This site is the archived OWASP Foundation Wiki and is no longer accepting Account Requests.
To view the new OWASP Foundation website, please visit

Global Industry Committee

Revision as of 16:37, 23 January 2009 by Dc (talk | contribs) (Completed Items)

Jump to: navigation, search

The Global Industry Committee was created during the OWASP EU Summit in Portugal. The primary purpose of the Global Industry Committee is to work with industry executives to gather requirements from industry, work with Membership, Projects and others.

Mission Statement

To expand awareness of and promote the inclusion of software security best practices in Industry, Government, Academia and regulatory agencies. We will accomplish this through outreach; including presentations, development of position papers and collaborative efforts with other entities.

Committee Plan

The committee will be discussing (see next meeting) the creation of a written plan to achieve the goals defined that needs to be endorsed by the OWASP board so that we can execute against it.


Step 1: Identify specific organizations worth working with to spread the OWASP gospel

Step 2: Prioritize the proposed liasons based on potential impact, and also realistic likelyhood of the organization actively working with us

Step 3: Execute

Step 4: Evaluate progress & repeat Step 1-3

Committee Members

Board Member Rep: Tom Brennan

Committee Members:

OWASP Employees:

  • Alison
  • Kate Hartman

Getting Involved

Mailing List

Join our mailing list


The next Global Industry Committee meeting will be:

  • Friday, 23 Jan 11am-12pm EST (Conference Bridge: 1-866-534-4754)

Host Code: check calendar invite

Guest Code: 192341

Previous meeting minutes are:

  • (None)


Membership explains how to become an OWASP organization supporter or individual member.

You don't have to be an OWASP Member or Committee Member to contribute - the current committee members joined for a 12 month term - see How to Join a Committee and Global Committee Pages.

Current Activity

Work in Progress

The current activities being undertaken:

Task Deadline Type Status Description Who
NIST SP 800-53 CAG TBD Standards Started Translating the Top 10 into a format requested by SANS for inclusion in a new Consensus Audit Guide (CAG) David/Rex
DPC BS 8878:2009 31 Jan 2009 Standards Started Provide response to "BS 8878:2009 Web accessibility. Building accessible experiences for disabled people" Draft for Public Comment (DPC) Puneet/Colin
Draft NIST SP 800-122 13 Mar 2009 Standards Started Provide response to "Draft NIST Special Publication 800-122 Guide to Protecting the Confidentiality of Personally Identifiable Information (PII)" TBC
DPC BS 10012 31 Mar 2009 Standards New Provide response to "BS 10012 Specification for the management of personal information in compliance with the Data Protection Act 1998" Draft for Public Comment (DPC) TBC

Completed Items

Task Deadline Type Status Description Who
AppSec Presentation Delivered to Infragard, Dec 2008 DONE Outreach Completed Infragard is a collaboration between the US FBI and maintainers of critical infrastructure. Presentation here. Email DC for full PPT with speaker notes DC