This site is the archived OWASP Foundation Wiki and is no longer accepting Account Requests.
To view the new OWASP Foundation website, please visit https://owasp.org

Difference between revisions of "OWASP Project Manager Activity Reports/October 10 2013"

From OWASP
Jump to: navigation, search
Line 37: Line 37:
 
==Currently Working On==   
 
==Currently Working On==   
 
   
 
   
*'''[https://docs.google.com/spreadsheet/ccc?key=0AllOCxlYdf1AdEdCYVJpdmZHaWJYZ055WHROa19qN3c&usp=sharing Active Project Audit]'''
 
**The Project Audit is now complete.
 
**I reached out to every project leader listed in our inventory, and asked them to confirm the status of their project.
 
**The majority of our Leaders responded, and their project activity status was marked accordingly.
 
**Those that did not respond were sent 3 messages before their project was marked inactive.
 
**Due to the audit, the number of active OWASP Projects in our inventory went down from 169 to 132.
 
**I have also created an [https://lists.owasp.org/mailman/listinfo/owasp_project_leader_list OWASP Project Leader Mailing List], and I added all of our confirmed active Leaders to it.
 
**The next audit will take place on February 2014.
 
  
*'''[http://owasp.blogspot.com/2013/09/meet-our-new-technical-project-advisors.html Technical Project Advisors: Work Update]'''
+
*'''[https://www.owasp.org/index.php/Projects_Summit_2013 2013 Project Summit]'''
**The Advisors and I met last week to discuss their review of the current Assessment criteria.
+
**I continue to work on organizing the 2013 OWASP Projects Summit.
**We also reviewed Chuck's comments, and discussed each in more detail.
+
**Current track topics include:
**We made some changes to the original document, and I've put together a revised draft based on our conversation.  
+
***Projects Workshop
**Here is [https://docs.google.com/spreadsheet/ccc?key=0AllOCxlYdf1AdHliVUlMYVdPRWpqajF1bGtnSGtWckE&usp=sharing Ly's original document] with Chuck's comments and my notes.  
+
***ESAPI Hackathon
**Here is [https://docs.google.com/spreadsheet/ccc?key=0AllOCxlYdf1AdHJUSl9rbGtscGJfSGRWVFNUM2JPMlE&usp=sharing new revised draft].
+
***ZAP Hackathon
**We plan to use the revised draft to test 3 projects against the criteria.  
+
***University Outreach, Education, and Training
***Project being reviewed are the following:
+
***Writing, Proof-reading, and Technical Editing
***[https://www.owasp.org/index.php/OWASP_Java_HTML_Sanitizer_Project OWASP Java HTML Sanitizer Project] (Testing)
+
***Product Development and Reference Implementation
***[https://www.owasp.org/index.php/OWASP_Cornucopia OWASP Cornucopia Project] (Testing)
+
***Mobile Security Project Session
***[https://www.owasp.org/index.php/OWASP_Java_Encoder_Project OWASP Java Encoder Project] (Testing)
+
**I urge everyone to add your name to the attendees list if you are interested in a session, or suggest new topics that you would be more interested in attending.  
 +
 
 +
*'''Technical Project Advisors: Work Update'''
 +
**The Technical Project Advisors and I had another group meeting this week.
 +
**We discussed both the project health assessment and the product quality assessment in detail.
 +
**We have finally reached a point where we are happy with both assessment criteria.
 +
**We are now finalizing the documentation so we can present the final version to the community.
 +
**[https://docs.google.com/spreadsheet/ccc?key=0AllOCxlYdf1AdExnNnA2OHFjdUlPNHNMU1FDV2llTnc&usp=sharing Assessment Criteria V7]
 +
**We hope to have the criteria agreed on by next week.  
 +
**Note: We have separated out the focus of each assessment.
 +
**The Project Assessment focuses on the project health based on OWASP best practices.
 +
**The Product Assessment focuses on the quality of the deliverable.  
  
 
*'''Women in AppSec: AppSec USA 2013'''
 
*'''Women in AppSec: AppSec USA 2013'''
**The team has now selected three new members for the Women in AppSec Selection Committee.  
+
**The Women in AppSec grading process is now complete.
**These individuals will help review the applications and select the two winners.
+
**We have now selected 2 winners for this year's sponsorship.
**The following people make up the selection committee: Helen Gao, Bev Corwin, Jim Manico, Tom Ryan, Lucas Ferreira, and Samantha Groves.
+
**We are now in the process of setting them up with their flights, registration, and accommodation.
**Once the selection committee was established, we began discussing the selection criteria in more detail.
+
**The two winners are:  
**We are now in the fourth version of the criteria.  
+
***Nancy Lorntson
**[https://docs.google.com/document/d/1W0RJ85uP78m47R58xnGdi0_09QpalnPT2Woz4zb5_94/edit?usp=sharing Women in AppSec Program Selection Criteria: 4th Draft].
+
***Carrie Schaper
**We plan on beginning our selection process after the 9th of September once the application deadline has passed.
 
**[https://docs.google.com/forms/d/1WEtInvzlxLDXpTgfXh-E1E7e8H5FRfEOPIaTOizlBpk/viewform Women in AppSec Application Form.]
 
**The application deadline is Monday, September 09, 2013 at 5pm GMT.
 
**The deadline for sponsors is Monday, September 09, 2013, as well. 
 
  
*'''[https://www.owasp.org/index.php/Projects/Internships/Grants_and_Fundraising_Intern Grants & Fundraising Intern]'''
+
*'''[http://owasp.blogspot.com/2013/09/meet-our-new-grants-and-fundraising.html Meet our new Grants & Fundraising Intern]'''
**My search for a Grants & Fundraising intern is coming to an end
+
**Kait continues to do an excellent job with all of her tasks.
**I received four applications for the role, and I had interviews with each applicant last week.
+
**This week, she worked on helping us hire transcriptionists to transcribe the Board Election Candidate Interviews.
**I have already made my decision, and I will announce the successful applicant on the 9th of September.  
+
**Additionally, she worked on a hand full of administrative tasks for Women in AppSec, she created a ppt presentation about OWASP and the Top Ten, and she worked on several Project Summit related tasks.  
**Application Deadline: Monday August 26 2013 5PM GMT. (Now Closed)
+
**You can read more about her week by reading her [https://www.owasp.org/index.php/Projects/Internships/Grants_and_Fundraising_Intern/Kait_Disney_Leugers#tab=Biography Intern Weekly Report].
**Interviews Scheduled: First Week of September. (Interviews Scheduled for Next Week)
 
**Selection Announcement: Monday, September 09th 2013.
 
 
**Start Date: Monday, September 16th 2013.
 
**Start Date: Monday, September 16th 2013.
 
**Internship End Date: Monday, January 13th 2014.
 
**Internship End Date: Monday, January 13th 2014.
  
*'''Projects at Conferences'''
+
*'''Daily Project based queries and requests'''
**The two conferences left to plan for this year are AppSec LATAM, and AppSec USA.
+
**This has not changed much since I began the post: questions are very similar in nature.
**I have reached out to two project leaders in the Latin America region, and asked them if they would speak at the conference.
+
**Global AppSec questions.
**Both leaders agreed to give a talk at the conference.
+
**Funding queries.
**I have been helping them with their travel, accommodation, and conference logistics planning.  
+
**Travel availability.
**Thank you to Michael Hidalgo and Rafael Gil Larios for representing OWASP Projects at AppSec LATAM.
+
**Project based administrative help.
**AppSec USA planning for projects is going very well.  
+
**Project status information.
**Now, all of the Project Leaders have booked their travel, and only one project leader hasn't confirmed his talk time slot.
+
**Several project donation questions.
 +
**Marketing questions.
 +
**Grant funding questions.
 +
**OWASP social media updates.
 +
**What's happening with projects, questions.
  
 
==Project Funding Updates==
 
==Project Funding Updates==

Revision as of 00:08, 11 October 2013

OWASP Project Manager Report

Work accomplished since September 2013

Project Manager Q4 2013 Objectives

  1. Finish planning Project Summit & Execute Summit at AppSec USA.
  2. Develop & Finish Global Projects Strategy for 2014: Includes Budget
  3. Finish Fundraising Strategy for 2014: Includes Budget
  • Ongoing Objectives for 2013
    • Quarterly Report to DHS
    • Continue helping leaders reach their grant required milestones
    • Finalise graphic design delivery from Patrick: 2 pieces to go.

Currently Working On

  • 2013 Project Summit
    • I continue to work on organizing the 2013 OWASP Projects Summit.
    • Current track topics include:
      • Projects Workshop
      • ESAPI Hackathon
      • ZAP Hackathon
      • University Outreach, Education, and Training
      • Writing, Proof-reading, and Technical Editing
      • Product Development and Reference Implementation
      • Mobile Security Project Session
    • I urge everyone to add your name to the attendees list if you are interested in a session, or suggest new topics that you would be more interested in attending.
  • Technical Project Advisors: Work Update
    • The Technical Project Advisors and I had another group meeting this week.
    • We discussed both the project health assessment and the product quality assessment in detail.
    • We have finally reached a point where we are happy with both assessment criteria.
    • We are now finalizing the documentation so we can present the final version to the community.
    • Assessment Criteria V7
    • We hope to have the criteria agreed on by next week.
    • Note: We have separated out the focus of each assessment.
    • The Project Assessment focuses on the project health based on OWASP best practices.
    • The Product Assessment focuses on the quality of the deliverable.
  • Women in AppSec: AppSec USA 2013
    • The Women in AppSec grading process is now complete.
    • We have now selected 2 winners for this year's sponsorship.
    • We are now in the process of setting them up with their flights, registration, and accommodation.
    • The two winners are:
      • Nancy Lorntson
      • Carrie Schaper
  • Meet our new Grants & Fundraising Intern
    • Kait continues to do an excellent job with all of her tasks.
    • This week, she worked on helping us hire transcriptionists to transcribe the Board Election Candidate Interviews.
    • Additionally, she worked on a hand full of administrative tasks for Women in AppSec, she created a ppt presentation about OWASP and the Top Ten, and she worked on several Project Summit related tasks.
    • You can read more about her week by reading her Intern Weekly Report.
    • Start Date: Monday, September 16th 2013.
    • Internship End Date: Monday, January 13th 2014.
  • Daily Project based queries and requests
    • This has not changed much since I began the post: questions are very similar in nature.
    • Global AppSec questions.
    • Funding queries.
    • Travel availability.
    • Project based administrative help.
    • Project status information.
    • Several project donation questions.
    • Marketing questions.
    • Grant funding questions.
    • OWASP social media updates.
    • What's happening with projects, questions.

Project Funding Updates

  • OWASP OWTF Project: Brucon 5x5 Award
  1. Amount: €5,000.00 (Approx. $6,670.00)
  2. Status: Awarded. Congratulations, Abraham Aranguren and all involved in the project, for your award.
  1. Amount: $55,800 USD
  2. Status: This proposal is complete, and has been submitted.
  1. Amount: $15,000 USD
  2. Status: This proposal is complete, and has been submitted.
  1. Amount: $112,000 USD
  2. Status: This proposal is complete, and has been submitted.
  1. Amount: $25,000 USD
  2. Status: Awarded. The first payment has been allocated to our project budgets. The second invoice has now been sent to Georgia Tech and payment has been received.
  3. OWASP Development Guide Plan
  4. OWASP Testing Guide Plan
  5. OWASP Code Review Guide Plan
  1. Amount: $25,000 USD
  2. Status: The ESAPI proposal is still being reviewed.
  1. Amount: $30,000 USD
  2. Status: The ModSecurity proposal is still being reviewed.
  • Google Grants Proposal
  1. Amount: $120,000 USD in Adwords Funds
  2. Status: Awarded.
  3. Note: There is no link to show the proposal for this grant. There was a form that was submitted to Google, and we did not receive a record of this form.
  • European Commission Grant Proposal
  1. Amount: €250,000
  2. Status: Denied.
  • Google Summer of Code
  1. Amount: $5,500
  2. Status: Awarded
  • Projects breakdown:
    • 4 ZAP Projects: $2,000
    • 4 OWTF Projects: $2,000
    • 1 PHP Security Project: $500
    • 1 Hackademics Project: $500
    • 1 Modsecurity Project: $500
    • Note: Big thank you to Fabio Cerullo for coordinating and managing this award.


  • Total Funds Awarded: $157,170 USD for 2013.


OWASP Project Manager Weekly Reports

  1. Project Manager Report: September 06 2013 - No Report this week. PM was away.
  2. Project Manager Report: September 13 2013
  3. Project Manager Report: September 20 2013
  4. Project Manager Report: September 27 2013
  5. Project Manager Report: October 04 2013
Retrieved from "https://wiki.owasp.org/index.php?title=OWASP_Project_Manager_Activity_Reports/October_10_2013&oldid=160288"