This site is the archived OWASP Foundation Wiki and is no longer accepting Account Requests.
To view the new OWASP Foundation website, please visit https://owasp.org

Difference between revisions of "OWASP Project Manager Activity Reports/June 10 2013"

From OWASP
Jump to: navigation, search
 
(8 intermediate revisions by the same user not shown)
Line 1: Line 1:
== OWASP Project Manager Report ==
+
== OWASP Projects Manager Report ==
 
==== Work accomplished since May 13, 2013 ====
 
==== Work accomplished since May 13, 2013 ====
  
Line 7: Line 7:
  
 
*'''New Incubator Projects'''
 
*'''New Incubator Projects'''
**[https://www.owasp.org/index.php/OWASP_iMAS_iOS_Mobile_Application_Security_Project OWASP iMAS - iOS Mobile Application Security Project]
+
**[https://www.owasp.org/index.php/OWASP_WS_Amplification_DoS_Project OWASP WS-Amplification DoS Project]
**[https://www.owasp.org/index.php/OWASP_Scytale_Project OWASP Scytale Project]
+
**[https://www.owasp.org/index.php/OWASP_Mutillidae_2_Project OWASP Mutillidae 2 Project]
 +
**[https://www.owasp.org/index.php/OWASP_Skanda_SSRF_Exploitation_Framework OWASP Skanda - SSRF Exploitation Framework]
 +
**[https://www.owasp.org/index.php/OWASP_RBAC_Project OWASP RBAC Project]
 +
**[https://www.owasp.org/index.php/OWASP_PHP_Security_Project OWASP PHP Security Project]  
  
 
*'''[https://docs.google.com/a/owasp.org/spreadsheet/ccc?key=0Amvv_7Gz8Z7TdHZfWGhHZ0Z4UFFwZU42djBXcVVLSlE#gid=0 Project Applications]'''
 
*'''[https://docs.google.com/a/owasp.org/spreadsheet/ccc?key=0Amvv_7Gz8Z7TdHZfWGhHZ0Z4UFFwZU42djBXcVVLSlE#gid=0 Project Applications]'''
Line 17: Line 20:
 
**Chat Application
 
**Chat Application
 
**Supporting Legacy Web Applications in the Current Environment
 
**Supporting Legacy Web Applications in the Current Environment
 +
**SeraphimDroid
  
 
*'''Projects Under Review'''
 
*'''Projects Under Review'''
Line 35: Line 39:
 
**Oversight of Marketing and Graphic Design deliverables (Phase 3) provided by 3rd party contractor
 
**Oversight of Marketing and Graphic Design deliverables (Phase 3) provided by 3rd party contractor
  
==Currently Working On==
+
==Currently Working On==  
*'''Grant Opportunities Recap & Updates'''
+
**Guidebooks Proposal: The first payment has been allocated to our project budgets.
+
*'''OWASP Projects at AppSec Conferences 2013'''
**Amount: $25,000
+
**Planning continues for the project event modules for AppSec USA 2013.  
**ESAPI Proposal: This proposal is still under review.
+
**I continue to work with our project summit participating leaders to work out costs and logistics for their attendance.
**Amount: $25,000
+
**I am in the process of putting together our project leader workshop materials.  
**Google Grants: We now have a better idea of the initiatives and tasks we must undertake to better leverage this award. We will discuss possible solutions during our Mid-Term (6-12 month) marketing planning.  
+
**The workshop will be a 45 - 50 minute interactive presentation for current and potential OWASP Project Leaders.  
**Amount: $120,000 a year in Google Adwords Money
+
**It will take place at the AppSec USA 2013 conference in New York.
**ModSecurity Proposal: This proposal is still under review.  
+
**I will continue to provide support to the local event planning team for AppSec EU, as needed.  
**Amount: $30,000
 
**LSEC Web Attack Grant Opportunity
 
**Amount: €250,000
 
**Status: This proposal is currently being put together by a grant partner. We are still in the process of writing the proposal to the board and working out logistics.  
 
  
*'''Total Grant Funds Awarded: $145,000 for 2013 so far.'''   
+
*'''Women in Security: AppSec USA 2013'''
+
**The team has finished a first draft of the Sponsorship Document.  
*'''OWASP Projects at AppSec USA & EU'''
+
**The plan is to reach out to different organizations for sponsorship.  
**I received the go-ahead to start planning the project event modules for AppSec USA.
+
**You can find more information on the [http://appsecusa.org/2013/activities/owasp-women-in-application-security-appsec-program/ AppSec USA website].  
**The local event planning team decided to have the Project Leader Workshop and the OWASP Projects Summit.
+
**We are currently attempting to raise $3,000.00 for each winner.
**The Project Leader Workshop is a three hour event module that brings together current and potential OWASP project leaders to discuss project related issues and topics.
+
**We plan on having 2 winners for 2013.
**The OWASP Project Summit is a smaller version of the much larger OWASP Summits. This event module gives our project leaders the opportunity to showcase their project progress, and have attendees sit down and work on project tasks during the event.  
+
**The total amount we are requesting is $6,000.00 to cover conference fee, training fee, travel and accommodation for both winners.  
**I will start preparations for these two modules next week.  
+
**We are working hard to make this a possibility for our 2 potential winners.  
**The AppSec EU project modules are still under discussion.
 
**I will reach out to Dirk on May 17th, 2013 to discuss his decision.  
 
  
*'''Determining Active Project Status'''
+
*'''[https://docs.google.com/spreadsheet/ccc?key=0AllOCxlYdf1AdEdCYVJpdmZHaWJYZ055WHROa19qN3c&usp=sharing Determining Active Project Status]'''
 
**This is a status update on this initiative.
 
**This is a status update on this initiative.
**I am reaching out to each leader individually to confirm these pieces of data for all 149 projects.  
+
**I am reaching out to each leader individually to confirm these pieces of data for all 154 projects.  
 
**Flagship projects are completed.
 
**Flagship projects are completed.
**Labs are in the second phase of outreach and confirmation.  
+
**Labs are completed.  
**Outreach and confirmation for Incubator projects are scheduled to start on Monday, May 19th.  
+
**Incubator projects are now in the 3rd phase of 4 phases.  
  
 
*'''European Commission Grant Opportunity: Proposal Status'''
 
*'''European Commission Grant Opportunity: Proposal Status'''
**Seba and I have been working on an European Commission grant opportunity.
+
**Seba and I have finished our work on the OWASP section of the European Commission grant proposal.  
**The grant opportunity has the potential to help a hand full of projects with resources and funds.  
+
**The grant opportunity has the potential to help a hand full of OWASP projects with resources and funds.  
**Seba and I are putting together a proposal for the board of directors.
+
**Seba and I presented our internal proposal to proceed to the Board of Directors and it was approved.
**We would like to move forward with this initiative, but require board approval before we can commit.  
+
**The proposal has now been submitted to the European Commission.
**We will present our formal proposal to the board before our meeting next week.  
+
**We expect to hear back from the EU Commission with a decision towards the end of 2013.
 +
 
 +
*'''Technical Project Advisory Roles'''
 +
**I am currently on the 1st stage of the interview process for each candidate.
 +
**I created job descriptions for each role, and those roles were posted for over a month.
 +
**We had a good amount of candidates apply for each role.
 +
**I have sent out e-mails asking each candidate to answer 3 questions regarding their interest in these roles.
 +
**I will reach out to those individuals that responded to my request by this week.
 +
 
 +
*'''Marketing Phase 3 Update'''
 +
**The marketing deliverables are going smoothly.
 +
**There is quite a bit of work to be done during this phase as this is where the back and forth approval process takes place.
 +
**The Ops Team is diligently working on this phase with Sisterworks Publishing and Design Foundry. 
 +
**At the moment, we are working on finalizing the copy for several pieces of collateral that are scheduled to be designed.
 +
**[https://www.owasp.org/images/7/7c/OWASP_Background-Research_Phase1_Final_%281%29.pdf Phase 1 Deliverable]
 +
**[https://www.owasp.org/images/c/c5/OWASP_Recommendations-Presentation2-April24.pdf Phase 2 Deliverable]
 +
***Note: Phase 2 Deliverable has recommendations made by Sisterworks and Design Foundry based on their research.
 +
***We are not necessarily moving forward with these recommendations towards implementation.
 +
***Sisterworks and Design Foundry are helping with our brand consistency and collateral design.
 +
 
 +
*'''Strategic Goals Presentation'''
 +
**Ludovic petit has requested that we put together a presentation that the community can use to communicate our 2013 Strategic Goals.
 +
**Sarah and I have put together a first draft of the deck. 
 +
**We plan to add to it over the coming weeks to make certain we encompass the thinking behind each goals for this year.
 +
**[https://www.owasp.org/images/1/13/OWASP_2013_Strategic_Goals.pdf 2013 Strategic Goals draft]
 +
 
 +
*'''Personal Development'''
 +
**I am currently reading ''Board Member Orientation: The Concise and Complete Guide to Non-Profit Board Service'' by Michael E. Batts.
 +
**I am still taking my online course from Coursera.
 +
**The course topic is Information Security and Risk Management in Context.
 +
**I am currently in week 6 of the course.
 +
**Additionally, I am going to take a week long course in late June in the UK.
 +
**The course topic is Intellectual Property Strategy.
 +
**I will write a report on my learnings for the community after the course ends. 
 +
 
 +
==Grants Updates==
 +
*'''[https://docs.google.com/document/d/1MA3TI5ssclxvheV8At_ffu2Fuic55SDpOokS3AOvBUc/edit?usp=sharing OWASP Guidebooks Proposal]'''
 +
# Amount: $25,000 USD
 +
# Status: The first payment has been allocated to our project budgets. 
 +
# [https://www.owasp.org/images/1/18/Development_Guide_Project_Gantt.pdf OWASP Development Guide Plan]
 +
# [https://www.owasp.org/images/e/e9/Testing_Guide_Project_Gantt.pdf OWASP Testing Guide Plan]
 +
# [https://www.owasp.org/images/d/da/Code_Review_Project_Gantt.pdf OWASP Code Review Guide Plan] 
 +
 
 +
*'''[https://docs.google.com/document/d/16ZFXaML8C7aDAZdyTMDDg4BzLr1vUTOz9eqmYE8ZW8U/edit?usp=sharing OWASP ESAPI Grant Proposal]'''
 +
# Amount: $25,000 USD
 +
# Status: The ESAPI proposal is still being reviewed.  
  
*'''Technical Project Advisors: Status Update on Recruitment'''
+
*'''[https://docs.google.com/document/d/1dBTaRr-yl8wGhGKxacWACznZhCZnJ_sZeAdN-b2xPlw/edit?usp=sharing OWASP ModSecurity CRS Proposal]'''
**I continue to recruit for the Technical Project Advisor volunteer roles.
+
#Amount: $30,000 USD
**My goal is to start interviewing for the six positions by the end of May.
+
#Status: The ModSecurity proposal is still being reviewed.
**I will continue to reach out to the community for applicants and to determine interest.
 
**The advisors will be responsible for developing project review criteria, and for the project reviews process.  
 
  
*'''Project Leader Responsibilities & Expectations'''
+
*'''Google Grants Proposal'''
**I have finished putting together documentation that outlines a project leader's responsibilities, and our foundation's expectations of them.
+
#Amount: $120,000 USD  in Adwords Funds
**This document was written to help project leaders understand their responsibilities as managers of their project(s).  
+
#Status: We will discuss possible solutions during our Mid-Term (6-12 month) marketing planning.  
**This is an ongoing project, and will not be complete until feedback is received from the board and the community.  
+
#Note: There is no link to show the proposal for this grant. There was a form that was submitted to Google, and we did not receive a record of this form.  
  
*'''Project Leader Cheat Sheet'''
+
*'''European Commission Grant Proposal'''
**I have finished a first draft of the Project Leader Cheat Sheet.
+
#Amount: €250,000
**I hope this document will help project leaders understand how to best leverage the OWASP Project Infrastructure for success.
+
#Status: This proposal has been completed and submitted.  
**This is an ongoing project, and will not be complete until feedback is received from the board and the community.
 
**[https://www.owasp.org/index.php/Projects/Project_Leader_Cheat_Sheet Project Leader Cheat Sheet draft]
 
  
*'''OWASP Marketing'''
+
*'''Total Grant Funds Awarded: $145,000 USD for 2013.'''
**The third phase of our Marketing plan is underway.
 
**During the staff summit, Kate, Kelly, Sarah, Alison, and I had a long discussion about the deliverables expected in phase 3. 
 
**We have given the marketing and design company very clear guidelines and expectations of what our requirements as an organization are for this phase.
 
**We are now waiting for the first drafts of their deliverables. 
 
  
==Important OWASP Projects Outcomes and Discussion Points==
+
==OWASP Projects Manager Weekly Reports==
#[https://www.owasp.org/index.php/GPC/Meetings/2013-12-04 Project Manager Report: April 12 2013]
+
#[https://www.owasp.org/index.php/Projects/Reports/2013-10-05 Project Manager Report: May 10 2013]
#[https://www.owasp.org/index.php/GPC/Meetings/2013-19-04 Project Manager Report: April 19 2013]
+
#[https://www.owasp.org/index.php/Projects/Reports/2013-17-05 Project Manager Report: May 17 2013]
#[https://www.owasp.org/index.php/Projects/Reports/2013-26-04 Project Manager Report: April 26 2013]
+
#[https://www.owasp.org/index.php/Projects/Reports/2013-24-05 Project Manager Report: May 24 2013]
#[https://www.owasp.org/index.php/Projects/Reports/2013-03-05  Project Manager Report: May 03 2013]
+
#[https://www.owasp.org/index.php/Projects/Reports/2013-31-05  Project Manager Report: May 31 2013]

Latest revision as of 02:13, 4 June 2013

OWASP Projects Manager Report

Work accomplished since May 13, 2013

  • Project Numbers
    • Active Projects: 154
    • Inactive Projects: 67
  • Project Applications
    • VCR Project
    • Windows Binary Executable Files Security Checks
    • Wordpress Security Checklist
    • Simple Host Base Incidence Detection System
    • Chat Application
    • Supporting Legacy Web Applications in the Current Environment
    • SeraphimDroid

Project Manager Q2 2013 Objectives

  1. Identify and target 5-7 specific grants to pursue for 2013.
  2. Develop Brand Usage Guidelines for Projects.
  3. Need for consistent documentation of guidelines (similar to How To Host a Conference) that can apply to various events and venues.
  4. Volunteer Management - identification of skills and supervision required to engage volunteers productively.
  • Ongoing Objectives for 2013
    • Work with Project leaders to reach grant required milestones - ONGOING
    • Develop a project charter outlining appropriate grant revenue spending and grant required milestones. - DUE IN SEPTEMBER - ONGOING
    • Oversight of Marketing and Graphic Design deliverables (Phase 3) provided by 3rd party contractor

Currently Working On

  • OWASP Projects at AppSec Conferences 2013
    • Planning continues for the project event modules for AppSec USA 2013.
    • I continue to work with our project summit participating leaders to work out costs and logistics for their attendance.
    • I am in the process of putting together our project leader workshop materials.
    • The workshop will be a 45 - 50 minute interactive presentation for current and potential OWASP Project Leaders.
    • It will take place at the AppSec USA 2013 conference in New York.
    • I will continue to provide support to the local event planning team for AppSec EU, as needed.
  • Women in Security: AppSec USA 2013
    • The team has finished a first draft of the Sponsorship Document.
    • The plan is to reach out to different organizations for sponsorship.
    • You can find more information on the AppSec USA website.
    • We are currently attempting to raise $3,000.00 for each winner.
    • We plan on having 2 winners for 2013.
    • The total amount we are requesting is $6,000.00 to cover conference fee, training fee, travel and accommodation for both winners.
    • We are working hard to make this a possibility for our 2 potential winners.
  • Determining Active Project Status
    • This is a status update on this initiative.
    • I am reaching out to each leader individually to confirm these pieces of data for all 154 projects.
    • Flagship projects are completed.
    • Labs are completed.
    • Incubator projects are now in the 3rd phase of 4 phases.
  • European Commission Grant Opportunity: Proposal Status
    • Seba and I have finished our work on the OWASP section of the European Commission grant proposal.
    • The grant opportunity has the potential to help a hand full of OWASP projects with resources and funds.
    • Seba and I presented our internal proposal to proceed to the Board of Directors and it was approved.
    • The proposal has now been submitted to the European Commission.
    • We expect to hear back from the EU Commission with a decision towards the end of 2013.
  • Technical Project Advisory Roles
    • I am currently on the 1st stage of the interview process for each candidate.
    • I created job descriptions for each role, and those roles were posted for over a month.
    • We had a good amount of candidates apply for each role.
    • I have sent out e-mails asking each candidate to answer 3 questions regarding their interest in these roles.
    • I will reach out to those individuals that responded to my request by this week.
  • Marketing Phase 3 Update
    • The marketing deliverables are going smoothly.
    • There is quite a bit of work to be done during this phase as this is where the back and forth approval process takes place.
    • The Ops Team is diligently working on this phase with Sisterworks Publishing and Design Foundry.
    • At the moment, we are working on finalizing the copy for several pieces of collateral that are scheduled to be designed.
    • Phase 1 Deliverable
    • Phase 2 Deliverable
      • Note: Phase 2 Deliverable has recommendations made by Sisterworks and Design Foundry based on their research.
      • We are not necessarily moving forward with these recommendations towards implementation.
      • Sisterworks and Design Foundry are helping with our brand consistency and collateral design.
  • Strategic Goals Presentation
    • Ludovic petit has requested that we put together a presentation that the community can use to communicate our 2013 Strategic Goals.
    • Sarah and I have put together a first draft of the deck.
    • We plan to add to it over the coming weeks to make certain we encompass the thinking behind each goals for this year.
    • 2013 Strategic Goals draft
  • Personal Development
    • I am currently reading Board Member Orientation: The Concise and Complete Guide to Non-Profit Board Service by Michael E. Batts.
    • I am still taking my online course from Coursera.
    • The course topic is Information Security and Risk Management in Context.
    • I am currently in week 6 of the course.
    • Additionally, I am going to take a week long course in late June in the UK.
    • The course topic is Intellectual Property Strategy.
    • I will write a report on my learnings for the community after the course ends.

Grants Updates

  1. Amount: $25,000 USD
  2. Status: The first payment has been allocated to our project budgets.
  3. OWASP Development Guide Plan
  4. OWASP Testing Guide Plan
  5. OWASP Code Review Guide Plan
  1. Amount: $25,000 USD
  2. Status: The ESAPI proposal is still being reviewed.
  1. Amount: $30,000 USD
  2. Status: The ModSecurity proposal is still being reviewed.
  • Google Grants Proposal
  1. Amount: $120,000 USD in Adwords Funds
  2. Status: We will discuss possible solutions during our Mid-Term (6-12 month) marketing planning.
  3. Note: There is no link to show the proposal for this grant. There was a form that was submitted to Google, and we did not receive a record of this form.
  • European Commission Grant Proposal
  1. Amount: €250,000
  2. Status: This proposal has been completed and submitted.
  • Total Grant Funds Awarded: $145,000 USD for 2013.

OWASP Projects Manager Weekly Reports

  1. Project Manager Report: May 10 2013
  2. Project Manager Report: May 17 2013
  3. Project Manager Report: May 24 2013
  4. Project Manager Report: May 31 2013
Retrieved from "https://wiki.owasp.org/index.php?title=OWASP_Project_Manager_Activity_Reports/June_10_2013&oldid=152794"