Difference between revisions of "OWASP Project Manager Activity Reports/October 10 2013"

Latest revision as of 01:44, 11 October 2013

OWASP Project Manager Report

Work accomplished since September 2013

• Project Numbers
  • Active Projects: 142
  • Inactive Projects: 103

• New Project Applications
  • OWASP Vulnerable Web Applications Directory

• New OWASP Projects
  • OWASP Media Project
  • OWASP Global Chapter Meetings Project
  • OWASP JAWS Project
  • OWASP This I Believe Security Project
  • OWASP Node.js Goat Project
  • OWASP Pygoat Project
  • OWASP Python Security Project

• Projects Under Review
  • OWASP Cheat Sheets Project
  • OWASP Java HTML Sanitizer Project (Testing)
  • Xenotix XSS Exploit Framework
  • OWASP Cornucopia Project (Testing)
  • OWASP Java Encoder Project (Testing)

Project Manager Q4 2013 Objectives

1. Finish planning Project Summit & Execute Summit at AppSec USA.
2. Develop & Finish Global Projects Strategy for 2014: Includes Budget
3. Finish Fundraising Strategy for 2014: Includes Budget

• Ongoing Objectives for 2013
  • Quarterly Report to DHS
  • Continue helping leaders reach their grant required milestones
  • Finalize graphic design delivery from Patrick: 2 pieces to go.

Currently Working On

• 2013 Project Summit
  • I continue to work on organizing the 2013 OWASP Projects Summit.
  • Current session topics include:
    • Projects Workshop
    • ESAPI Hackathon
    • ZAP Hackathon
    • University Outreach, Education, and Training
    • Writing, Proof-reading, and Technical Editing
    • Product Development and Reference Implementation
    • Mobile Security Project Session
    • Bug Bounty Session
  • I urge everyone to add your name to the attendees list if you are interested in a session, or suggest new topics that you would be more interested in attending.

• Technical Project Advisors: Work Update
  • The Technical Project Advisors and I had another group meeting this week.
  • We discussed both the project health assessment and the product quality assessment in detail.
  • We have finally reached a point where we are happy with both assessment criteria.
  • We are now finalizing the documentation so we can present the final version to the community.
  • Assessment Criteria V7
  • We hope to have the criteria agreed on by next week.
  • Note: We have separated out the focus of each assessment.
  • The Project Assessment focuses on the project health based on OWASP best practices.
  • The Product Assessment focuses on the quality of the deliverable.

• Women in AppSec: AppSec USA 2013
  • The Women in AppSec grading process is now complete.
  • We have now selected 2 winners for this year's sponsorship.
  • We are now in the process of setting them up with their flights, registration, and accommodation.
  • The two winners are:
    • Nancy Lorntson
    • Carrie Schaper

• Meet our new Grants & Fundraising Intern
  • Kait continues to do an excellent job with all of her tasks.
  • This week, she worked on helping us hire transcriptionists to transcribe the Board Election Candidate Interviews.
  • Additionally, she worked on a hand full of administrative tasks for Women in AppSec, she created a ppt presentation about OWASP and the Top Ten.
  • She is also now working on project summit related activities, helping organize the schedule of session and creating content for the summit pages.
  • You can read more about her week by reading her Intern Weekly Report.
  • Start Date: Monday, September 16th 2013.
  • Internship End Date: Monday, January 13th 2014.

• OWASP Marketing
  • I continue to work on finalizing our contract with the marketing and design agency we hired to create our OWASP identity package.
  • We have finalized the majority of the design pieces we requested from the graphic designer.
  • There is only one design piece left to create as of today.
  • I will work with the graphic designer to finalize this last piece in the next coming weeks.

Project Funding Updates

• OWASP OWTF Project: Brucon 5x5 Award

1. Amount: €5,000.00 (Approx. $6,670.00)
2. Status: Awarded. Congratulations, Abraham Aranguren and all involved in the project, for your award.

• OWASP OWTF Grant Proposal

1. Amount: $55,800 USD
2. Status: This proposal is complete, and has been submitted.

• OWASP AppSensor Grant Proposal

1. Amount: $15,000 USD
2. Status: This proposal is complete, and has been submitted.

• OWASP OpenSAMM Grant Proposal

1. Amount: $112,000 USD
2. Status: This proposal is complete, and has been submitted.

• OWASP Guidebooks Proposal

1. Amount: $25,000 USD
2. Status: Awarded. The first payment has been allocated to our project budgets. The second invoice has now been sent to Georgia Tech and payment has been received.
3. OWASP Development Guide Plan
4. OWASP Testing Guide Plan
5. OWASP Code Review Guide Plan

• OWASP ESAPI Grant Proposal

1. Amount: $25,000 USD
2. Status: The ESAPI proposal is still being reviewed.

• OWASP ModSecurity CRS Proposal

1. Amount: $30,000 USD
2. Status: The ModSecurity proposal is still being reviewed.

• Google Grants Proposal

1. Amount: $120,000 USD in Adwords Funds
2. Status: Awarded.
3. Note: There is no link to show the proposal for this grant. There was a form that was submitted to Google, and we did not receive a record of this form.

• European Commission Grant Proposal

1. Amount: €250,000
2. Status: Denied.

• Google Summer of Code

1. Amount: $5,500
2. Status: Awarded

• Projects breakdown:
  • 4 ZAP Projects: $2,000
  • 4 OWTF Projects: $2,000
  • 1 PHP Security Project: $500
  • 1 Hackademics Project: $500
  • 1 Modsecurity Project: $500
  • Note: Big thank you to Fabio Cerullo for coordinating and managing this award.

• Total Funds Awarded: $157,170 USD for 2013.

OWASP Project Manager Weekly Reports

1. Project Manager Report: September 06 2013 - No Report this week. PM was away.
2. Project Manager Report: September 13 2013
3. Project Manager Report: September 20 2013
4. Project Manager Report: September 27 2013
5. Project Manager Report: October 04 2013