This site is the archived OWASP Foundation Wiki and is no longer accepting Account Requests.
To view the new OWASP Foundation website, please visit https://owasp.org

Difference between revisions of "Chapter Leader Handbook (OLD)"

From OWASP
Jump to: navigation, search
m
m
 
(13 intermediate revisions by 5 users not shown)
Line 1: Line 1:
This handbook aims to guide new and experienced OWASP Chapter leaders in starting and maintaining an active chapter community. It outlines items that the [[NYNJMetro|NY/NJ Metro Local Chapter]] has done to be successful in its market.
+
[[Category:Chapter_Handbook]]
  
==First Things First==
+
'''Note: this is the OLD chapter handbook. The new [[:Category:Chapter_Handbook|chapter handbook]] is being written by the [[Global Chapter Committee|global chapter committee]] and expected to be ready in Q2 2009.
On your chapter page, ensure you clearly identify who is on the board of the chapter, the phone numbers for them and email addresses. The local chapter should have a published mailing address (use a PO Box or one of the board member's addresses perhaps).
+
'''
  
==How to Generate Interest==
+
This handbook aims to guide new and experienced OWASP Chapter leaders in starting and maintaining an active chapter community. It outlines items that the [[NYNJMetro|NY/NJ Metro Local Chapter]] has done to be successful in its market.
* Talk to local .edu and involve the university and its computer science students - you might even get access to the lab!
 
* Talk to your local information security organizations, such as ISSA, ISACA, FBI/Infragard, HTCIA and other local and international orgs., to cross-promote and joint meetings ~ be a guest speaker.
 
* Use OWASP chapter mailing lists to alert members of meetings and monthly events.
 
* Conduct a annual survey (use a web form.... what a concept) to get feedback from the mailing list/chapter members what do they want to see in your chapter.
 
* Ask for help, a successful chapter has several board members (there are no limits) so share the fun and the pain ;)
 
* Do a local talk about a OWASP project that you have been involved with.
 
 
 
==Sample Action Plan to (re)start your Chapter==
 
An action plan that you can use is:
 
* Find a location/venue sponsor for first meeting, this could be a college a business, a restraunt
 
* Enable sponsorship for refreshments from a local source
 
* Always cover OWASP mission, goals and explain the web application security problem in a general way to attract a large crowd and to educate the new members.
 
* Send out the invitation and also try to let other local security organizations to announce the meeting as well. These can be local ISSA, ASIS, Infragard or ISACA chapters.
 
* Try to get some local press attention free press is great
 
* Hook up with government and academic contacts in your area to relay the invitation and generate some interest.
 
* Find out what companies are active in this domain in your area in order to raise their interest and support.  
 
* Network, network, network, …
 
* The invitation should contain a request to forward it to other interested parties.
 
* Be sure to send out this invitation at least one month before the meeting
 
...
 
 
 
=Chapter Meetings=
 
==How many Meetings should be Organized yearly?==
 
This depends on the activity level of the local OWASP members. There should be minimum 4 events per year to be a active chapter.
 
 
 
==Chapter Meeting Check List==
 
a. PRE EVENT - Obtain primary sponsor for meeting location
 
 
 
b. PRE EVENT - Obtain co-sponsorship(s) to cover event expenses - encourage raffle item
 
  
c. PRE EVENT - Obtain educational topics/speakers for the event with a abstract and bio
+
==Identifying the Chapter Board==
 +
On your chapter page, ensure you clearly identify who is on the board of the chapter, including their phone numbers and/or email addresses. The Local Chapter should have a published mailing address. Use a PO Box or one of the board member's (company's) addresses, perhaps.
  
e. PRE EVENT - Update the RSVP form for each meeting
+
It is highly recommended to have at a min. (2) chapter leaders and there are is no limit... in NYC there are 10 chapter leaders and each have a role in the success of the chapter so work with your peers being a chapter leader requires 10+ hrs per month and we are all BUSY
  
f. PRE EVENT - Update the OWASP website to reflect that when, where, who
+
==Generating Interest==
 +
* Talk to local higher education institutions. Involve the university and its computer science students—you might even get access to their lab!
 +
* Talk to the local chapters of information security organizations. For example, [http://www.issa.org/ ISSA], [http://www.isaca.org/ ISACA], [http://www.infragard.net/ FBI/Infragard], [http://www.htcia.org/ HTCIA] and other local and international organizations. Cross-promote and/or join meetings, be a guest speaker and host guest speakers.
 +
* Use OWASP chapter [http://lists.owasp.org/mailman/listinfo mailing lists] to alert members of meetings and monthly events.
 +
* Conduct an annual survey (use a web form) to get feedback from the mailing list/chapter members—what do they want to see in your chapter?
 +
* Ask for help. A successful chapter has several board members (there are no limits) so share the fun and the pain. &smiley;
 +
* Do a local talk about OWASP [[Projects]] that you have been involved with.
  
g. PRE EVENT x4 - Communicate via email to the mailing list
+
==(Re-)Starting Your Chapter==
 +
A sample action plan that you can use is:
 +
* Find a location/venue sponsor for a first meeting. This could be a college, a business, a restraunt...
 +
* Enable sponsorship for refreshments from a local source.
 +
* Always cover the OWASP [[About OWASP|mission and goals]]. Explain the web application security problem in a general way to attract a large crowd and to educate the new members and guests.
 +
* Send out an invitation/announcement and also try to let other local security organizations know about the meeting as well. These can be local ISSA, ASIS, Infragard, ISACA or other chapters.
 +
* Try to get some local press attention—free press is great.
 +
* Hook up with government and academic contacts in your area to relay the invitation and generate some interest.
 +
* Find out what companies are active in this domain in your area in order to raise their interest and support.
 +
* Meeting invitations/announcements should contain a request to forward it to other interested parties.
 +
* Be sure to send out this invitation at least one month before the meeting.
 +
* Network, network, network!
  
h. PRE EVENT x2 -Communicate to other orgs - ISSA, ISACA, INFRAGARD etc... to raise awareness as well as news media, blogs and other
+
Etc.
mailing lists.
 
  
i. PRE EVENT - Line up the refreshment logistics based on RSVP #
+
==Chapter Meetings==
 +
===Meeting Frequency===
 +
This depends on the activity level of the local OWASP community and number of members. There should be a minimum of four events per year to be considered an active chapter.
  
j. PRE/EVENT - Pay for the expenses (money has to come from (b))
+
===Chapter Meeting Checklist===
 +
Pre-event:
 +
# Obtain primary sponsor for meeting location.
 +
# Obtain co-sponsorship(s) to cover event expenses; encourage raffle item. <b> Use the DONATE NOW button on your chapter page </b>
 +
# Obtain educational topics/speakers for the event with an abstract and bio.
 +
# Update the RSVP form for each meeting.
 +
# Update the OWASP web site to reflect the when, where, who...
 +
# Communicate via email to the mailing list.
 +
# Communicate to other organizations&mdash;ISSA, ISACA, Infragard, etc.&mdash;to raise awareness, as well as news media, blogs and other mailing lists.
 +
# Line up the refreshment logistics based on RSVP'd attendees.
 +
# Pay for the expenses and submit expenses to Kate Hartman to get your money back.... use a credit card that gives you points ;)
  
k. EVENT - Arrive early set-up meeting location
+
At-event:
 +
# Arrive early, set-up meeting location.
 +
# Pre-flight check: A/V, computers, final approval of speaker's PowerPoint (no sales pitch).
 +
# Execute event. (Badges, A/V, etc.)
 +
# Questionnaire/survey/feedback form&mdash;use a survey web form (e.g., [http://www.formsite.com/ formsite.com], [http://www.surveymonkey.com/ surveymonkey.com], [http://www.zoomerang.com/ zoomerang.com], etc.) or build your own.
  
l. EVENT - Pre-flight check A/V, Computers, Final APPROVAL of Speaker
+
Post-event:
PowerPoint's (no sales pitch)
+
# Send out CPE credits to attendees that requested them or explain to them that ISC2 as a example is a self certify
 +
# Review event and ways to improve with the board members.
 +
# Select topic focus for next event based on feedback from attendees or survey.
 +
# What was good, what was bad?
  
m. EVENT - <EXECUTE EVENT> (Badges/AV/Misc.)
+
And repeat.
  
n. EVENT -Questionnaire/Survey/Feedback form - Use a survey type webform (example: www.formsite.com or build your own you g33k)
+
===Chapter Meeting Template===
 +
You can use this "template" on your chapter page for listing meeting details:
  
o. POST-EVENT - Send out CPE credits to attendees that requested them.
+
<div style="text-indent:20px">
 +
====WHEN====
 +
''Fill in date and timeframe''
 +
====WHERE====
 +
''Fill in meeting place''
 +
====AGENDA====
 +
* 18h00 - 18h30: Networking / Food, Drinks
 +
* 18h30 - 19h00: ''Fill in''
 +
* 19h00 - 19h30: ''Fill in''
  
p. POST-EVENT - Review event and ways to improve with the other board members.
+
</div>
  
q. POST-EVENT - Select topic focus for next event based on feedback from attendees or survey
+
Etc.
  
r. POST-EVENT - Money in - Money Out, Balance
+
==Frequently Asked Questions==
 +
===''I don't know the list of members.===
 +
You can get the membership for your chapter from the administrative interface for your mailing list. If you've forgotten your password, contact [mailto:[email protected] Kate Hartmann] to reset it for you. If you need to contact all the members, you can send a message to the mailing list, and they should all receive it.
  
r - REPEAT ABOVE
+
===''Does subscribing to a chapter mailing list mean official membership in OWASP?''===
 +
No, Membership details can be found on the [[Membership]] page.
  
==Chapter Meeting Template==
+
===''How do I update my OWASP Chapter page?''===
This template you can use on your chapter page for listing chapter meeting details:
+
First, create your wiki account on the [[:Special:Userlogin|login]] page. Then go to your [[:Category:OWASP Chapter|chapter]] page and click the edit link. You can use the meeting template above to list your next chapter meeting details.
===WHEN===
 
''Fill in date and timing''
 
===WHERE===
 
''Fill in place''
 
===AGENDA===
 
* 18h00 - 18h30: Networking / Food, Drinks <BR>
 
* 18h20 - 18h40: ''Fill in''<BR>
 
&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;'''tbd'''<BR>
 
* 18h45 – 19h00: ''Fill in''<BR>
 
&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;'''tbd'''<BR>
 
* 19h00 - 19h55: ''Fill in''<BR>
 
&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;'''tbd'''<BR>
 
&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;''Presentation + Discussion?''<BR>
 
*20h05 - 21h00: ''Fill in''<BR>
 
&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;'''tbd<BR>
 
&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;''Presentation + Discussion?''<BR>
 
  
=Frequently Asked Questions=
+
===''I have a great idea to help other chapters!''===
==''I don't know the list of members. Can you advise how I can stay updated about this?''==
+
Log in to the wiki and edit this page. Or send an email to the [https://lists.owasp.org/mailman/listinfo/owasp-chapters chapter leaders mail list]. You ''are'' on that list, right?
You can get the membership for your chapter from the administrative interface for your mailing list.  If you've forgotten your password, please contact Larry Casey ([email protected]) to reset it for you.
 
If you need to contact all the members, you can send a message to the mailing list, and they should all receive it.
 
==''I seem to have forgotten the list admin passwd''==
 
If you've forgotten your password, please contact Larry Casey ([email protected]) to reset it for you.
 
==''How is a chapter funded from the membership fees?''==
 
Chapters are not funded from membership fees, although OWASP is considering just how to share a portion of the membership fees from members that are affiliated with a particular chapter.  
 
==''Does enrollment to the mailing list mean official membership to OWASP?''==
 
Membership details are here - http://www.owasp.org/index.php/Membership.
 
=='' How do I update my OWASP Chapter page?''==
 
First, create your Wikimedia account. Then go to your chapter page and hit the edit link. You can use the Chapter Meeting Template above to list your next chapter meeting details.
 
  
=='' I have a great idea that has worked to help other chapters''==
+
==Further Help==
Well you just need to login to the wiki and edit this page, you may then want to send a email to the chapter leaders email list... you are on that list right?
+
If you have any questions you can simply email [mailto:[email protected] [email protected]] or post a message to the [https://lists.owasp.org/mailman/listinfo/owasp-chapters chapter leaders mail list].
  
If you have any questions you can simply email [email protected] or contact one of the other chapter leaders.
+
[[Category:Chapter Resources]]

Latest revision as of 12:27, 27 May 2009


Note: this is the OLD chapter handbook. The new chapter handbook is being written by the global chapter committee and expected to be ready in Q2 2009.

This handbook aims to guide new and experienced OWASP Chapter leaders in starting and maintaining an active chapter community. It outlines items that the NY/NJ Metro Local Chapter has done to be successful in its market.

Identifying the Chapter Board

On your chapter page, ensure you clearly identify who is on the board of the chapter, including their phone numbers and/or email addresses. The Local Chapter should have a published mailing address. Use a PO Box or one of the board member's (company's) addresses, perhaps.

It is highly recommended to have at a min. (2) chapter leaders and there are is no limit... in NYC there are 10 chapter leaders and each have a role in the success of the chapter so work with your peers being a chapter leader requires 10+ hrs per month and we are all BUSY

Generating Interest

  • Talk to local higher education institutions. Involve the university and its computer science students—you might even get access to their lab!
  • Talk to the local chapters of information security organizations. For example, ISSA, ISACA, FBI/Infragard, HTCIA and other local and international organizations. Cross-promote and/or join meetings, be a guest speaker and host guest speakers.
  • Use OWASP chapter mailing lists to alert members of meetings and monthly events.
  • Conduct an annual survey (use a web form) to get feedback from the mailing list/chapter members—what do they want to see in your chapter?
  • Ask for help. A successful chapter has several board members (there are no limits) so share the fun and the pain. &smiley;
  • Do a local talk about OWASP Projects that you have been involved with.

(Re-)Starting Your Chapter

A sample action plan that you can use is:

  • Find a location/venue sponsor for a first meeting. This could be a college, a business, a restraunt...
  • Enable sponsorship for refreshments from a local source.
  • Always cover the OWASP mission and goals. Explain the web application security problem in a general way to attract a large crowd and to educate the new members and guests.
  • Send out an invitation/announcement and also try to let other local security organizations know about the meeting as well. These can be local ISSA, ASIS, Infragard, ISACA or other chapters.
  • Try to get some local press attention—free press is great.
  • Hook up with government and academic contacts in your area to relay the invitation and generate some interest.
  • Find out what companies are active in this domain in your area in order to raise their interest and support.
  • Meeting invitations/announcements should contain a request to forward it to other interested parties.
  • Be sure to send out this invitation at least one month before the meeting.
  • Network, network, network!

Etc.

Chapter Meetings

Meeting Frequency

This depends on the activity level of the local OWASP community and number of members. There should be a minimum of four events per year to be considered an active chapter.

Chapter Meeting Checklist

Pre-event:

  1. Obtain primary sponsor for meeting location.
  2. Obtain co-sponsorship(s) to cover event expenses; encourage raffle item. Use the DONATE NOW button on your chapter page
  3. Obtain educational topics/speakers for the event with an abstract and bio.
  4. Update the RSVP form for each meeting.
  5. Update the OWASP web site to reflect the when, where, who...
  6. Communicate via email to the mailing list.
  7. Communicate to other organizations—ISSA, ISACA, Infragard, etc.—to raise awareness, as well as news media, blogs and other mailing lists.
  8. Line up the refreshment logistics based on RSVP'd attendees.
  9. Pay for the expenses and submit expenses to Kate Hartman to get your money back.... use a credit card that gives you points ;)

At-event:

  1. Arrive early, set-up meeting location.
  2. Pre-flight check: A/V, computers, final approval of speaker's PowerPoint (no sales pitch).
  3. Execute event. (Badges, A/V, etc.)
  4. Questionnaire/survey/feedback form—use a survey web form (e.g., formsite.com, surveymonkey.com, zoomerang.com, etc.) or build your own.

Post-event:

  1. Send out CPE credits to attendees that requested them or explain to them that ISC2 as a example is a self certify
  2. Review event and ways to improve with the board members.
  3. Select topic focus for next event based on feedback from attendees or survey.
  4. What was good, what was bad?

And repeat.

Chapter Meeting Template

You can use this "template" on your chapter page for listing meeting details:

WHEN

Fill in date and timeframe

WHERE

Fill in meeting place

AGENDA

  • 18h00 - 18h30: Networking / Food, Drinks
  • 18h30 - 19h00: Fill in
  • 19h00 - 19h30: Fill in

Etc.

Frequently Asked Questions

I don't know the list of members.

You can get the membership for your chapter from the administrative interface for your mailing list. If you've forgotten your password, contact Kate Hartmann to reset it for you. If you need to contact all the members, you can send a message to the mailing list, and they should all receive it.

Does subscribing to a chapter mailing list mean official membership in OWASP?

No, Membership details can be found on the Membership page.

How do I update my OWASP Chapter page?

First, create your wiki account on the login page. Then go to your chapter page and click the edit link. You can use the meeting template above to list your next chapter meeting details.

I have a great idea to help other chapters!

Log in to the wiki and edit this page. Or send an email to the chapter leaders mail list. You are on that list, right?

Further Help

If you have any questions you can simply email [email protected] or post a message to the chapter leaders mail list.