This site is the archived OWASP Foundation Wiki and is no longer accepting Account Requests.
To view the new OWASP Foundation website, please visit https://owasp.org

Difference between revisions of "Global Education Committee"

From OWASP
Jump to: navigation, search
(Marketing efforts)
m (removing paypal link)
 
(78 intermediate revisions by 14 users not shown)
Line 1: Line 1:
[[Category:OWASP Project]]
+
__NOTOC__
 +
{{Global_Committee_Retirement}}
  
= About the Global Education Committee =
+
==== About the Committee ====  
'''The Global Education Committee was created during the OWASP EU Summit in Portugal 2008.  The primary purpose of the Global Education Committee is: to work with the [https://www.owasp.org/index.php/Category:OWASP_Education_Project OWASP Education Project] to provide educational materials for both internal and external users, develop liaisons with educational institutions worldwide.'''
+
'''The Global Education Committee''' was created during the OWASP EU Summit in Portugal 2008.  <br>
 +
The primary purpose of the Global Education Committee is: to work with the [https://www.owasp.org/index.php/Category:OWASP_Education_Project OWASP Education Project] to provide educational materials for both   <br>internal and external users, develop liaisons with educational institutions worldwide.
  
 
== Mission ==
 
== Mission ==
 
Provide awareness, training and educational services to corporate,
 
Provide awareness, training and educational services to corporate,
 
government and educational institutions on application security.
 
government and educational institutions on application security.
 
 
== Vision ==
 
== Vision ==
 
Make OWASP educational material globally available as a well known resource
 
Make OWASP educational material globally available as a well known resource
Line 14: Line 15:
  
 
== Committee Members ==
 
== Committee Members ==
Education Committee (Board Member Rep: [mailto:seba@owasp.org Seba])
+
Chairs: [mailto:martin.knobloch@owasp.org Martin Knobloch] (Netherlands)  
  
[mailto:martin.knobloch@owasp.org Martin Knobloch] (Netherlands)
+
* [mailto:eduardo.neves@owasp.org Eduardo Neves] (Brazil)
 +
* [mailto:[email protected] Cecil Su] (Singapore)
 +
* [mailto:[email protected] Fabio Cerullo] (Ireland)
 +
* [mailto:[email protected] Anthony Gottlieb] (U.S.)
 +
* [mailto:[email protected] Sebastien Gioria] (France)
 +
* [mailto:[email protected] Carlos Serrão] (Prortugal)
 +
* [mailto:[email protected] Kuai Hinjosa] (U.S.)
 +
* [mailto:[email protected] Luiz Otavio Duarte] (Brazil)
  
• [mailto:[email protected] Mano Paul] (U.S.)
 
  
• [mailto:[email protected] Eduardo Neves] (Brazil)
+
<hr>
 +
<br>
  
• [mailto:[email protected] Kuai Hinjosa] (U.S.)
+
==== 2012 Goals ====
  
• [mailto:[email protected] Cecil Su] (Singapore)
+
== Goals 2012 ==
 +
#Training Events
 +
#Academy Portal
 +
#Student Chapter Program
 +
#University Outreach
  
• [mailto:[email protected] Fabio Cerullo] (Ireland)
+
== OWASP Dependencies  ==
 +
*OWASP Projects
 +
# OWASP Education Project
 +
#OWASP Academy Portal Project
 +
#OWASP Educational Supporters
  
[mailto:andrzej.[email protected].org.pl Andrzej Targosz] (Poland)
+
*Other OWASP Committees
 +
#'''Global Membership Committees:''' OWASP Student Members
 +
#'''Global Chapter Committee:''' OWASP Student Chapters
 +
<hr>
 +
* [http://www.owasp.org/index.php/File:OWASP_Global_Education_Committee.pptx Global Education Committee Presentation ]
  
[https://www.owasp.org/index.php/How_to_Join_a_Committee How to join this committee]
+
[ [[GEC 2011 Plan|2011 Plan]] | [[GEC 2010 Plan|2010 Plan]]]
  
[https://lists.owasp.org/mailman/listinfo/global_education_committee Join our mailing list]
+
==== Major Initiatives ====
 +
== '''[[OWASP Training|OWASP Training]]''' ==
  
== Scheduled Meetings  ==
+
The main goal of OWASP Training is to support Local Chapters' training activities in a way that allows OWASP to use a model that, <br>
<pre>
+
despite specific and punctual adjustments, can be easily replicated and become the main frame for all Chapter-led training events.
The Global Education Committee Meetings take place via Skype, see below for the local time:
 
        3:30 p.m. @ Austin, Texas
 
        4:30 p.m. @ New York
 
        7:30 p.m. @ Brasil
 
        22:30 a.m. @ Netherlands
 
        5:30 a.m. @ Singapore (following day)
 
</pre>
 
Next meeting(s) scheduled for:
 
* '''January 29th 2009'''
 
* '''Februari 12th 2009'''
 
  
= Agenda / Timeline <font color="red">'''(DRAFT)'''</font> =
+
To know more about the OWASP Training concept, please see the '''[[OWASP Training|OWASP Training page]]'''.
''' Deadline wednesday, 4th Februari'''
 
== Tasks ==
 
''' 60 days to make a proposal '''
 
* ''' December 20th '''  - first draft of the proposal
 
* ''' January 16th ''' - submit
 
  
 +
==  '''[[OWASP Academies|OWASP Academies]]''' ==
  
== Targets <font color="red">'''(DRAFT)'''</font> ==
+
The idea of the OWASP Academies is to conceive a frame under which work should be done with Universities, Polytechnic Institutes, <br>
Below you can find the timeline, what has to be achieved by when.  
+
IT Schools and other Academic institutions with a view to establish solid relationships and develop with these organisms ways to collaborate <br>
All tasks must be SMART!
+
and participate in the design of courses focused on web application security.
 +
 
 +
OWASP has the knowledge and critical mass to give an invaluable input to any Academy focusing on this area by:
 +
* contributing with its expertise in the definition of curricula and course contents that explore and study the web security field;
 +
* making available to the Academy its pool of interested and willing security experts as trainers.  
 +
 
 +
To know more about the OWASP Academies and the activities developed, please see the '''[[OWASP Academies|OWASP Academies page]]'''.
  
 
{| class="prettytable"
 
{| class="prettytable"
! Task
+
! Initiative
 +
! Priority
 +
! Associated Goals
 +
! Description
 +
! Status
 
! Deadline
 
! Deadline
! Type
+
! Assignees
! Status
 
! Description
 
! Who
 
|-
 
| [[Categorize (Organization) of educational materials]]
 
| '''TBD'''
 
| Message
 
| Status
 
| Categorize / Organization of the educational materials for audience by roles and responsibilities/technologies and use the summit workshop notes.
 
| Martin
 
|-
 
| [[Train the trainers (Teach the teachers)]]
 
| '''Q1/Q2/Q3/Q4 2009'''
 
| Delivery
 
| Planning
 
| Develop a train the trainer program that will train trainers to deliver training on OWASP related material.
 
| Mano
 
|-
 
| [[Create an online assessment and training portal]]
 
| '''Q2/Q3/Q4 2009'''
 
| Delivery
 
| Planning
 
| Develop an OWASP assessment and training portal that end users can use to gauge their knowledge on OWASP concepts and training providers can use to promote their training offerings.
 
| Mano
 
|-
 
| [[OWASP Boot Camp Project]]
 
| '''Proposal:''' February 2009 '''Final:''' Oktober 2009 at OWASP AppSec US 2009
 
| Delivery
 
| started
 
| OWASP Boot Camp about the OWASP projects, to deliver a Boot Camp presentation should be one of the criteria to get an alpha status as project
 
| Martin
 
|-
 
| [[OWASP CTF event]]
 
| OWASP AppSec Denver 2009
 
| Delivery
 
| Status
 
| Description
 
| Martin
 
|-
 
| [[Speakers Bureau Project]]
 
| '''TBD'''
 
| Delivery
 
| '''started'''
 
| List of speakers, Name, Bio, Topics, History <br>
 
Speakers in conferences (OOTM ask for funds on this)/summit
 
| Martin
 
|-
 
| [[Marketing efforts]]
 
| '''TBD (discussion with other members)'''
 
| Awareness Services
 
| Status
 
| Flyers or Brochures of OWASP Top 10, Testing Guide.
 
| Eduardo
 
|-
 
| [[Internationalization of the training materials]]
 
| '''TBD (discussion with Juan)'''
 
| Awareness Services
 
| Status
 
| Liaise with Juan Calderon for translation services for highly spoken languages
 
| Eduardo
 
|-
 
| [[Education material]]
 
| '''TBD'''
 
| Training & Educational Services
 
| Status
 
| All projects should be summoned to create educational material (training service)
 
1) Each Projects --> Documents (help), Tool, Training; Live CD (Portable)
 
| Martin
 
|-
 
| [[Educational Academic Services]]
 
| '''TBD'''
 
| Training & Educational Services
 
|
 
 
 
3 Universities already in contact with and planning OWASP events to participate in.
 
 
 
| Incorporate OWASP into the following top 5 Universities, within the next 12 months by introducing OWASP training and education resources at University's events.
 
 
1) New York University
 
2) Cornell University
 
3) Princeton University
 
4) University of Minnesota
 
5) Columbia University
 
 
 
As a result of these initiative we would hope to see:
 
 
 
1) Confirming participation at arranged events
 
2) Asking Universities to recognize they are using our resources by allowing us to place their names in wiki pages such as http://www.owasp.org/index.php/OWASP_Top_Ten_Project
 
3) University faculty, staff and students participate in local and international events/meetings
 
4)  University faculty, staff and students contribute to OWASP projects
 
 
 
|Kuai Hinojosa
 
 
|}
 
|}
  
= Proposal <font color="red">'''(DRAFT)'''</font> =
 
== Categorize (Organization) of educational materials ==
 
Objective: Categorize / Organize educational material, estyle the Education Project website.<br>
 
 
Activities/Deadline:<br>
 
* Categorize education material according to the CLASP roles<br>
 
* Group material into management-ish, student-ish, technical-ish <br>
 
 
Benefits<br>
 
Target specific demographic (managers, students...) Provide easy access to education material. Efficient categorization of education materials.
 
 
== Train the trainers (Teach the teachers) ==
 
Objective:
 
Develop a train the trainer program that will train trainers to deliver training on OWASP related material.
 
 
Activities/Deadline:
 
# Develop a criteria to identify and approve trainers / Q1 2009
 
# Identify pertinent OWASP related material that will be included in the training kit / Q2 2009. This is dependent on the education project organizing material.
 
# Create a training toolkit with pre-built presentation and training materials, assessments etc. / Q3 2009
 
# Conduct train the trainer sessions (remote or in-person) / Q4 2009
 
 
Benefits:
 
The training kit and trained trainers will be available resources promoting OWASP in local events worldwide.
 
 
== Create an online assessment and training portal ==
 
Objective:
 
Develop an OWASP assessment and training portal that end users can use to gauge their knowledge on OWASP concepts and training providers can use to promote their training offerings.
 
 
Activities/Deadline:
 
# Generate OWASP assessment items (can use the testing guide and other sources) / Q2-Q3 2009
 
# Develop an assessment portal to deliver taking of assessments with robust reporting by knowledge area / Q4 2009
 
# Develop a training portal to allow training providers to publish and promote their training offerings / Q4 2009
 
This can be developed as a summer of code project but is not a requirement.
 
 
Benefits:
 
Assessments that can be offered in OWASP events and other conferences to users will increase OWASP awareness. The portal can become the link between trainers and trainees and will eventually help in increasing the awareness and knowledge of application security in the industry.
 
 
== OWASP Boot Camp Project ==
 
Objective<br>
 
To deliver a Boot Camp session which would lead to be one of the main criteria to produce alpha status projects
 
Activities/Deadline:<br>
 
  
Benefits<br>
+
==== Committee Meetings ====
  
== OWASP CTF event ==
+
== Monthly Report Format ==
Objective
+
Date of last update: Monday, September 5th
Generate a Capture The Flag framework to be offered at OWASP events
+
Updated by: Martin
  
Activities/Deadline:  
+
'''Accomplishments for this Month:'''
* Andrzej will contact the organizers of the CTF from the Denver OWASP Conference and work in using same model
+
* Voted for organizing 2day's OWASP training events outside the AppSec Conference
 +
'''Planned for Next Month:'''
 +
* Goals and budget for 2012
 +
'''Issues/Risks/Challenges:'''
 +
* agree on tasks to enable the OWASP training events
 +
** trainer and training evaluation
 +
** call for paper
  
Benefits
+
== Next Meeting  ==
Capture The Flag events are very popular in conferences, creating and OWASP specific CTF will offer entertainment at events, generate attendants participation etc.
 
  
== Speakers Bureau Project ==
+
Thursday, October 27, 2011 11:00 PM - 12:00 AM (Etc/UTC)
  
Objective<br>
+
Dial in: 1-866-534-4754 Guest Code: 891237 <br>
OWASP Boot Camp about the OWASP projects, to deliver a Boot Camp presentation should be one of the criteria to get an alpha status as project<br>
 
  
Activities/Deadline:<br>
+
'''For the next and previous meetings, see: [[:Category:GEC Meetings|GEC Meetings]]'''
  
Benefits<br>
+
==== Committee Policies  ====
List of speakers, Name, Bio, Topics, History
 
Speakers in conferences (OOTM ask for funds on this)/summit
 
  
Speakers Agreement - https://www.owasp.org/index.php/Speaker_Agreement
+
*[[Global Education Committee Governance|Global Education Committee Governance]]
  
== Marketing efforts ==
+
==== Educational initiatives  ====
Objective: To promote OWASP projects, events, education material and OWASP mission.<br>
 
  
Activities/Deadline:<br>
+
'''1. OWASP Education Project''' OWASP project started by Seba
* Gather flyers, Brochures of OWASP Top 10, Testing Guide
 
  
Benefits<br>
+
*This project is about creating and managing (enabling off creation) educational material from the OWASP knowlegde base.
Group promotional material which can be hand out at events
+
**You could see this as the factory to create educational material
  
== Internationalization of the training materials ==
+
'''2. OWASP Academies''' pushed by Dinis and resulted into the OWASP Academy Portal Project
Objective<br>
 
Translate training materials
 
  
Activities/Deadline:<br>
+
*project target is about offering an educational material, specially targeted for Universities and Educational institutions
Identify point of contacts places for translation efforts and setup a deadline
+
**you could see this as the shop for Educational material created within the Education Project
Translate material in French, Portuguese, Spanish, Malay, Italian, Indonesian, Chinese
 
  
Benefits<br>
+
'''3. OWASP Educational Supporters'''
To reach international audiences
 
  
== Education material ==
+
*This is a membership program, especially for Educational institutions.
Objective<br>
+
**During (if I am not mistaken) the Summit 2008 there have been major changes in the membership categories.
 +
**A "Educational Supporter Membership" been created to enable easy commitment to OWASP for them!
  
Activities/Deadline:<br>
+
'''4. OWASP Student Chapters'''
  
Benefits<br>
+
*This is a project, as it has not the means of competing with existing chapters
 +
**Different then regular chapters, we have a project as we need to keep them connected to OWASP. Say, they need more guidance / hand-holding.
  
Flyers or Brochures of OWASP Top 10, Testing Guide.
+
'''5.OWASP Student Members (proposed by Martin)'''
  
== Academic Educational Services ==
+
*As part of the Student Chapters, this is what we hope to achieve for the students being actieve!
Objectives<br>
+
**To lower the bar for students being committed to OWASP!
Promote and encourage OWASP resources at accredited Universities around the world within the next 12 months by introducing OWASP training and education material at University's events.
 
  
Activities/Deadline:
+
<br> '''6. University Outreach'''
  
* Build a list of at least 5 Universities with computer science or risk management programs that can be targeted /Q1 2009
+
*as part of the summit, we started (or where trying to) the University Outreach.
* Establish communication with targeted universities, generate key contacts and establish relationships /Q1 - Q4 2009
+
*you could see the student chapters, Academy portal and student membership as actions to get universities and educational institutions committed to OWASP.
* Develop a list of possible academic events in which to participate /Q1 - Q2 2009
 
* Participate in at least 1 Academic event, present case studies or OWASP education materials /Q1 - Q4
 
  
Benefits<br>
+
<br> <headertabs />
OWASP will gain exposure in the academic industry, starting with accredited universities around the world. Universities will become members of OWASP, provide meeting space, students will apply to OWASP grants, and provide support and structure
 

Latest revision as of 03:52, 1 April 2013

As of April 1, 2013 the Global Committees were retired in order to enable wider community involvement and volunteerism through the OWASP Global Initiatives. 

Want to get involved with OWASP, but not sure where to start? Check out the OWASP Global Initiatives Page.

About the Committee

The Global Education Committee was created during the OWASP EU Summit in Portugal 2008.
The primary purpose of the Global Education Committee is: to work with the OWASP Education Project to provide educational materials for both
internal and external users, develop liaisons with educational institutions worldwide.

Mission

Provide awareness, training and educational services to corporate, government and educational institutions on application security.

Vision

Make OWASP educational material globally available as a well known resource in easily consumable form mapped to a framework tied specifically to user roles and responsibilities

Committee Members

Chairs: Martin Knobloch (Netherlands)




2012 Goals

Goals 2012

  1. Training Events
  2. Academy Portal
  3. Student Chapter Program
  4. University Outreach

OWASP Dependencies

  • OWASP Projects
  1. OWASP Education Project
  2. OWASP Academy Portal Project
  3. OWASP Educational Supporters
  • Other OWASP Committees
  1. Global Membership Committees: OWASP Student Members
  2. Global Chapter Committee: OWASP Student Chapters

[ 2011 Plan | 2010 Plan]

Major Initiatives

OWASP Training

The main goal of OWASP Training is to support Local Chapters' training activities in a way that allows OWASP to use a model that,
despite specific and punctual adjustments, can be easily replicated and become the main frame for all Chapter-led training events.

To know more about the OWASP Training concept, please see the OWASP Training page.

OWASP Academies

The idea of the OWASP Academies is to conceive a frame under which work should be done with Universities, Polytechnic Institutes,
IT Schools and other Academic institutions with a view to establish solid relationships and develop with these organisms ways to collaborate
and participate in the design of courses focused on web application security.

OWASP has the knowledge and critical mass to give an invaluable input to any Academy focusing on this area by:

  • contributing with its expertise in the definition of curricula and course contents that explore and study the web security field;
  • making available to the Academy its pool of interested and willing security experts as trainers.

To know more about the OWASP Academies and the activities developed, please see the OWASP Academies page.

Initiative Priority Associated Goals Description Status Deadline Assignees


Committee Meetings

Monthly Report Format

Date of last update: Monday, September 5th Updated by: Martin

Accomplishments for this Month:

  • Voted for organizing 2day's OWASP training events outside the AppSec Conference

Planned for Next Month:

  • Goals and budget for 2012

Issues/Risks/Challenges:

  • agree on tasks to enable the OWASP training events
    • trainer and training evaluation
    • call for paper

Next Meeting

Thursday, October 27, 2011 11:00 PM - 12:00 AM (Etc/UTC)

Dial in: 1-866-534-4754 Guest Code: 891237

For the next and previous meetings, see: GEC Meetings

Committee Policies

Educational initiatives

1. OWASP Education Project OWASP project started by Seba

  • This project is about creating and managing (enabling off creation) educational material from the OWASP knowlegde base.
    • You could see this as the factory to create educational material

2. OWASP Academies pushed by Dinis and resulted into the OWASP Academy Portal Project

  • project target is about offering an educational material, specially targeted for Universities and Educational institutions
    • you could see this as the shop for Educational material created within the Education Project

3. OWASP Educational Supporters

  • This is a membership program, especially for Educational institutions.
    • During (if I am not mistaken) the Summit 2008 there have been major changes in the membership categories.
    • A "Educational Supporter Membership" been created to enable easy commitment to OWASP for them!

4. OWASP Student Chapters

  • This is a project, as it has not the means of competing with existing chapters
    • Different then regular chapters, we have a project as we need to keep them connected to OWASP. Say, they need more guidance / hand-holding.

5.OWASP Student Members (proposed by Martin)

  • As part of the Student Chapters, this is what we hope to achieve for the students being actieve!
    • To lower the bar for students being committed to OWASP!


6. University Outreach

  • as part of the summit, we started (or where trying to) the University Outreach.
  • you could see the student chapters, Academy portal and student membership as actions to get universities and educational institutions committed to OWASP.