This site is the archived OWASP Foundation Wiki and is no longer accepting Account Requests.
To view the new OWASP Foundation website, please visit https://owasp.org

Difference between revisions of "OWASP Project Manager Activity Reports/January 14 2013"

From OWASP
Jump to: navigation, search
 
(7 intermediate revisions by the same user not shown)
Line 6: Line 6:
 
**Inactive Projects: 67
 
**Inactive Projects: 67
  
*New Incubator Projects
+
*'''New Incubator Projects'''
 
**[https://www.owasp.org/index.php/OWASP_Crowdtesting OWASP Crowdtesting]
 
**[https://www.owasp.org/index.php/OWASP_Crowdtesting OWASP Crowdtesting]
 
**[https://www.owasp.org/index.php/OWASP_Focus OWASP Focus]
 
**[https://www.owasp.org/index.php/OWASP_Focus OWASP Focus]
 +
**[https://www.owasp.org/index.php/O-Saft O-Saft]
 +
**[https://www.owasp.org/index.php/OWASP_Application_Security_Guide_For_CISOs_Project OWASP Application Security Guide For CISOs]
 +
**[https://www.owasp.org/index.php/OWASP_CISO_Survey OWASP CISO Survey]
  
*Projects Under Review
+
*'''Projects Under Review'''
 
**[https://www.owasp.org/index.php/Cheat_Sheets OWASP Cheat Sheets Project]
 
**[https://www.owasp.org/index.php/Cheat_Sheets OWASP Cheat Sheets Project]
 
**[https://www.owasp.org/index.php/OWASP_Java_HTML_Sanitizer_Project OWASP Java HTML Sanitizer Project]
 
**[https://www.owasp.org/index.php/OWASP_Java_HTML_Sanitizer_Project OWASP Java HTML Sanitizer Project]
  
 
+
==Project Manager Q1 2013 Objectives==
==Project Manager Q4 Objectives==
+
#Continue grant funding research: Target $150 K in 2013.
#Identify and initiate 3 grant opportunities.
+
#Finalize and Implement New Project Infrastructure processes.
#Complete metadata for Salesforce import related to projects.
+
#Coordinate OSS and OWASP Track documentation, guidelines, and processes as they apply to Global AppSec Conferences. (Ongoing for 2013)
#Finalize and launch the Project database communication tool and webpage.
+
#Increase Sales Force use for project management.
#Complete the project lifecycle redesign.  
+
#Complete and Launch Projects page.
#Complete Version 2013 of the Project Handbook.
+
#Finalize the Project Leader Handbook.  
  
 
==Currently Working On==
 
==Currently Working On==
 
*'''Grant Opportunities Recap & Updates'''
 
*'''Grant Opportunities Recap & Updates'''
**Guidebooks Proposal: We are in the process of submitting DHS required tax paperwork so we can receive payment.
+
**Guidebooks Proposal: We are in the process of invoicing for this grant award. We will be given the funds in 3 installments over the course of the project.  
 
**Amount: $25,000
 
**Amount: $25,000
**ESAPI Proposal: This proposal has been submitted, and we are waiting to hear back from the DHS.
+
**ESAPI Proposal: Deb, our DHS representative, has let me know that this proposal is still under review.  
 
**Amount: $25,000
 
**Amount: $25,000
**Google Grants: This proposal has been submitted. We should hear back from Google in January 2013.  
+
**Google Grants: We have been accepted into the Google Grants scheme. I am waiting to hear back from the Google for Non-Profits team for confirmation of the award.
 
**Amount: $120,000 a year in Google Adwords Money
 
**Amount: $120,000 a year in Google Adwords Money
**ModSecurity Proposal: I've already started the process for the OWASP ModSecurity Proposal. Ryan and I are currently working towards developing a plan for the project.  
+
**ModSecurity Proposal: Ryan and I are working together to develop the first draft of the proposal.
  
*'''Salesforce Metadata Migration'''
+
*'''AppSec APAC 2013: Planning'''
**The Salesforce metadata migration is now complete.
+
**We have now selected our two OPT speakers.
**All project data is up-to-date based on the GPCs project inventory spreadsheet.  
+
**Dennis Groves: OWASP AppSensor the future of Application Security.
**I am currently working with Kate to develop a form in Salesforce that will help us ask active project leaders to update their information directly through the form.
+
**Jim Manico: Using ESAPI for Java to Build Secure Web Applications.
 +
**They are both registered, and have their travel arrangements sorted.  
  
*'''[https://docs.google.com/a/owasp.org/document/d/15lPNSxokO5ogGxWo-xvLNYh0C3c8-nWjgWnRfTfm0OU/edit Project Processes & Lifecycle Development]'''
+
*'''New Project Web Page'''
**Process form development: Completed via Salesforce forms.
+
**The new [https://www.owasp.org/index.php/Test2test Project Page] design is now complete.
**Project Stage Benefits: Proposal completed and in the process of being discussed.  
+
**Please review the page, and note down any comments, changes, etc.  
**Project Graduation Process: Proposal completed and in the process of being reviewed.  
+
**I have received great feedback from the OWASP Board. Thank you.
**Project Graduation Criteria: Still in development.  
+
**I will send this out to the Leader's List today after our call.  
**Project Migration Process: Still in development.  
 
  
*'''SourceForge Update'''
+
*'''[https://docs.google.com/a/owasp.org/document/d/1MpZx5w4TaqS-FoQaEXDhncz6dhG4mdgC4id2HsJQhjc/edit Projects Handbook 2013]'''
**Audrey from Geeknet has responded to our proposal.
+
**The Projects Handbook is almost complete.  
**The Geeknet team has decided not to accept any of our options, see below:
+
**Please review when you get the opportunity, and provide feedback on the last draft.  
**Option 1: OWASP would like to propose that Geeknet waive either all or a percentage of the invoice fee, and redistribute the funds as a donation to the OWASP Foundation.
+
**I plan to make this live with the Projects Page.
**Option 2: OWASP would like to propose a 1 year corporate membership, and a 6 month online rotating banner advertisement in exchange for $10,000 being deduction from the Invoice in question. Total value: $17,500 in OWASP Services.
 
**However, they did deduct $2500 from the original invoice: [https://mail-attachment.googleusercontent.com/attachment/u/0/?ui=2&ik=715b9008a7&view=att&th=13b624ca0e11b42e&attid=0.1&disp=inline&realattid=f_haa0cl6l0&safe=1&zw&saduie=AG9B_P8vApHtvIv6pHWL4NMT_NLk&sadet=1354903098927&sads=76Uv12K1F9dzP-Sn5_RIxBnhYOo Update Geeknet Invoice.]
 
**We have agreed to accept this new proposal, and we are currently processing their payment.
 
  
*'''AppSec APAC 2013: Planning'''
+
*'''[https://fosdem.org/2013/ FOSDEM]'''
**OSS & OPT forms are up.
+
**Simon Bennetts is presenting ZAP.
**I developed banners for each event: [https://www.owasp.org/index.php/Category:OWASP_Project Projects Page].  
+
**We have been successful with our stand application.
**I launched individual communication pieces this morning announcing the "call for entries": LinkedIn, Blog, Twitter.
+
**Seba and Martin Knobloch will be helping coordinate the OWASP stand.
**I am attending the conference to help coordinate the event, and I am leading the Chapter Leader Workshop with the help of a translator.  
+
**Event: February 2nd & 3rd, Brussels, Belgium.  
 +
**We are working together to get OWASP branded material for the event.  
  
 
==Important GPC Meeting Outcomes and Discussion Points==
 
==Important GPC Meeting Outcomes and Discussion Points==
#[https://www.owasp.org/index.php/GPC/Meetings/2012-16-11 GPC Meeting: November 16 2012 Project Manager Report]
+
#[https://www.owasp.org/index.php/GPC/Meetings/2012-14-12 GPC Meeting: December 14 2012 Project Manager Report]
#[https://www.owasp.org/index.php/GPC/Meetings/2012-30-11 GPC Meeting: November 30 2012 Project Manager Report]
+
#[https://www.owasp.org/index.php/GPC/Meetings/2012-21-12 GPC Meeting: December 21 2012 Project Manager Report]
#[https://www.owasp.org/index.php/GPC/Meetings/2012-07-12 GPC Meeting: December 07 2012 Project Manager Report]
+
#[https://www.owasp.org/index.php/GPC/Meetings/2012-27-12 GPC Meeting: December 27 2012 Project Manager Report]
#The ModSecurity proposal grant writing is in progress.
+
#[https://www.owasp.org/index.php/GPC/Meetings/2013-04-01 GPC Meeting: January 04 2013 Project Manager Report]
#SourceForge: They have responded. They decided to decline both options proposed by OWASP, but they have deducted $2500 from the original bill. We are currently processing the new invoice.
+
#[https://www.owasp.org/index.php/GPC/Meetings/2013-11-01 GPC Meeting: January 11 2013 Project Manager Report]
#AppSec APAC 2013: Call for Entries for the Open Source Showcase & OWASP Projects Track were launched again. Justin, Sam ,and possibly Nishi and Keith will attend.
+
#Part-Time Project Support Volunteer Role for Guidebook Projects: The final applicants have been chosen. Cristhian Fabia: Testing Guide; Larry Conklin: Code Review Guide; Dulan Dhana: Development Guide.
#Part-Time Project Support Volunteer Role for Guidebook Projects: The final applicant count was 14 volunteers. I am currently processing the applications, and I will allocate roles come next week.
+
#I will not have any scheduled GPC meetings for the rest of January. These meetings will be replaced by the OWASP Initiatives Meetings.
#FOSDEM: The application for a stand was submitted this week. If we get the stand, Seba and Martin K. will manage it for OWASP.
+
#Keith suggested that we should try the initiatives meetings for the month of January, and then decide whether we wish to meet more regularly come February. I agree. This is the plan. Please make sure you join the Initiative Meetings for Projects related updates and news.
#Nishi: Will touch base with Matt Tesauro regarding the wiki file size requirement.
+
#Projects Handbook 2013- Please review when you get the opportunity, and provide feedback on the last draft. I plan to make this live with the Projects Page.
#Question for Justin: Have you spoken to James Greenberg from AppSec Labs? Have they come to a decision regarding their license choice, and whether they are choosing to continue as an OWASP Project?
+
#Keith suggested we develop a project requirement that will identify a project's maturity level both visually and within their documentation.  
#Question: Do we have criteria that measures whether a project is active or not?: Answer: The OpsTeam is working on creating an e-mail through Salesforce that will ask all current 'Active' project leaders to give us a status update. Additionally, it will give them an opportunity to update their information.
+
#I tasked myself with developing a template, visual branding, and review criteria to meet this need as I feel it is a very important distinction to make between our projects.
#Active Project Criteria: We discussed the idea of requiring project leaders to send us an update every six months, or annually. The aim is to make sure a project is still active.
 
#Project Update required information would be something along the lines of: Update the wiki with links and announcements, a summary of what you have accomplished, and a summary of your future plans.
 

Latest revision as of 15:41, 14 January 2013

OWASP Project Manager Report

Work accomplished since December 10, 2012

  • Project Numbers
    • Active Projects: 124
    • Inactive Projects: 67

Project Manager Q1 2013 Objectives

  1. Continue grant funding research: Target $150 K in 2013.
  2. Finalize and Implement New Project Infrastructure processes.
  3. Coordinate OSS and OWASP Track documentation, guidelines, and processes as they apply to Global AppSec Conferences. (Ongoing for 2013)
  4. Increase Sales Force use for project management.
  5. Complete and Launch Projects page.
  6. Finalize the Project Leader Handbook.

Currently Working On

  • Grant Opportunities Recap & Updates
    • Guidebooks Proposal: We are in the process of invoicing for this grant award. We will be given the funds in 3 installments over the course of the project.
    • Amount: $25,000
    • ESAPI Proposal: Deb, our DHS representative, has let me know that this proposal is still under review.
    • Amount: $25,000
    • Google Grants: We have been accepted into the Google Grants scheme. I am waiting to hear back from the Google for Non-Profits team for confirmation of the award.
    • Amount: $120,000 a year in Google Adwords Money
    • ModSecurity Proposal: Ryan and I are working together to develop the first draft of the proposal.
  • AppSec APAC 2013: Planning
    • We have now selected our two OPT speakers.
    • Dennis Groves: OWASP AppSensor the future of Application Security.
    • Jim Manico: Using ESAPI for Java to Build Secure Web Applications.
    • They are both registered, and have their travel arrangements sorted.
  • New Project Web Page
    • The new Project Page design is now complete.
    • Please review the page, and note down any comments, changes, etc.
    • I have received great feedback from the OWASP Board. Thank you.
    • I will send this out to the Leader's List today after our call.
  • Projects Handbook 2013
    • The Projects Handbook is almost complete.
    • Please review when you get the opportunity, and provide feedback on the last draft.
    • I plan to make this live with the Projects Page.
  • FOSDEM
    • Simon Bennetts is presenting ZAP.
    • We have been successful with our stand application.
    • Seba and Martin Knobloch will be helping coordinate the OWASP stand.
    • Event: February 2nd & 3rd, Brussels, Belgium.
    • We are working together to get OWASP branded material for the event.

Important GPC Meeting Outcomes and Discussion Points

  1. GPC Meeting: December 14 2012 Project Manager Report
  2. GPC Meeting: December 21 2012 Project Manager Report
  3. GPC Meeting: December 27 2012 Project Manager Report
  4. GPC Meeting: January 04 2013 Project Manager Report
  5. GPC Meeting: January 11 2013 Project Manager Report
  6. Part-Time Project Support Volunteer Role for Guidebook Projects: The final applicants have been chosen. Cristhian Fabia: Testing Guide; Larry Conklin: Code Review Guide; Dulan Dhana: Development Guide.
  7. I will not have any scheduled GPC meetings for the rest of January. These meetings will be replaced by the OWASP Initiatives Meetings.
  8. Keith suggested that we should try the initiatives meetings for the month of January, and then decide whether we wish to meet more regularly come February. I agree. This is the plan. Please make sure you join the Initiative Meetings for Projects related updates and news.
  9. Projects Handbook 2013- Please review when you get the opportunity, and provide feedback on the last draft. I plan to make this live with the Projects Page.
  10. Keith suggested we develop a project requirement that will identify a project's maturity level both visually and within their documentation.
  11. I tasked myself with developing a template, visual branding, and review criteria to meet this need as I feel it is a very important distinction to make between our projects.
Retrieved from "https://wiki.owasp.org/index.php?title=OWASP_Project_Manager_Activity_Reports/January_14_2013&oldid=142256"