate key contacts and establish relationships /Q1 - Q4 2009<br />
* Develop a list of possible academic events in which to participate /Q1 - Q2 2009 <br />
* Participate in at least 1 Academic event, present case studies or OWASP education materials /Q1 - Q4<br />
<br />
Benefits<br><br />
OWASP will gain exposure in the academic industry, starting with accredited universities around the world. Universities will become members of OWASP, provide meeting space, students will apply to OWASP grants, and provide support and structure</div>Cybermalandro