This site is the archived OWASP Foundation Wiki and is no longer accepting Account Requests.
To view the new OWASP Foundation website, please visit https://owasp.org

Global Industry Committee

From OWASP
Revision as of 14:41, 5 March 2009 by Clerkendweller (talk | contribs) (Work in Progress: Digital Britain status changed to 1st Draft)

Jump to: navigation, search

The Global Industry Committee was created during the OWASP EU Summit in Portugal. The primary purpose of the Global Industry Committee is to work with industry executives to gather requirements from industry, work with Membership, Projects and others.

Mission Statement

To expand awareness of and promote the inclusion of software security best practices in Industry, Government, Academia and regulatory agencies. We will accomplish this through outreach; including presentations, development of position papers and collaborative efforts with other entities.


Committee Plan

DRAFT PLAN

Step 1: Identify specific organizations worth working with to spread the OWASP gospel

Step 2: Prioritize the proposed liasons based on potential impact, and also realistic likelyhood of the organization actively working with us

Step 3: Execute, leveraging global OWASP resources as much as possible to maximize impact

Step 4: Evaluate progress & repeat Step 1-3

Committee Members

Board Member Rep: Tom Brennan

Committee Members:

OWASP Employees:

  • Alison
  • Kate Hartman

Getting Involved

Mailing List

Join our mailing list

Meetings

The next Global Industry Committee meeting will be:

  • TBC (Conference Bridge: 1-866-534-4754)

Host Code: check calendar invite

Guest Code: 192341


Previous meeting minutes are:

Membership

Membership explains how to become an OWASP organization supporter or individual member.

You don't have to be an OWASP Member or Committee Member to contribute - the current committee members joined for a 12 month term - see How to Join a Committee and Global Committee Pages.


Current Activity

Work in Progress

The current activities being undertaken:

Task Deadline Type Status Description Who
DPC BS 10012 31 Mar 2009 Standards New Provide response to "BS 10012 Specification for the management of personal information in compliance with the Data Protection Act 1998" Draft for Public Comment (DPC) TBC
Draft NIST SP 800-53 Revision 3 27 Mar 2009 Standards Started Provide response to "Draft NIST Special Publication 800-53 (Revision 3) Recommended Security Controls for Federal Information Systems and Organizations" Rex/David
Draft NIST SP 800-122 13 Mar 2009 Standards 1st Draft Provide response to "Draft NIST Special Publication 800-122 Guide to Protecting the Confidentiality of Personally Identifiable Information (PII)" Colin
Digital Britain Interim Report 12 Mar 2009 Legislation 1st Draft Provide response to UK Government's "Digital Britain Interim Report Jan 2009" Colin
NIST SP 800-53 CAG TBD Standards Started Translating the Top 10 into a format requested by SANS for inclusion in a new Consensus Audit Guide (CAG) David/Rex

Completed Items

Task Completed Type Status Description Who
DPC BS 8878:2009 31 Jan 2009 Standards Closed Provide response to "BS 8878:2009 Web accessibility. Building accessible experiences for disabled people" Draft for Public Comment (DPC) Puneet/Colin
AppSec Presentation Delivered to Infragard, Dec 2008 Dec 2008 Outreach Closed Infragard is a collaboration between the US FBI and maintainers of critical infrastructure. Presentation here. Email DC for full PPT with speaker notes DC