https://wiki.owasp.org/api.php?action=feedcontributions&feedformat=atom&user=Joe+AguirreOWASP - User contributions [en]2026-05-02T16:06:40ZUser contributionsMediaWiki 1.27.2https://wiki.owasp.org/index.php?title=Chicago_Suburbs&diff=131581Chicago Suburbs2012-06-18T17:52:39Z<p>Joe Aguirre: </p>
<hr />
<div>{{Chapter Template|chaptername=Chicago Suburbs|extra=The chapter leaders are [mailto:sam.curcio@owasp.org Sam Curcio], [mailto:phillip.vandeman@owasp.org Phillip VanDeman], and [mailto:joseph.aguirre@owasp.org Joseph Aguirre].|mailinglistsite=http://lists.owasp.org/mailman/listinfo/owasp-chicago-suburbs|emailarchives=http://lists.owasp.org/pipermail/owasp-chicago-suburbs}}<br />
<br />
== Local News ==<br />
<br />
'''Officer's Meeting 6/19/2012'''<br />
<br />
We're working hard towards getting this Chapter off the ground. We'll update soon with details on our first meeting! Check us out on Twitter @OWASPChiBurbs <br />
<br />
'''Meeting Location'''<br />
<br />
Everyone is welcome to join us at our chapter meetings.<br />
<br />
[[Category:OWASP Chapter]]<br />
[[Category:Illinois]]</div>Joe Aguirrehttps://wiki.owasp.org/index.php?title=Category_talk:OWASP_RFP-Criteria&diff=82147Category talk:OWASP RFP-Criteria2010-04-21T20:44:57Z<p>Joe Aguirre: </p>
<hr />
<div>PURPOSE <br> List of questions/discussion points for the project.<br> <br />
<br />
Are these questions for use during the market survey or product evaluation steps of an acquisition? --[[User:Walter Houser|Walter Houser]] 20:00, 16 April 2010 (UTC) <br />
<br />
1. Describe the implementation process for your product/service - is software or hardware required? Vendor training? Consulting? Any additional personnel costs on customer side? How many personnel are needed? What are their skill sets and expereince levels. --[[User:Walter Houser|Walter Houser]] 20:16, 16 April 2010 (UTC) The time to implement is meaningful only in the context of the amount and quality of resources and their costs. <br />
<br />
2. Do you have a training and support program for your product or service? Is it required? If so, what is the typical amount of time and cost associated with training/education? --[[User:Walter Houser|Walter Houser]] 20:23, 16 April 2010 (UTC) The saleman will always answer yes to "Can you...?" questions. <br />
<br />
4. What is the most challenging element ...? Too softball a question. --[[User:Walter Houser|Walter Houser]] 20:08, 16 April 2010 (UTC) Ask instead <br />
<br />
4. What are the critical success factors for ... <br />
<br />
ADDITIONAL LINKS <br> <br />
<br />
#http://zeltser.com/security-assessments/security-assessment-rfp-cheat-sheet.html<br />
<br />
5. Does the product/service integrate with any IPS solutions(custom filters)? [[User:Joe Aguirre|Joe Aguirre]] 20:10, 19 April 2010 (UTC) <br />
<br> <br />
<br />
6. Related to question #11, asking how "all existing vulnerabilities" are discovered may need to be revisited. It may make more sense to ask how the product/solution increases its vulnerability identification rate relative to the competition. [[User:Joe Aguirre|Joe Aguirre]] 20:10, 19 April 2010 (UTC) <br />
<br> <br />
<br />
7. Some additional ideas that may be useful could be: options for user administration, supported federated identity management solutions, access control granularity, and scan scheduling. [[User:Joe Aguirre|Joe Aguirre]] 15:36, 20 April 2010 (UTC)<br />
<br><br />
<br />
8. Question #25 - Instead of listing the WASC categories, it would be cleaner to provide links to both the WASC and OWASP Top Ten lists. [[User:Joe Aguirre|Joe Aguirre]] 20:44, 21 April 2010 (UTC)<br />
<br></div>Joe Aguirrehttps://wiki.owasp.org/index.php?title=Category_talk:OWASP_RFP-Criteria&diff=81937Category talk:OWASP RFP-Criteria2010-04-20T15:36:48Z<p>Joe Aguirre: </p>
<hr />
<div>PURPOSE <br> List of questions/discussion points for the project.<br> <br />
<br />
Are these questions for use during the market survey or product evaluation steps of an acquisition? --[[User:Walter Houser|Walter Houser]] 20:00, 16 April 2010 (UTC) <br />
<br />
1. Describe the implementation process for your product/service - is software or hardware required? Vendor training? Consulting? Any additional personnel costs on customer side? How many personnel are needed? What are their skill sets and expereince levels. --[[User:Walter Houser|Walter Houser]] 20:16, 16 April 2010 (UTC) The time to implement is meaningful only in the context of the amount and quality of resources and their costs. <br />
<br />
2. Do you have a training and support program for your product or service? Is it required? If so, what is the typical amount of time and cost associated with training/education? --[[User:Walter Houser|Walter Houser]] 20:23, 16 April 2010 (UTC) The saleman will always answer yes to "Can you...?" questions. <br />
<br />
4. What is the most challenging element ...? Too softball a question. --[[User:Walter Houser|Walter Houser]] 20:08, 16 April 2010 (UTC) Ask instead <br />
<br />
4. What are the critical success factors for ... <br />
<br />
ADDITIONAL LINKS <br> <br />
<br />
#http://zeltser.com/security-assessments/security-assessment-rfp-cheat-sheet.html<br />
<br />
5. Does the product/service integrate with any IPS solutions(custom filters)? [[User:Joe Aguirre|Joe Aguirre]] 20:10, 19 April 2010 (UTC) <br />
<br> <br />
<br />
6. Related to question #11, asking how "all existing vulnerabilities" are discovered may need to be revisited. It may make more sense to ask how the product/solution increases its vulnerability identification rate relative to the competition. [[User:Joe Aguirre|Joe Aguirre]] 20:10, 19 April 2010 (UTC) <br />
<br> <br />
<br />
7. Some additional ideas that may be useful could be: options for user administration, supported federated identity management solutions, access control granularity, and scan scheduling. [[User:Joe Aguirre|Joe Aguirre]] 15:36, 20 April 2010 (UTC)<br />
<br></div>Joe Aguirrehttps://wiki.owasp.org/index.php?title=Category_talk:OWASP_RFP-Criteria&diff=81804Category talk:OWASP RFP-Criteria2010-04-19T20:10:34Z<p>Joe Aguirre: </p>
<hr />
<div>PURPOSE <br /><br />
List of questions/discussion points for the project.<br><br />
<br />
Are these questions for use during the market survey or product evaluation steps of an acquisition? --[[User:Walter Houser|Walter Houser]] 20:00, 16 April 2010 (UTC)<br />
<br />
1. Describe the implementation process for your product/service - is software or hardware required? Vendor training? Consulting? Any additional personnel costs on customer side? How many personnel are needed? What are their skill sets and expereince levels. --[[User:Walter Houser|Walter Houser]] 20:16, 16 April 2010 (UTC) The time to implement is meaningful only in the context of the amount and quality of resources and their costs. <br />
<br />
2. Do you have a training and support program for your product or service? Is it required? If so, what is the typical amount of time and cost associated with training/education? --[[User:Walter Houser|Walter Houser]] 20:23, 16 April 2010 (UTC) The saleman will always answer yes to "Can you...?" questions. <br />
<br />
4. What is the most challenging element ...? Too softball a question. --[[User:Walter Houser|Walter Houser]] 20:08, 16 April 2010 (UTC) Ask instead <br />
<br />
4. What are the critical success factors for ...<br />
<br />
ADDITIONAL LINKS <br /><br />
<li />http://zeltser.com/security-assessments/security-assessment-rfp-cheat-sheet.html<br />
<br />
<br> <br />
<br><br />
5. Does the product/service integrate with any IPS solutions(custom filters)? [[User:Joe Aguirre|Joe Aguirre]] 20:10, 19 April 2010 (UTC)<br />
<br><br />
<br><br />
6. Related to question #11, asking how "all existing vulnerabilities" are discovered may need to be revisited. It may make more sense to ask how the product/solution increases its vulnerability identification rate relative to the competition. [[User:Joe Aguirre|Joe Aguirre]] 20:10, 19 April 2010 (UTC)</div>Joe Aguirre