This site is the archived OWASP Foundation Wiki and is no longer accepting Account Requests.
To view the new OWASP Foundation website, please visit https://owasp.org
Global Conferences Committee/
About the Committee
The Global Conferences Committee was created during the OWASP EU Summit in Portugal 2008. The Global Conferences Committee exists to coordinate and facilitate OWASP conferences and events worldwide. The committee is governed by the Global Conferences Committee Governance document
- Mark Bristow (U.S, 2011 Chair Election)
- John Wilander (Sweden)
- Lucas Ferreira (Brazil)
- Richard Greenberg (US)
- Ralph Durkee (US)
- Cassio Goldschmidt (US and SA)
- Mohd Fazli Azran (Malaysia)
Operational Support: Sarah Baso
Next Meeting
Date: 16-September-2011
Time: 16:00 GMT/UTC (Global Meeting Time Planner - click here)
Dial in: 1-866-534-4754 code:42398
Planner Resources
How to Host a Conference - The comprehensive guide for hosting an OWASP event.
delete me
2011 Goals
2011 Comprehensive Committee Plan | 2010 Plan
- Have a Global Appsec in NA, SA, EU, Asia in 2011
- Promote OWASP Projects/Initiatives at OWASP Conferences
- Enhance Services for Conference Planners
- Reach out to developers (have 20% of attendees in a dev position)
- Reach out to non-members (have 70% of attendees at cons non-members)
- Bring more into the fold (Generate 300 new/renewed members at conferences)
- Streamline Sponsorships (Global Conference Sponsors, Targeted Conference Sponsors)
- Revise GCC Governance
- Have a profit of $200k in 2011 across all conferences
Major Initiatives
| Initiative | Priority | Associated Goals | Description | Status | Deadline | Assignees |
|---|---|---|---|---|---|---|
| Revise GCC Governance | 1 | 8 | Generate self governance document for voting rules, quorum and other functional committee requirements | Complete - Global Conferences Committee Governance | January 2011 | All Committee Members |
| OWASP Conference Management System (help) | 1 | 1, 3 | Develop a system to take in applications for all non-chapter meeting events, vet them, and schedule them. This system shall serve as the "official" registration path for all events and allow the GCC to get a firm grip on the OWASP Event Calendar. | Preparing for Release | Release - 3/5/2011 | Mark (Code), Lucas & Neil (Alpha Testing, Requirements) |
| OWASP Global Conference Sponsors | 2 | 3, 7 | Provide unified sponsorship mechanism for all Global AppSec conferences. This will help us plan our conference revenue annually and help sponsors plan for their spending (identified as an issue by several vendors). This is intended to augment, not replace individual conference sponsorships. | Released 2011 Global Sponsorship Packages | Feb 2011 | Richard, All Review |
| OWASP AppSec Track | 3 | 2 | Joint venture with the GPC. The track would consist of a cadre (10-20) of speakers from inew/high profile OWASP projects. The GCC would manage these speakers through an internal call for papers that would be vetted by the GCC/GPC for some of our best speakers from high profile projects. As a new conference requests an OWASP Speaking track (or for Global AppSec conferences, this will be required) the GCC would reach out to the selected presenters to verify their availability for the event and provide a list of 6-7 speakers to the local event coordinators for the schedule. | Planning for AppSecUSA release in Sept. | June 2011 | Ralph |
| OWASP Marketing at Conferences | 3 | 4,5,6 | Promote OWASP at targeted industry and developer events. Provide OWASP support and schwag for OWASP booths at other conferences | Applications accepted via OCMS | In progress | Mark |
| OWASP Conference Marketing - Attendees | 3 | 4,5,6 | Provide additional mechanisms for marketing conferences to attendees | None | TBD | Neil |
| OWASP Conference Marketing - Sponsors | 3 | 4,5,6 | Provide additional mechanisms for marketing conferences to Sponsors | None | TBD | Neil, Richard |
| Conference Web Marketing | 4 | 3 | Obtain Twitter accounts, domain names, and @owasp.org email addresses for use by approved conferences. See Global Conference Resources | Complete | Complete | Mark |
| Central Conference Support Services | 4 | 3 | RegOnline is setup. Investigate costs for hiring a conference organizer. | RegOnline - Complete Conference Organizer - Investigate |
TBD | All |
| OWASP Short URLS | 5 | 3 | Provide short URLs on the OWASP website (e.g. https://owasp.org/AppSecBR) to make it easier to access content on the wiki, especially in emails and the like | Need to investigate with Larry | TBD | Ralph |
| Regional targeted mailing lists | 5 | 3 | Provide email lists for targeted, regional email distributions. Only GlobalAppSec conferences will be advertised on OWASP-ALL | Need to investigate leveraging Salesforce for this. | TBD | Ralph |
| OWASP Merchandise Model | 6 | 3,9 | Provide OWASP Merchandise for sale at conferences | May be a bit OBE as Kate has established something similar already. May just need an "inventory" we can send places. | TBD | None |
Committee Policies
If you have questions or require an exception to any of these please contact the OWASP Staff.
| Policy | Applicability |
|---|---|
| All content must be vendor neutral | All Events - Core Value |
| All content must be made available to the public after the conference | All Events - Core Value |
| All calls for papers, training and registration must be open and promoted to the public | All Events - Core Value |
| Selecting Committee Members (Training or Papers) must not submit | All Events |
| Use the conference website/wikipage to submit papers. It must supports blind paper submissions. | All Events |
| All events must be conducted in a manner consistent with the OWASP Mission, Principles and Code of Ethics | All Events - Core Value |
| OWASP Event Definitions | All Events |
| OWASP Event Requirements | All Events |
Local host chapters will share in OWASP event profits under the following schedule. In the case of multiple host chapters, the host chapters will be responsible for determining the division before the event. Policy Document
|
All Events |
| All OWASP Events must be coordinated with OWASP Foundation Staff by submitting an events description via OCMS. An approval that the event will be posted on the OWASP Wiki and Event announcement webpage will be sent from the OCMS input. Any request for funding support must follow normal funding request procedures separate from the OCMS submission. | All Events |
| Events must have an OWASP Wiki Page, or a webpage showing the OWASP logo and be linked to the OWASP wiki Events Pages | All Events |
| Only OWASP Board members or their designates may enter into contracts on behalf of the foundation | All Events |
| All finances must be handled by the OWASP Foundation | All Events |
| Complimentary conference admissions are provided to speakers, volunteers, staff, Global Board members and active OWASP Leaders.
A “Leader” is defined as a chapter or project leader that is clearly identified on the chapter or project wiki page AND has been documented as a leader in the Foundation’s records. If a leader registers for a conference complimentary ticket but does not appear for the conference, the chapter will be charged 60% of the retail cost of a conference ticket. |
All Events |
| OWASP individual members in good standing shall receive $50 off admission to all OWASP events charging more than $50 entry fee. | All Events |
| A complete budget must be submitted if the event requires any funds from the OWASP Foundation and funding requests will be reviewed and approved by OWASP Executive Director. Please submit a requests via our Contact Us link on the OWASP Wiki homepage. | Regional/Theme Conferences |
| An OWASP leader should be invited to provide welcome and state of the union. | All Events |
| Global AppSec Conferences must include training | Global AppSec Conferences |
| Global AppSec Conferences must charge an admission fee | Global AppSec Conferences |
| Sessions must be recorded and posted to the public after the conference | Global AppSec Conferences |
| There must be at least one networking event at the conference | Global AppSec Conferences |
| All Training providers are required to sign a Training Instructor Agreement | Training |
| Training revenue will be split 60/40 (OWASP/Training Provider) | Training |
| Each training class allows for two complimentary seats to be made available to OWASP Leaders. This must be included in the Training Instructor Agreement. These are available on a first come basis. Only one training seat per session is allowed per chapter to allow for diversity in distribution of seats.
If a leader registers for a complimentary training seat but does not attend the full training session the chapter will be charged 60% of the retail cost of the training session and the leader will not be given a complimentary ticket (conference or training sessions) for any other Global AppSec events in the following year. |
Training |
| Speakers must sign a Speaker Agreement | Speakers |
| Speakers will not receive compensation for their speaking engagement | Speakers |
| Event organizers must reach out to the WIA program to assist with the program committee and to help find suitable keynote and invited speakers. | Global AppSec Conferences & Regional Events |
| Event organizers must send an open call for participation for volunteers, papers committee. | Global AppSec Conferences & Regional Events |
| Event organizers should encourage all training and CFP proposals to go through the “Talk bootcamp” process. | Global AppSec Conferences & Regional Events |
| WIA initiative should lead a search for women keynotes, featured, panel speakers. | Global AppSec Conferences & Regional Events |
| Event organizers and WIA initiative should reach out to women speaker lists to encourage training proposals and speakers to submit through the normal CFP process. If there is to be a women in AppSec panels to be organized, the WIA initiative must be involved and feature predominantly women panelists. | Global AppSec Conferences & Regional Events |
These aren’t quotas, but a goal. Global events organizers are free to exceed these metrics.
*At least 10% of the program committee must be women, and must include the WIA initiative members *At least 50% of keynotes and featured speakers must be women *At least 25% of panel participants must be women. If there are no women participants, the panel should be cancelled. *At least 10% of talks must be women If these metrics cannot be reached, the organizing committee should reach out to the Conference Manager for assistance, and must apply for an exception if they can’t be reached after all avenues have been exhausted. |
Global AppSec Conferences |
These aren’t quotas, but an aspiration goal for regional events. Organizers are free to exceed these metrics.
*At least one of the program / papers committee must be a woman, and should include the WIA initiative members *At least one of keynotes, featured and invited speakers must be a woman *At least 25% of panel participants should be women. If a panel has no women participants, it should be cancelled *At least 10% of talks chosen should be women speakers |
Regional Events |
Conference Liaison Initiative
As one of their 2011 initiatives, the Global Conferences Committee started a Conference Liaison Program, where a member of the committee is paired with each of the Global AppSec organizing teams in order to assist them with their planning process as well as attend the conference to help trouble shoot any issues and sign necessary paperwork.
The following duties were initially set forth for the GCC liaison:
The GCC member shall:
- interface with the local planning committee at least 1 month before trip (attend planning call)
- Interact with planners/attendees while at conference
- Interact with Sponsors
- Sign conference contracts under $20,000 (once approved)
At the GCC meeting following the event, the traveling member will be expected to provide an post trip report covering:
- Assessment of facility
- Event Marketing Strategy
- Examination of Event Budget
- Estimation of Speaker Quality
- Sponsor engagement/cost-effectiveness & feedback
- Any notable comments from planners/attendees
- Any unique outstanding elements
- Any issues
| Event Name | Event Location | Date | GCC Liaison | Post-Event Report |
|---|---|---|---|---|
| AppSec EU 2011 | Dublin, Ireland | June 7-10, 2011 | Ralph Durkee | AppSecEU Liaison Report |
| AppSec North America 2011 | Minneapolis, MN, USA | Sept. 20-23, 2011 | Mark Bristow | AppSecNA Liaison Report |
| AppSec Latin America 2011 | Porto Alegre, Brazil | Oct. 4-7, 2011 | Lucas Ferreira | |
| AppSec Asia 2011 | Beijing, China | Nov. 8-11, 2011 | Lucas Ferreira | |
| AppSec Europe 2012 | Athens, Greece | July 9-13, 2012 | John Wilander | |
| AppSec North America 2012 | Austin, Texas, USA | Oct. 22-26, 2012 | TBD | |
| AppSec Latin America 2012 | ||||
| AppSec Asia 2012 |
GCC Records
Committee Records
Mailing List | Archives - Official Global Conferences Committee Mailing list. Used for all GCC communications and meeting announcements.
Global Conference Committee Budget
Committee meeting minutes - Committee Meeting minutes taken by the GCC Chair at each GCC meeting.
Global Conferences Committee Voting Record - records as of 15-July-2011
2011 Global Sponsorship doc -- Google doc
2011 Global Sponsorship doc - PDF
Contracts/Partnership agreement archive
Google Form for requesting general OWASP schwag/promotional materials.
