This site is the archived OWASP Foundation Wiki and is no longer accepting Account Requests.
To view the new OWASP Foundation website, please visit https://owasp.org

Difference between revisions of "August 8, 2011/Project Manager Report"

From OWASP
Jump to: navigation, search
 
(16 intermediate revisions by the same user not shown)
Line 1: Line 1:
 
== OWASP Project Manager Report ==
 
== OWASP Project Manager Report ==
 
==== Work accomplished since June 6, 2011 ====
 
==== Work accomplished since June 6, 2011 ====
===== Projects mailing list =====
+
===== OWASP Free Trainning Courses=====
===== Latam =====
+
*Altogether with [[User:Kate Hartmann|Kate Hartmann]], I have [https://www.owasp.org/index.php?title=LatamTour2011&action=history assisted] [[User:Fabio.e.cerullo|Fabio Cerullo]] with the setting up of the [[LatamTour2011]].
 
===== New Projects Set Up =====  
 
===== New Projects Set Up =====  
 
*[https://www.owasp.org/index.php/Projects/OWASP_GoatDroid_Project OWASP GoatDroid Project], led by Jack Mannino
 
*[https://www.owasp.org/index.php/Projects/OWASP_GoatDroid_Project OWASP GoatDroid Project], led by Jack Mannino
Line 18: Line 18:
 
*[https://www.owasp.org/index.php/Cheat_Sheets OWASP Cheat Sheets Project], led by Sherif Koussa and Jim Mannico
 
*[https://www.owasp.org/index.php/Cheat_Sheets OWASP Cheat Sheets Project], led by Sherif Koussa and Jim Mannico
  
===== Assessed Releases =====
+
*[[OWASP SIMBA Project|OWASP SIMBA Project]], led by Koen Vanderloock
  
*[https://www.owasp.org/index.php/Projects/OWASP_Zed_Attack_Proxy_Project/Releases/ZAP_1.3.0 OWASP Zed Attack Proxy Project – Release ZAP 1.3.0], led by Psiinon
+
*[[OWASP VFW Project|OWASP VFW Project]], led by Eduardo S. Scarpellini
 +
 
 +
===== Projects Reset Up =====
 +
*[[:Category:OWASP WebScarab Project|OWASP WebScarab Project]], led by Rogan Dawes
  
 
===== New Releases Set Up =====
 
===== New Releases Set Up =====
  
*[https://www.owasp.org/index.php/Projects/OWASP_Mantra_-_Security_Framework/Releases/Mantra_Security_Toolkit_-_0.61 OWASP Mantra - Security Framework – Release Mantra Security Toolkit – 0.61] (only the assessment templates) led by Abhi M BalaKrishnan
+
*[https://www.owasp.org/index.php/Projects/OWASP_Mantra_-_Security_Framework/Releases/Mantra_Security_Toolkit_-_0.61 OWASP Mantra - Security Framework – Release Mantra Security Toolkit – 0.61] (only the assessment templates), led by Abhi M BalaKrishnan
  
 
*[[Projects/OWASP ESAPI Objective - C Project/Releases/ESAPI Objective - C/Release v0.0.1|OWASP ESAPI Objective - C Project – Release v0.0.1]], led by Deepak Subramanian
 
*[[Projects/OWASP ESAPI Objective - C Project/Releases/ESAPI Objective - C/Release v0.0.1|OWASP ESAPI Objective - C Project – Release v0.0.1]], led by Deepak Subramanian
  
*[[Projects/OWASP ModSecurity Core Rule Set Project/Releases/ModSecurity 2.2.0|OWASP ModSecurity Core Rule Set Project - Release - ModSecurity 2.2.0]], (only the assessment templates) led by Ryan Barnett
+
*[[Projects/OWASP ModSecurity Core Rule Set Project/Releases/ModSecurity 2.2.0|OWASP ModSecurity Core Rule Set Project - Release - ModSecurity 2.2.0]], (only the assessment templates), led by Ryan Barnett
  
OWASP Esapi- Ruby, Release 0.30.0, Paolo Perego
+
*[[Projects/Owasp Esapi Ruby/Releases/Owasp Esapi Ruby v0.30.0|OWASP Esapi Ruby, Release 0.30.0]], led by Paolo Perego
https://rubygems.org/gems/owasp-esapi-ruby/versions/0.30.0
 
  
 +
*[[Projects/Opa/Releases/Build 218|OPA Project, Release Build 218]], led by Henri Binsztok and Adam Koprowski
  
 +
*[[Projects/OWASP iGoat Project/Releases/iGoat v1.0|OWASP iGoat Project, Release iGoat v1.0]], led by Kenneth R. van Wyk
  
 +
===== Releases Assessment =====
  
 +
*[https://www.owasp.org/index.php/Projects/OWASP_Zed_Attack_Proxy_Project/Releases/ZAP_1.3.0 OWASP Zed Attack Proxy Project – Release ZAP 1.3.0], led by Psiinon
  
 +
=====Projects Mailing List =====
  
 +
*Jason Li populated the owasp-projects mailing list with all known projects leaders so the Projects Committee could easily send announcements regarding OWASP projects news. I have supported this activity by gathering all email addresses and filling in projects inventory spreadsheet. By GPC decision, the list is [email protected] and it is announce-only by the GPC committee members (similar to how OWASP-all is announce-only by Board/staff members) and should be reserved for project announcements only.
  
 +
=====OWASP Newsletter =====
 +
*I've prepared GPC's data for the next issue of the OWASP Newsletter.
  
===== Work accomplished/roundly 6 months of activity =====
+
=====Routine Tasks =====
* My daily routine always includes answering a relatively wide range of questions regularly posed by OWASP members and mainly by OWASP Projects leaders. The variety of matters that I currently deal with can be checked in my email tool and the tree of folders built to store, follow up and organize them as follows [http://dl.dropbox.com/u/13817486/Screen%20Shots%20copy/1_Screen%20shot.png 1],[http://dl.dropbox.com/u/13817486/Screen%20Shots%20copy/2_Screen%20shot.png 2],[http://dl.dropbox.com/u/13817486/Screen%20Shots%20copy/3_Screen%20shot.png 3],[http://dl.dropbox.com/u/13817486/Screen%20Shots%20copy/4_Screen%20shot.png 4],[http://dl.dropbox.com/u/13817486/Screen%20Shots%20copy/5_Screen%20shot.png 5],[http://dl.dropbox.com/u/13817486/Screen%20Shots%20copy/6_Screen%20shot.png 6],[http://dl.dropbox.com/u/13817486/Screen%20Shots%20copy/7_Screen%20shot.png 7],[http://dl.dropbox.com/u/13817486/Screen%20Shots%20copy/8_Screen%20shot.png 8],[http://dl.dropbox.com/u/13817486/Screen%20Shots%20copy/9_Screen%20shot.png 9]. I would like to note that to perform this task, and all the others projects' related ones, I have always had relevant support and guidance from the OWASP Global Projects Committee.
+
*My daily routine always includes answering a relatively wide range of questions regularly posed by OWASP members and mainly by OWASP Projects leaders; I receive such inquiries either directly or through the [https://spreadsheets0.google.com/a/owasp.org/spreadsheet/ccc?key=0AhtB029bdcxGdFN1R2NIMTNROXN3dml4ZEcxXzJQYXc#gid=0 OWASP Website Global Feedback & Inquiry Form]. The variety of matters that I currently deal with can be checked in my email tool and the tree of folders built to store, follow up and organize them as follows [http://dl.dropbox.com/u/13817486/Screen%20Shots%20copy/1_Screen%20shot.png 1],[http://dl.dropbox.com/u/13817486/Screen%20Shots%20copy/2_Screen%20shot.png 2],[http://dl.dropbox.com/u/13817486/Screen%20Shots%20copy/3_Screen%20shot.png 3],[http://dl.dropbox.com/u/13817486/Screen%20Shots%20copy/4_Screen%20shot.png 4],[http://dl.dropbox.com/u/13817486/Screen%20Shots%20copy/5_Screen%20shot.png 5],[http://dl.dropbox.com/u/13817486/Screen%20Shots%20copy/6_Screen%20shot.png 6],[http://dl.dropbox.com/u/13817486/Screen%20Shots%20copy/7_Screen%20shot.png 7],[http://dl.dropbox.com/u/13817486/Screen%20Shots%20copy/8_Screen%20shot.png 8],[http://dl.dropbox.com/u/13817486/Screen%20Shots%20copy/9_Screen%20shot.png 9]. I would like to note that to perform this task, and all the others projects' related ones, I have always had relevant support and guidance from the OWASP Global Projects Committee.
*As Project Manager, a substantial part of my work always involves setting up new projects and releases. [http://globalprojectscommittee.wordpress.com/2011/06/03/owasp-projects-overview-last-6-months/ '''Please check here the work done on Projects'''].
+
*I've kept all [[OWASP Projects Dashboard 2.0]]'s databases up-to-date as follows:
*I've built the [[OWASP Projects Dashboard 2.0]] and kept all of its databases up-to-date as follows:
 
 
** [[OWASP Reviews Dashboard]],
 
** [[OWASP Reviews Dashboard]],
 
** [[OWASP Project Reviewers Database]],
 
** [[OWASP Project Reviewers Database]],
 
** [[OWASP Projects Dashboard 2.0/By Set Up Order|Projects 2.0/By Set Up Date Order]],
 
** [[OWASP Projects Dashboard 2.0/By Set Up Order|Projects 2.0/By Set Up Date Order]],
 
** [[OWASP Projects Dashboard 2.0/By Alphabetical Order|Projects 2.0/By Alphabetic Order]],
 
** [[OWASP Projects Dashboard 2.0/By Alphabetical Order|Projects 2.0/By Alphabetic Order]],
** [[OWASP Training]].
+
** [[OWASP Training]],
*I've contributed to the [[Summit 2011]] setting up. All the organization process was mainly a teamwork but my contribution can be divided in 4 distinct parts. The first concerned the initial task of choosing venue and partners and obtaining an initial cost estimation. The second regarded the final push up to make sure all the Summit participants had their task of setting up partial working sessions timely concluded. The third, has involved designing a flexible schedule concept to deal with both a very large amount of contents to be treated and the need of deciding on a daily basis what would be scheduled. This part of my participation also includes the integration of the team that kept the scheduled updated throughout the entire event. The fourth, concerned the work previously done to assure that the [[Summit 2011 Working Sessions/Session098|presence in the event of a Portuguese Government representative]] and that the right conditions to produce a protocol for mutual engagement in education activities were created.
+
** [https://spreadsheets0.google.com/a/owasp.org/spreadsheet/ccc?pli=1&key=tF9r45eprbpdY6xuSbwEuMw#gid=0 OWASP Project Inventory].
*I've [https://docs.google.com/document/d/1anLohGeSGADyGoqXreN5tt7gt7HjMZlII8KBjRhAwOk/edit?hl=en_US&authkey=COXMkmg  translated from Portuguese to English the draft made available by Luís Magalhães], the Portuguese Government representative that was present in the Summit, for us to work on and build up a Protocol of Cooperation between UMIC - The Knowledge Society Agency and OWASP Foundation Inc.
+
==== Proposal of future activity ====
**I've promoted and had a few meetings with Dinis Cruz and Carlos Serrão (Portuguese Chapter Leader, acting in representation of ISCTE, a Portuguese university) to try and come up with a concept of OWASP Training Academy that can support the protocol with UMIC. We are thinking of a concept in which the training is OWASP materials based, the courses are organized by Universities and the trainers are provided by private companies. Currently, we are waiting for ISCTE's clarification in terms of its role in all this process.
 
*Together with [[:User:Conpap|Konstantinos Papapanagiotou]], I've set the [[Greece/Training/OWASP projects and resources you can use TODAY|OWASP projects and resources you can use TODAY/Greece Chapter Training Course]].
 
*[[User:Sandra Paiva|Sandra Paiva]]  has been contracted, in October 2010 (3 months length contract) to the position of OWASP Training Manager, to be responsible for managing the OWASP ‘Chapter-lead’ Training activities and operationalizing the concept of 'OWASP Academies'. Throughout this process, she was managed by Dinis Cruz and reported directly to the OWASP Board. I have worked daily and directly with her providing training and guidance on all aspects related with OWASP organization and culture and trained her on the wiki usage, manipulation and coding (creation and update of pages, creation of tables and databases).
 
 
 
===== Proposal of future activity =====
 
 
*To continue answering all received projects' related questions.
 
*To continue answering all received projects' related questions.
 
*To continue setting up new projects and new releases as requested.
 
*To continue setting up new projects and new releases as requested.
Line 64: Line 68:
 
**Design the second leg of the assessment criteria 2.0, i.e., its Project Health component.  
 
**Design the second leg of the assessment criteria 2.0, i.e., its Project Health component.  
 
*As soon as the above referred assessment's second leg is designed and approved, to begin a process to evaluate as much Projects as possible.
 
*As soon as the above referred assessment's second leg is designed and approved, to begin a process to evaluate as much Projects as possible.
*[https://lists.owasp.org/pipermail/committees-chairs/2011-May/000153.html To set up] the OWASP free training component of the [https://lists.owasp.org/pipermail/committees-chairs/2011-June/000160.html OWASP LatAm Tour], if the activity is ultimately approved.
 
 
*To set up all the [https://www.owasp.org/index.php/OWASP_Training#tab=Initiatives OWASP free training courses] that may be requested by OWASP Chapters.
 
*To set up all the [https://www.owasp.org/index.php/OWASP_Training#tab=Initiatives OWASP free training courses] that may be requested by OWASP Chapters.
*To continue working with Dinis Cruz, Carlos Serrão and Konstantinos Papapanagiotou to produce an initial/draft proposal of an OWASP Training Academy.
+
*To work with Dinis Cruz, Carlos Serrão and Konstantinos Papapanagiotou to produce an initial/draft proposal of an OWASP Training Academy.

Latest revision as of 15:57, 8 August 2011

OWASP Project Manager Report

Work accomplished since June 6, 2011

OWASP Free Trainning Courses
New Projects Set Up
Projects Reset Up
New Releases Set Up
Releases Assessment
Projects Mailing List
  • Jason Li populated the owasp-projects mailing list with all known projects leaders so the Projects Committee could easily send announcements regarding OWASP projects news. I have supported this activity by gathering all email addresses and filling in projects inventory spreadsheet. By GPC decision, the list is [email protected] and it is announce-only by the GPC committee members (similar to how OWASP-all is announce-only by Board/staff members) and should be reserved for project announcements only.
OWASP Newsletter
  • I've prepared GPC's data for the next issue of the OWASP Newsletter.
Routine Tasks

Proposal of future activity

  • To continue answering all received projects' related questions.
  • To continue setting up new projects and new releases as requested.
  • To continue spreading the GPC templates through all OWASP projects.
  • To implement all GPC requests and concretely to support its plans to:
    • Carry out the Project Hosting initiative as a tool to provide a centralized repository for OWASP;
    • Build a new OWASP Projects Portal;
    • Design the second leg of the assessment criteria 2.0, i.e., its Project Health component.
  • As soon as the above referred assessment's second leg is designed and approved, to begin a process to evaluate as much Projects as possible.
  • To set up all the OWASP free training courses that may be requested by OWASP Chapters.
  • To work with Dinis Cruz, Carlos Serrão and Konstantinos Papapanagiotou to produce an initial/draft proposal of an OWASP Training Academy.