This site is the archived OWASP Foundation Wiki and is no longer accepting Account Requests.
To view the new OWASP Foundation website, please visit https://owasp.org

Difference between revisions of "Women In AppSec"

From OWASP
Jump to: navigation, search
m (added back in headertabs)
(Added membership types and governance link.)
Line 6: Line 6:
  
 
The Women in AppSec program is for anyone who believes that diversity is important to the success of the organization, as well as for women looking to learn more about AppSec or who want to make career connections with like-minded colleagues.  This includes female undergraduate and graduate students, instructors, and professionals who are dedicated to information security or application development.  
 
The Women in AppSec program is for anyone who believes that diversity is important to the success of the organization, as well as for women looking to learn more about AppSec or who want to make career connections with like-minded colleagues.  This includes female undergraduate and graduate students, instructors, and professionals who are dedicated to information security or application development.  
 +
 +
=FIND US=
 +
 +
==Email List==
 +
 +
[https://lists.owasp.org/mailman/listinfo/appsec_usa_women_in_security WIA List and Archive]
 +
 +
==Twitter==
 +
 +
[https://twitter.com/owaspwia @OWASPWIA]
 +
 +
==Slack Channel==
 +
 +
[https://owasp.slack.com/messages/C2NUH1J5B/ WIA Slack Channel]
  
 
=WIA PURPOSE AND SCOPE=
 
=WIA PURPOSE AND SCOPE=
Line 29: Line 43:
 
# Develop other special projects and events designed to further the purpose of WIA.
 
# Develop other special projects and events designed to further the purpose of WIA.
  
=FIND US=
+
=Membership=
 +
 
 +
==Membership Types==
 +
 
 +
===Voting===
 +
 
 +
Voting Members are members of OWASP who have formally joined the WIA Committee.  Voting Members are allowed to vote on Committee business and are allowed to serve in one of the five leadership positions of the Committee.
 +
 
 +
In order to become a Voting Member, you must first become a Participating Member and participate for three months, become an OWASP member in good standing, and obtain a written endorsement from a current Voting Member or an OWASP Board of Director.  Once all three criteria are met, you must formally request to join as a Voting Member to the WIA List.  The Voting Members then vote via the WIA list, and if you receive a majority, you are then made a Voting Member.
 +
 
 +
Voting Members have an obligation to maintain participation and to reaffirm their commitment every six months (the Secretary will send an email every six months to affirm commitment, replying "no" or not replying will result in removal).
  
==Email List==
+
===Participating===
  
[https://lists.owasp.org/mailman/listinfo/appsec_usa_women_in_security WIA List and Archive]
+
Participating Members are anyone that is interested in volunteering time to the WIA Committee or sub-committees. Participating Members are able to participate in all activities, with the exception of voting and serving in one of the five Committee leadership roles.
  
==Twitter==
+
In order to become a Participating member, you must express your volunteering commitment to the Secretary, who will then add you to the Membership List.  Participating Members can withdraw their commitment at any time by notifying the Secretary.  Participating Members do not need to be OWASP members.
  
[https://twitter.com/owaspwia @OWASPWIA]
+
==Membership List==
  
==Slack Channel==
+
[https://docs.google.com/spreadsheets/d/1T7I0FJwfrI-h3XY-iL5URNNeZ-A0wxPTV0nfQHrSZVs/edit?usp=sharing Membership List]
  
[https://owasp.slack.com/messages/C2NUH1J5B/ WIA Slack Channel]
+
=GOVERNANCE=
  
 +
WIA is a formal Committee of OWASP.  WIA is governed by the rules set forth in the [https://www.owasp.org/index.php/Governance/OWASP_Committees OWASP Committees 2.0 Operational Model].
  
 
=PREVIOUS WIA ACTIVITIES=
 
=PREVIOUS WIA ACTIVITIES=

Revision as of 21:35, 20 June 2017

Women in Application Security Committee

The purpose of Women in AppSec (WIA) Committee is to develop leadership, promote active membership and participation, and contributions by women in application security professional communities, globally and locally.

The Women in AppSec program is for anyone who believes that diversity is important to the success of the organization, as well as for women looking to learn more about AppSec or who want to make career connections with like-minded colleagues. This includes female undergraduate and graduate students, instructors, and professionals who are dedicated to information security or application development.

Email List

WIA List and Archive

Twitter

@OWASPWIA

Slack Channel

WIA Slack Channel

Purpose

The purpose of Women in AppSec (WIA) Committee is to develop leadership, promote active membership and participation, and contributions by women in application security professional communities, globally and locally.

Scope

The scope for OWASP WIA Committee falls into the following areas:

  1. Attract women to OWASP, as active members, contributors and leaders.
  2. Offer opportunities for women to become engaged in AppSec and related professional communities.
  3. Provide inclusive targeted application security programs for all women learners.
  4. Provide inclusive training and mentorship for all interested OWASP women.
  5. Provide financial support to OWASP women members through scholarships, sponsorships, and grant making.
  6. Pursue fundraising, advancement and development to secure financial support for OWASP WIA activities..
  7. Integrate WIA track and related activities into OWASP events at all levels.
  8. Cultivate women for community leadership, speakers for conferences, thought leadership, learning leaders, and local chapter events.
  9. Collaborate with other committees and initiatives as needs present.
  10. Collaborate with local OWASP Chapters and Global OWASP leadership, including but not limited to offering advisory support to local and global OWASP leadership for WIA advancement and collaboratively building pro-WIA OWASP communities.
  11. Develop other special projects and events designed to further the purpose of WIA.

Membership Types

Voting

Voting Members are members of OWASP who have formally joined the WIA Committee. Voting Members are allowed to vote on Committee business and are allowed to serve in one of the five leadership positions of the Committee.

In order to become a Voting Member, you must first become a Participating Member and participate for three months, become an OWASP member in good standing, and obtain a written endorsement from a current Voting Member or an OWASP Board of Director. Once all three criteria are met, you must formally request to join as a Voting Member to the WIA List. The Voting Members then vote via the WIA list, and if you receive a majority, you are then made a Voting Member.

Voting Members have an obligation to maintain participation and to reaffirm their commitment every six months (the Secretary will send an email every six months to affirm commitment, replying "no" or not replying will result in removal).

Participating

Participating Members are anyone that is interested in volunteering time to the WIA Committee or sub-committees. Participating Members are able to participate in all activities, with the exception of voting and serving in one of the five Committee leadership roles.

In order to become a Participating member, you must express your volunteering commitment to the Secretary, who will then add you to the Membership List. Participating Members can withdraw their commitment at any time by notifying the Secretary. Participating Members do not need to be OWASP members.

Membership List

Membership List

WIA is a formal Committee of OWASP. WIA is governed by the rules set forth in the OWASP Committees 2.0 Operational Model.

AppSec USA 2015

AppSec USA 2015
The Women in AppSec (WIA) program is for all OWASP members who believe that diversity is important to the success of an organization, as well as for women who want to make career connections with like-minded colleagues. We encourage you to attend our session on Thursday at 3:30pm in Room F, featuring the founders of InfoSec Girls, Apoorva Giri and Shruthi Kamath.

We also invite you to join us for our networking and “Birds of a Feather” sessions on on Thursday in WIA meeting room . Stop by anytime between 10:00am and 3:30pm to meet other members and learn more about the WIA program. You can also suggest a discussion topic on the sign-up at the room entrance.

Sponsorship opportunities for commercial organizations and OWASP chapters are also available.

AppSec USA 2015
Currently, there is an effort to plan activities for AppSec USA 2015. Volunteers are eagerly sought to support the program at AppSec USA! We are especially excited to invite the founders of the InfoSec Girls initiative to the AppSec USA 2015 conference. To bring InfoSec Girls to AppSec USA, we need to raise $7500. We are very close to our goal and know that with the support of the OWASP community, we can easily get there! Donations above and beyond our goal will be used for future WIA programs around the world.

Donate now:

AppSec EU 2015

During AppSec EU there was a panel discussion and workshop supported by the Women in AppSec initiative. Through these sessions we hoped to encourage women to pursue a career in AppSec and help them realize it is an option for them. These sessions was be open to all so we can help build support for the women around us. Learn more here: http://2015.appsec.eu/women-in-application-security

Panel: "Women in AppSec - Making it Happen"
During this panel session we discussed what can be done to Make it Happen for Women in AppSec going forward. What have those currently working in the field done to Make it Happen for themselves and other women; what tips and advice do they have to help you do to make a career for yourself or encourage those around you (sister, friend, daughter, etc…) to pursue a career in AppSec? What can we as professionals can do to help encourage girls to go for a career in AppSec?

Workshop
During the workshop we introduced female attendees of the conference to what a career in App Sec can involve. We discussed application security and the many career paths available. We hope to build relationships that may lead to a mentoring program for these women.

AppSec USA 2013

Learn more about the program here: http://2013.appsecusa.org/2013/activities/owasp-women-in-application-security-appsec-program/index.html

Previous Women in AppSec Winners

Following their experience at AppSec, winners are encouraged to write a short piece about their experience at the conference and their participation in the Women in AppSec program. Here, they outline their experience with the Women in AppSec Program in their own words.

Carrie Schaper, 2013 Winner



Carrie Schaper Small.jpg "OWASP Appsec proved to be a great experience for me, uniting and interacting with friends, professionals, and colleagues from the Information Security space from across the US and Internationally whom were in attendance. The huge space and well organized functions such as the: trainings, expert talks, panels, bug-bounty, lock-picking village and social events all enhanced the conference experience. Participating on the Women in IT panel was a wonderful experience, as many women were in attendance and participated in collaborative discussions. OWASP Appsec held in NY this year, was a premier NY conference not to be missed. Thank you to OWASP, its attendees and organizers."


Nancy Lornston, 2013 Winner



Nancy Lorntson Small.jpg "AppSec 2013 was an awesome experience! Nowhere in the world can you find the top security experts all in one place at one time (and participate in a marriage proposal!). The conference presentations were well organized and the speakers were prepared to share pros, cons, successes and failures of their work in order to advance the application security domain. The variety of vendors was terrific as well.

The Women in AppSec panel was an opportunity to advance women's position in the community. Each speaker shared some very candid remarks about their personal experiences and by the end, it was clear that while more work needs to be done, there is a sincere interest by companies, universities and the industry in general to work on doing the things needed to attract more women to the profession.

The training course I attended (Open source tools) lived up to it's billing and I came away with several invaluable tips and strategies to improve our program.

A huge thank you to the Women in App Sec Panel and OWASP in general for this opportunity to attend the premier Application Security Conference in the world."


Tara Wilson, 2011 Winner



Tara wilson.jpg “Being fortunate enough to receive the Women in AppSec sponsorhsip is a unique and valuable experience. It is a great opportunity for women to have a chance to bolster their skills and dive deep into the world of application security. I found that attending the conference was not only a great way to experience what the OWASP community has to offer, but it also gives students a chance to network with a great group of people who are passionate about their field and willing to share a wealth of information.”


Chandni Bhowmik, 2011 Winner



Chandni bhowmik.jpg Chandni Bhowmik is currently completing an M.S. in Computer Security and Information Assurance at the Rochester Institute of Technology (RIT). Her first introduction to OWASP was through the project WebScarab during an application security lab last spring at RIT and her interest in OWASP grew ever since. Over the summer, she started programming open source web applications using built-in security features of Django and Python. She is interested in becoming an information security researcher, and hopes to leverage learning at OWASP AppSec USA 2011 in ad-hoc architecture, mobile platforms and over-all concepts of web application security. Besides secure programming, Chandni enjoys her current research involving digital image forensics and machine learning. In addition to attending school, she has interned in IT security and compliance at Paychex, a Rochester based payroll processing company, and gained industrial experience working an assistant systems engineer for Tata Consultancy Services, a global IT firm.