This site is the archived OWASP Foundation Wiki and is no longer accepting Account Requests.
To view the new OWASP Foundation website, please visit https://owasp.org

Difference between revisions of "OWASP Project Manager Activity Reports/August 06 2013"

From OWASP
Jump to: navigation, search
(Created page with "== OWASP Projects Manager Report == ==== Work accomplished since July 08, 2013 ==== *'''[https://docs.google.com/spreadsheet/ccc?key=0AllOCxlYdf1AdHBGbDhXQko4akJoVnMtMUpvZnJu...")
 
 
(8 intermediate revisions by the same user not shown)
Line 3: Line 3:
  
 
*'''[https://docs.google.com/spreadsheet/ccc?key=0AllOCxlYdf1AdHBGbDhXQko4akJoVnMtMUpvZnJucVE&usp=sharing Project Numbers]'''
 
*'''[https://docs.google.com/spreadsheet/ccc?key=0AllOCxlYdf1AdHBGbDhXQko4akJoVnMtMUpvZnJucVE&usp=sharing Project Numbers]'''
**Active Projects: 161
+
**Active Projects: 168
 
**Inactive Projects: 67
 
**Inactive Projects: 67
  
 
*'''New OWASP Projects'''
 
*'''New OWASP Projects'''
**[https://www.owasp.org/index.php/OWASP_Windows_Binary_Executable_Files_Security_Checks_Project OWASP Windows Binary Executable Files Security Checks Project]
+
**[https://www.owasp.org/index.php/OWASP_WebSandBox_Project OWASP WebSandBox Project]
**[https://www.owasp.org/index.php/OWASP_Wordpress_Security_Checklist_Project OWASP Wordpress Security Checklist Project]
+
**[https://www.owasp.org/index.php/OWASP_HA_Vulnerability_Scanner_Project OWASP HA Vulnerability Scanner Project]
**[https://www.owasp.org/index.php/Simple_Host_Base_Incidence_Detection_System OWASP Simple Host Base Incidence Detection System Project]
+
**[https://www.owasp.org/index.php/OWASP_Dependency_Track_Project OWASP Dependency Track Project]
**[https://www.owasp.org/index.php/OWASP_Supporting_Legacy_Web_Applications_in_the_Current_Environment_Project OWASP Supporting Legacy Web Applications in the Current Environment Project]
+
**[https://www.owasp.org/index.php/OWASP_Security_Principles_Project OWASP Security Principles Project]
**[https://www.owasp.org/index.php/OWASP_SeraphimDroid_Project OWASP SeraphimDroid Project]
 
**[https://www.owasp.org/index.php/OWASP_Unmaskme_Project OWASP Unmaskme Project]
 
  
 
*'''[https://docs.google.com/spreadsheet/ccc?key=0Amvv_7Gz8Z7TdHZfWGhHZ0Z4UFFwZU42djBXcVVLSlE&usp=sharing Project Applications]'''
 
*'''[https://docs.google.com/spreadsheet/ccc?key=0Amvv_7Gz8Z7TdHZfWGhHZ0Z4UFFwZU42djBXcVVLSlE&usp=sharing Project Applications]'''
**File Format Validation
+
**SecLists Project
**Androïck
 
**SafeNuGet
 
  
 
*'''Projects Under Review'''
 
*'''Projects Under Review'''
Line 24: Line 20:
 
**[https://www.owasp.org/index.php/OWASP_Xenotix_XSS_Exploit_Framework Xenotix XSS Exploit Framework]
 
**[https://www.owasp.org/index.php/OWASP_Xenotix_XSS_Exploit_Framework Xenotix XSS Exploit Framework]
 
**[https://www.owasp.org/index.php/OWASP_Cornucopia OWASP Cornucopia Project]
 
**[https://www.owasp.org/index.php/OWASP_Cornucopia OWASP Cornucopia Project]
**Project reviews are on hold until we can fill the [https://www.owasp.org/index.php/Projects/Reviews_Management_Proposal_2013 Technical Project Advisor] [http://owasp.force.com/volunteers/GW_Volunteers__VolunteersJobListing?campaignid=701U0000000AUtE volunteer roles].  
+
**[https://www.owasp.org/index.php/OWASP_Java_Encoder_Project OWASP Java Encoder Project]
 +
**Project reviews are on hold until new assessment criteria is developed.  
  
==Project Manager Q2 2013 Objectives==
+
==Project Manager Q3 2013 Objectives==
#Identify and target 5-7 specific grants to pursue for 2013.
+
#Marketing: Work with Sarah to solicit feedback from community on Marketing deliverables and finalize relationship with Patrick and Denita.
#Develop Brand Usage Guidelines for Projects.
+
#Project Review Process - Work with new Technical Project advisors to finalize project review criteria and process.
#Need for consistent documentation of guidelines (similar to How To Host a Conference) that can apply to various events and venues.
+
#Grants: Develop a grant strategy for rest of 2013 and 2014, utilizing fundraising intern(s) as part of this strategy.
#Volunteer Management - identification of skills and supervision required to engage volunteers productively.
 
  
 
*'''Ongoing Objectives for 2013'''
 
*'''Ongoing Objectives for 2013'''
 
**Work with Project leaders to reach grant required milestones - ONGOING
 
**Work with Project leaders to reach grant required milestones - ONGOING
 
**Develop a project charter outlining appropriate grant revenue spending and grant required milestones. - DUE IN SEPTEMBER - ONGOING
 
**Develop a project charter outlining appropriate grant revenue spending and grant required milestones. - DUE IN SEPTEMBER - ONGOING
**Oversight of Marketing and Graphic Design deliverables (Phase 3) provided by 3rd party contractor - ONGOING
+
**Oversight of Marketing and Graphic Design deliverables (Phase 2/Phase 3) provided by 3rd party contractor
  
 
==Currently Working On==   
 
==Currently Working On==   
 
   
 
   
*'''Projects at Conferences'''
+
*'''[https://docs.google.com/spreadsheet/ccc?key=0AllOCxlYdf1AdEdCYVJpdmZHaWJYZ055WHROa19qN3c&usp=sharing Determining Active Project Status]'''
**AppSec USA: I continue to plan logistics for the [http://appsecusa.org/2013/activities/project-leader-workshop/ Project Leader Workshop], and the [http://appsecusa.org/2013/activities/owasp-project-summit/ Project Summits].  
+
**This is a status update on this initiative.
**AppSec EU: The OWASP Projects Track and the Open Source Showcase (OSS) are scheduled to take place at AppSec EU. The local AppSec EU team is working towards gathering submissions for the OSS.  
+
**I have completed the first round of requests for all Flagship, Labs, and Incubator projects.
**AppSec LATAM: Now that AppSec LATAM is moving forward, I will reach out to the local event planners and discuss the possibility of having Projects at the conference.
+
**I am now going through the list, and e-mailing the non-responsive Leaders once again.  
**AppSec APAC 2014: I briefly spoke to the local event planning team in Tokyo about our different Project Event Modules. I will send them more detailed information on each module so we can discuss further.  
+
**I have gone ahead and re-sent my request for a 3rd time to un-responsive Labs Project Leaders.
 +
**The deadline to reply back to my request was, Friday, 26th of July.  
 +
**Those Leaders who did not respond to my e-mails  will now have their projects archived.  
 +
**The same process will be used for the un-responsive Leaders of Incubator projects.  
  
*'''Women in Security: AppSec USA 2013'''
+
*'''Grants & Fundraising Intern'''
**The team is now in the fundraising stage.
+
**I have put together role and qualification criteria for the Fundraising Internship Opportunity.  
**We have managed to raise $500.00 from the OWASP Boston Chapter.
+
**The internship opportunity was made live two weeks ago.  
**[https://www.owasp.org/images/e/ed/Women-in-appsec-sponsorship.pdf Women in Security Sponsorship Document: AppSec USA 2013]
+
**There have been three applicants for the role, so far.  
**We have reached out to several organizations and OWASP Chapters to seek sponsorship for this program.  
+
**I hope to get more applications in the coming weeks.  
**You can find more information on the [http://appsecusa.org/2013/activities/owasp-women-in-application-security-appsec-program/ AppSec USA website].
+
**[https://www.owasp.org/index.php/Projects/Internships/Grants_and_Fundraising_Intern Grants & Fundraising Internship]
**The total amount we are requesting is $6,000.00 to cover conference fee, training fee, travel and accommodation for both winners.
+
**I am looking for a student or recent graduate to help with grant research, writing, and volunteer coordination.  
**We continue to work hard with our fundraising efforts to bringing this initiative to AppSec USA 2013.  
 
  
*'''Marketing Phase 3 Update'''
+
*'''Project Summit: AppSec USA 2013'''
**Sisterworks Publishing has finalized their copywriting work, and they have sent their materials to the graphic design studio.
+
**I continue to plan the logistics for the project summit taking place at AppSec USA this year.
**Design Foundry has now started designing their first drafts of our remaining marketing collateral.  
+
**I continue to gather estimates, flight, and roadmap details from Leaders.
**The OWASP Team is currently working on a system that will allow community review of the design work. 
+
**I am now closer to finalizing the travel arrangements for each project leader.  
**We will ask for community feedback once we get a more finalized version of each design.
+
**Moreover, we are in the process of organizing the schedule of project talks for the conference days.   
**[https://www.owasp.org/images/7/7c/OWASP_Background-Research_Phase1_Final_%281%29.pdf Phase 1 Deliverable]
 
**[https://www.owasp.org/images/c/c5/OWASP_Recommendations-Presentation2-April24.pdf Phase 2 Deliverable]
 
**[https://www.owasp.org/images/4/48/OWASP-SEO-Content-Audit-Final-6-7-2013.pdf SEO Content Audit]
 
***Note: Phase 2 Deliverable has recommendations made by Sisterworks and Design Foundry based on their research.
 
***We are not necessarily moving forward with these recommendations towards implementation.
 
***Sisterworks and Design Foundry are helping with our brand consistency and collateral design.   
 
  
*'''[https://docs.google.com/spreadsheet/ccc?key=0AllOCxlYdf1AdEdCYVJpdmZHaWJYZ055WHROa19qN3c&usp=sharing Determining Active Project Status]'''
+
*'''Women in AppSec: AppSec USA 2013'''
**This is a status update on this initiative.
+
**The team has now completed their fundraising activities.  
**I am reaching out to each leader individually to confirm these pieces of data for all 154 projects.  
+
**We are happy to report that we have now raised $6,500.00 for the program. 
**Flagship projects are completed.
+
**The OWASP MSP Chapter kindly donated the remaining funds needed to reach our goal for the program this year.
**Labs are completed.  
+
**The University of Washington has donated $500.00 today, as well.  
**I am currently working on finalizing the Incubator projects.
+
**The call for entries is now live, as well.  
 +
**[https://docs.google.com/forms/d/1WEtInvzlxLDXpTgfXh-E1E7e8H5FRfEOPIaTOizlBpk/viewform Women in AppSec Application Form.]
 +
**The application deadline is Monday, September 09, 2013 at 5pm GMT.
  
*'''Technical Project Advisory Roles'''
+
*'''OWASP Marketing'''
**The interviews for the six advisory roles are complete.
+
**I continue to work with Design Foundry and the OWASP Ops Team to finalize Phase 3 of our Marketing Project.
**I have finished choosing each advisor for each role.
+
**We are in the final stages of development and design.
**I have let each successful candidate know of their role allocation.  
+
**Patrick, Design Foundry's graphic designer, is working hard to get our work completed.
**I am now waiting for confirmation of acceptance for each role.  
+
**We hope to have all of our designs finalized by mid-August.  
 +
**We are also seeking community feedback on several key design pieces.
 +
**[https://www.owasp.org/index.php/Marketing/Community_Input Marketing Community Feedback Wiki Page]
  
*'''Event Manager Interviews'''
+
*'''OWASP at Black Hat'''
**The OWASP Team is currently reviewing resumés, and interviewing candidates for the Event Manager role.
+
**I have just come back from Las Vegas where I attended Black Hat and DEF CON.
**We are working together to tackle the 80+ applications we received for this position.  
+
**I helped with the OWASP Booth at Black Hat, and met with quite a few people that had questions about our programs.
**The team has a few more interviews to manage before we make our final selection.
+
**Overall, it was a very productive time.  
**We plan to have a new candidate in this role by mid July.
+
**We made many great connections that I am following up with, this week.  
  
*'''Personal Development'''
+
==Grants Updates==
**I have finished reading ''Board Member Orientation: The Concise and Complete Guide to Non-Profit Board Service'' by Michael E. Batts.
+
*'''OWASP OpenSAMM Grant Proposal'''
**I am still taking my online course from Coursera.
+
# Amount: TBD
**The course topic is Information Security and Risk Management in Context.
+
# Status: This proposal is still in the planning and writing phase.
**I was able to take a week long, personal development course this month in the UK.
 
**The program topic was Intellectual Property (IP) Strategy, and the material focused on the development and management of international IP systems for micro, SME, and multinational enterprises.
 
**The course material was eye opening, and I truly enjoyed the experience.
 
**My primary objective was to become familiar with the different types of IP options that exist on an international level.
 
**I felt it would help me manage this aspect of our OWASP Projects since most of the material created is IP related even if it is under a Commons license.
 
**[https://www.owasp.org/index.php/Projects/Intellectual_Property_Report Intellectual Property Strategy Report.]
 
  
==Grants Updates==
 
 
*'''[https://docs.google.com/document/d/1MA3TI5ssclxvheV8At_ffu2Fuic55SDpOokS3AOvBUc/edit?usp=sharing OWASP Guidebooks Proposal]'''
 
*'''[https://docs.google.com/document/d/1MA3TI5ssclxvheV8At_ffu2Fuic55SDpOokS3AOvBUc/edit?usp=sharing OWASP Guidebooks Proposal]'''
 
# Amount: $25,000 USD
 
# Amount: $25,000 USD
# Status: Awarded. The first payment has been allocated to our project budgets.
+
# Status: Awarded. The first payment has been allocated to our project budgets. The second invoice has now been sent to Georgia Tech for payment.
 
# [https://www.owasp.org/images/1/18/Development_Guide_Project_Gantt.pdf OWASP Development Guide Plan]
 
# [https://www.owasp.org/images/1/18/Development_Guide_Project_Gantt.pdf OWASP Development Guide Plan]
 
# [https://www.owasp.org/images/e/e9/Testing_Guide_Project_Gantt.pdf OWASP Testing Guide Plan]
 
# [https://www.owasp.org/images/e/e9/Testing_Guide_Project_Gantt.pdf OWASP Testing Guide Plan]
Line 121: Line 110:
 
#Status: This proposal has been completed and submitted.  
 
#Status: This proposal has been completed and submitted.  
  
 +
*'''Google Summer of Code'''
 +
#Amount: $5,500.00
 +
#Status: Awarded
 +
 +
*'''Projects breakdown:'''
 +
**4 ZAP Projects: $2,000.00
 +
**4 OWTF Projects: $2,000.00
 +
**1 PHP Security Project: $500
 +
**1 Hackademics Project: $500
 +
**1 Modsecurity Project: $500
 +
**Note: Big thank you to Fabio Cerullo for coordinating and managing this award.
  
*'''Total Grant Funds Awarded: $145,000 USD for 2013.'''
+
*'''Total Grant Funds Awarded: $150,500 USD for 2013.'''
  
  
 
==OWASP Projects Manager Weekly Reports==
 
==OWASP Projects Manager Weekly Reports==
#[https://www.owasp.org/index.php/Projects/Reports/2013-07-06 Project Manager Report: June 07 2013]
+
#[https://www.owasp.org/index.php/Projects/Reports/2013-05-07  Project Manager Report: July 05 2013]
#[https://www.owasp.org/index.php/Projects/Reports/2013-14-06 Project Manager Report: June 14 2013]
+
#[https://www.owasp.org/index.php/Projects/Reports/2013-12-07 Project Manager Report: July 12 2013]
#Project Manager Report: June 21 2013 - No Report this week. PM was away at a week long course.
+
#[https://www.owasp.org/index.php/Projects/Reports/2013-19-07  Project Manager Report: July 19 2013]
#[https://www.owasp.org/index.php/Projects/Reports/2013-28-06 Project Manager Report: June 28 2013]
+
#[https://www.owasp.org/index.php/Projects/Reports/2013-26-07 Project Manager Report: July 26 2013]
 +
#Project Manager Report: August 02 2013 - No Report this week. PM was away at Black Hat & DEFCON 2013.

Latest revision as of 00:51, 7 August 2013

OWASP Projects Manager Report

Work accomplished since July 08, 2013

Project Manager Q3 2013 Objectives

  1. Marketing: Work with Sarah to solicit feedback from community on Marketing deliverables and finalize relationship with Patrick and Denita.
  2. Project Review Process - Work with new Technical Project advisors to finalize project review criteria and process.
  3. Grants: Develop a grant strategy for rest of 2013 and 2014, utilizing fundraising intern(s) as part of this strategy.
  • Ongoing Objectives for 2013
    • Work with Project leaders to reach grant required milestones - ONGOING
    • Develop a project charter outlining appropriate grant revenue spending and grant required milestones. - DUE IN SEPTEMBER - ONGOING
    • Oversight of Marketing and Graphic Design deliverables (Phase 2/Phase 3) provided by 3rd party contractor

Currently Working On

  • Determining Active Project Status
    • This is a status update on this initiative.
    • I have completed the first round of requests for all Flagship, Labs, and Incubator projects.
    • I am now going through the list, and e-mailing the non-responsive Leaders once again.
    • I have gone ahead and re-sent my request for a 3rd time to un-responsive Labs Project Leaders.
    • The deadline to reply back to my request was, Friday, 26th of July.
    • Those Leaders who did not respond to my e-mails will now have their projects archived.
    • The same process will be used for the un-responsive Leaders of Incubator projects.
  • Grants & Fundraising Intern
    • I have put together role and qualification criteria for the Fundraising Internship Opportunity.
    • The internship opportunity was made live two weeks ago.
    • There have been three applicants for the role, so far.
    • I hope to get more applications in the coming weeks.
    • Grants & Fundraising Internship
    • I am looking for a student or recent graduate to help with grant research, writing, and volunteer coordination.
  • Project Summit: AppSec USA 2013
    • I continue to plan the logistics for the project summit taking place at AppSec USA this year.
    • I continue to gather estimates, flight, and roadmap details from Leaders.
    • I am now closer to finalizing the travel arrangements for each project leader.
    • Moreover, we are in the process of organizing the schedule of project talks for the conference days.
  • Women in AppSec: AppSec USA 2013
    • The team has now completed their fundraising activities.
    • We are happy to report that we have now raised $6,500.00 for the program.
    • The OWASP MSP Chapter kindly donated the remaining funds needed to reach our goal for the program this year.
    • The University of Washington has donated $500.00 today, as well.
    • The call for entries is now live, as well.
    • Women in AppSec Application Form.
    • The application deadline is Monday, September 09, 2013 at 5pm GMT.
  • OWASP Marketing
    • I continue to work with Design Foundry and the OWASP Ops Team to finalize Phase 3 of our Marketing Project.
    • We are in the final stages of development and design.
    • Patrick, Design Foundry's graphic designer, is working hard to get our work completed.
    • We hope to have all of our designs finalized by mid-August.
    • We are also seeking community feedback on several key design pieces.
    • Marketing Community Feedback Wiki Page
  • OWASP at Black Hat
    • I have just come back from Las Vegas where I attended Black Hat and DEF CON.
    • I helped with the OWASP Booth at Black Hat, and met with quite a few people that had questions about our programs.
    • Overall, it was a very productive time.
    • We made many great connections that I am following up with, this week.

Grants Updates

  • OWASP OpenSAMM Grant Proposal
  1. Amount: TBD
  2. Status: This proposal is still in the planning and writing phase.
  1. Amount: $25,000 USD
  2. Status: Awarded. The first payment has been allocated to our project budgets. The second invoice has now been sent to Georgia Tech for payment.
  3. OWASP Development Guide Plan
  4. OWASP Testing Guide Plan
  5. OWASP Code Review Guide Plan
  1. Amount: $25,000 USD
  2. Status: The ESAPI proposal is still being reviewed.
  1. Amount: $30,000 USD
  2. Status: The ModSecurity proposal is still being reviewed.
  • Google Grants Proposal
  1. Amount: $120,000 USD in Adwords Funds
  2. Status: Awarded.
  3. Note: There is no link to show the proposal for this grant. There was a form that was submitted to Google, and we did not receive a record of this form.
  • European Commission Grant Proposal
  1. Amount: €250,000
  2. Status: This proposal has been completed and submitted.
  • Google Summer of Code
  1. Amount: $5,500.00
  2. Status: Awarded
  • Projects breakdown:
    • 4 ZAP Projects: $2,000.00
    • 4 OWTF Projects: $2,000.00
    • 1 PHP Security Project: $500
    • 1 Hackademics Project: $500
    • 1 Modsecurity Project: $500
    • Note: Big thank you to Fabio Cerullo for coordinating and managing this award.
  • Total Grant Funds Awarded: $150,500 USD for 2013.


OWASP Projects Manager Weekly Reports

  1. Project Manager Report: July 05 2013
  2. Project Manager Report: July 12 2013
  3. Project Manager Report: July 19 2013
  4. Project Manager Report: July 26 2013
  5. Project Manager Report: August 02 2013 - No Report this week. PM was away at Black Hat & DEFCON 2013.
Retrieved from "https://wiki.owasp.org/index.php?title=OWASP_Project_Manager_Activity_Reports/August_06_2013&oldid=156493"