Difference between revisions of "Global Industry Committee"
|Line 113:||Line 113:|
=== Completed Items ===
=== Completed Items ===
Revision as of 16:34, 23 January 2009
The Global Industry Committee was created during the OWASP EU Summit in Portugal. The primary purpose of the Global Industry Committee is to work with industry executives to gather requirements from industry, work with Membership, Projects and others.
To expand awareness of and promote the inclusion of software security best practices in Industry, Government, Academia and regulatory agencies. We will accomplish this through outreach; including presentations, development of position papers and collaborative efforts with other entities.
The committee will be discussing (see next meeting) the creation of a written plan to achieve the goals defined that needs to be endorsed by the OWASP board so that we can execute against it.
Step 1: Identify specific organizations worth working with to spread the OWASP gospel
Step 2: Prioritize the proposed liasons based on potential impact, and also realistic likelyhood of the organization actively working with us
Step 3: Execute
Step 4: Evaluate progress & repeat Step 1-3
Board Member Rep: Tom Brennan
- Kate Hartman
The next Global Industry Committee meeting will be:
- Friday, 23 Jan 11am-12pm EST (Conference Bridge: 1-866-534-4754)
Host Code: check calendar invite
Guest Code: 192341
Previous meeting minutes are:
Membership explains how to become an OWASP organization supporter or individual member.
Work in Progress
The current activities being undertaken:
|NIST SP 800-53 CAG||TBD||Standards||Started||Translating the Top 10 into a format requested by SANS for inclusion in a new Consensus Audit Guide (CAG)||David/Rex|
|DPC BS 8878:2009||31 Jan 2009||Standards||Started||Provide response to "BS 8878:2009 Web accessibility. Building accessible experiences for disabled people" Draft for Public Comment (DPC)||Puneet/Colin|
|Draft NIST SP 800-122||13 Mar 2009||Standards||Started||Provide response to "Draft NIST Special Publication 800-122 Guide to Protecting the Confidentiality of Personally Identifiable Information (PII)"||TBC|
|DPC BS 10012||31 Mar 2009||Standards||New||Provide response to "BS 10012 Specification for the management of personal information in compliance with the Data Protection Act 1998" Draft for Public Comment (DPC)||TBC|
|AppSec Presentation Delivered to Infragard, Dec 2008||DONE||Outreach||Completed||Infragard is a collaboration between the US FBI and maintainers of critical infrastructure. Presentation here. Email DC for full PPT with speaker notes||DC|