This site is the archived OWASP Foundation Wiki and is no longer accepting Account Requests.
To view the new OWASP Foundation website, please visit https://owasp.org

Difference between revisions of "November 8, 2016"

From OWASP
Jump to: navigation, search
(Chair's Report - Matt Konda)
m
 
(27 intermediate revisions by 4 users not shown)
Line 17: Line 17:
 
*Notice to all attendees - board meetings are recorded and publicly available as of March, 2013
 
*Notice to all attendees - board meetings are recorded and publicly available as of March, 2013
 
*Joining the call acknowledges your awareness of recording and consent to be recorded and public dissemination of the recording.
 
*Joining the call acknowledges your awareness of recording and consent to be recorded and public dissemination of the recording.
 +
*[https://drive.google.com/open?id=0B0yxedKRQADib3RmSHBBMmVfMXM Meeting Recording]
  
 
=== Meeting Minutes===
 
=== Meeting Minutes===
 
::- [https://docs.google.com/a/owasp.org/document/d/119FJ2G2EdsVnz8vnxWv0Ee0G3uWMTSVqyxt_1CVrHiY/edit?usp=sharing September meeting minutes]
 
::- [https://docs.google.com/a/owasp.org/document/d/119FJ2G2EdsVnz8vnxWv0Ee0G3uWMTSVqyxt_1CVrHiY/edit?usp=sharing September meeting minutes]
 +
 +
::- [https://docs.google.com/a/owasp.org/document/d/1rQpG5pXUEcdUddY4FeBI6mw0GAgzAxs2Mcb-8qe4tqY/edit?usp=sharing October meeting minutes]
 +
 +
::- [https://docs.google.com/a/owasp.org/document/d/1GFIlJhDLS5npF6sZdoK28u5hyOEFvxrxIRrD640NLJI/edit?usp=sharing November Meeting Minutes]
  
 
= Reading Material  =
 
= Reading Material  =
 
'''''It is a requirement as a board member to fully read all material prior to the start of the meeting'''''
 
'''''It is a requirement as a board member to fully read all material prior to the start of the meeting'''''
 
* Financial statement
 
::- [https://docs.google.com/a/owasp.org/document/d/1lKioxigkjwWZhRQNPkCxXA68QOV7pOe9yyDx7NSgplI/edit?usp=sharing Analysis by Tom Pappas on YTD to September 30, 2016]
 
::- [https://docs.google.com/a/owasp.org/document/d/1lKioxigkjwWZhRQNPkCxXA68QOV7pOe9yyDx7NSgplI/edit?usp=sharing September financial package]
 
  
 
= Meeting Agenda =
 
= Meeting Agenda =
Line 34: Line 35:
 
== Reports ==
 
== Reports ==
 
=== Chair's Report - Matt Konda ===
 
=== Chair's Report - Matt Konda ===
* Draft of Strategic Goals for 2017
+
* Draft of [https://docs.google.com/document/d/1ZgZotdu3TglKCiyOxyQVwS16YDJj0qmEkdYz0LT7hf4/edit Strategic Goals for 2017]
* Turned on ED RecruiterBox:  https://owasp.recruiterbox.com/jobs/fk062sn
+
* Turned on [https://owasp.recruiterbox.com/jobs/fk062sn ED Job Description] *this needs a budget and a call for canidate campaign/recruitment*
 +
* Draft of [https://docs.google.com/a/owasp.org/document/d/1eH-0WTRBa-x21GNsGZqOiokP0fO6oBKK8OOj3sjnhP8/edit?usp=sharing OWASP Staff Training Policy]
 
* Moved Co-Marketing Agreements back to Kate
 
* Moved Co-Marketing Agreements back to Kate
 +
* Belfast Contracts and Moved Away from Troy
 
* OWASP Glue Project
 
* OWASP Glue Project
  
Line 43: Line 46:
  
 
=== Treasurer Report - Andrew van der Stock ===
 
=== Treasurer Report - Andrew van der Stock ===
 
* Financial statement
 
::- [https://docs.google.com/a/owasp.org/document/d/1lKioxigkjwWZhRQNPkCxXA68QOV7pOe9yyDx7NSgplI/edit?usp=sharing Analysis by Tom Pappas on YTD to September 30, 2016]
 
::- [https://docs.google.com/a/owasp.org/document/d/1lKioxigkjwWZhRQNPkCxXA68QOV7pOe9yyDx7NSgplI/edit?usp=sharing September financial package]
 
 
Based on this information, we are likely to have a reasonable year as long as income is realized in the FY16 financial year. We were looking at about a $150k loss for FY16, and it's currently looking at around $30k loss, which might even improve on that depending on the final training, sponsorship and ticket sales of AppSec USA, and getting on top of our aged receivables, which I believe is a prioritization thing rather than structural.
 
 
I am due to meet Tom Pappas on Tuesday during the day. If you want to be a part of the FY 17 budget, please come along - I welcome both existing Board and Board candidates to this discussion. As we are likely to have a near non-profit year, I will be holding the line on unbudgeted expenses if I am re-elected and if the Board will continue to have me as treasurer in 2017. For those Board members with a big project or initiative NOW is the time to get your initiative funded or wait until 2018.
 
 
Chapter funds continue to increase. As previously agreed in December 2015's board meeting, I will be sweeping unbudgeted funds from chapters in December 2016. This should become an annual activity to encourage proper financial planning by our larger chapters. I continue to encourage chapter leaders to come up with a plan that is strategically helpful to OWASP's core mission rather than just gold plating their chapter, such as outreach, funding scholarships at Universities, holding a local or regional events, encouraging their members to join and fund on projects of interest to that chapter, and so on. Chapters with a balance of over $5k should present a budget and plan for their funds by December 1. I will personally reach out to these 20-30 affected chapters during October, but would love interested Board members to also help in this process.
 
 
Depending on our profitability and end of year bank balance, I am leaning towards a hire of the ED in the early part of 2017. We should be strategic about this role - I personally feel the lack of a financially savvy ED has held us back in 2016, which is reflected in our likely near loss if not zero profit for FY16, especially when considering the financial success of FY15. I encourage the Board to be on the look out for an ED candidate who has strong non-profit financial management, grant writing, and fund raising experience to help us jump to the next level.
 
 
Lastly, I will be talking about changes we need to make to bring us into line with good practice at Charity Navigator. We have hit the benchmark lower limit, and FY17 is an audit year for 2016, which will appear in Charity Navigator. If we wish to receive funds from various grant making organisations, we need to strongly align with these good practices, some of which are very simple, some of which are less so. The main one is to make sure it is ultra clear to anyone that our spend on mission is > 80% of our expenses. I will be discussing this with Tom Pappas on Tuesday, as it probably means that we need to make sure that staff costs are allocated to budgets, or demonstrably so. I think we can easily make these benchmarks depending on our financial treatment of expenses.
 
  
 
=== Secretary Report -Tobias Gondrom ===
 
=== Secretary Report -Tobias Gondrom ===
Line 70: Line 59:
  
 
* Brennan - Projects
 
* Brennan - Projects
- [https://docs.google.com/a/owasp.org/document/d/1WO5tH1t1GU9cLqW8iHIaGUANFossid4xFCmKJq7CSSY/edit?usp=sharing Website]
+
Matt T., has been recruited, hired and empowered to drive the job description that was [https://www.owasp.org/images/a/a1/OWASP_Project_Coordinator-FabioTobiasAug25.pdf written]. Good job to him and the staff for working together on key objectives.  Next is the website effort, budget was allocated and removed. This is a issue and needs discussion of issue and solution.  Invest in owasp and budget appropriately as one does with a 2M business.
 +
 
 +
-2017 Project Summits
 +
 
 +
- Industry moving
 +
pubilc/private, m&a, opensource
 +
 
 +
Project Flows
 +
- Examples [https://www.owasp.org/index.php/OWASP_Project_Inventory#tab=Labs_Projects Labs Current], [https://github.com/opendxl/opendxl-client-python/blob/master/LICENSE OpenDXL], [https://github.com/zaproxy/zaproxy/ ZAP Proxy] and [http://www.bugheist.com/ BugHeist] models of open source and other [http://events.linuxfoundation.org/sites/events/files/slides/lfcs15_hall.pdf Open Source business models]
 +
 
 +
- Local project chapters
  
 
==Staff Reports==
 
==Staff Reports==
Line 85: Line 84:
 
All active board proposals are listed [https://drive.google.com/folderview?id=0BxSfMVkfLvslVXdvUFV3NkxucWc&usp=sharing here]
 
All active board proposals are listed [https://drive.google.com/folderview?id=0BxSfMVkfLvslVXdvUFV3NkxucWc&usp=sharing here]
  
* Motion to approve changes to FY17 membership rates  (Andrew)
+
==New Business==
::- https://docs.google.com/a/owasp.org/document/d/1RBy7yRl-qVo49lDL1JeKmhwLElcazrJ7tY4OO5Wwb6U/edit?usp=sharing
+
 
 +
* [http://lists.owasp.org/pipermail/owasp-board/2016-October/017563.html Request for 150K USD seed fund for the OWASP-DevSecCon Summit in April 2017 in the UK]
 +
* Policy on [https://docs.google.com/document/d/1eH-0WTRBa-x21GNsGZqOiokP0fO6oBKK8OOj3sjnhP8/edit OWASP Staff Training]
 +
* Strategic Goals [https://docs.google.com/document/d/1ZgZotdu3TglKCiyOxyQVwS16YDJj0qmEkdYz0LT7hf4/edit Proposed 2017 Goal]
 +
* What does a future OWASP look like? Directional aspirations and impacts to type of ED [Michael]
  
==New Business==
 
  
** [http://lists.owasp.org/pipermail/owasp-board/2016-October/017563.html Request for 150K USD seed fund for the OWASP-DevSecCon Summit in April 2017 in the UK]
+
Additional Notes to 150K Seed Fund:<br>
 
We are gathering a team with ample experience in organizing owasp (and other) events, including the last 2 owasp summits.<br>
 
We are gathering a team with ample experience in organizing owasp (and other) events, including the last 2 owasp summits.<br>
 
By focusing on the content and outcome objectives we are creating the necessary momentum for this summit.<br>
 
By focusing on the content and outcome objectives we are creating the necessary momentum for this summit.<br>
Line 103: Line 105:
 
I count on your (and the complete board) to support this new summit.<br>
 
I count on your (and the complete board) to support this new summit.<br>
 
Seba & Dinis
 
Seba & Dinis
 +
 +
== Action Items==
  
  
 +
==Announcements==
  
== Action Items==
+
Election results: 
 +
 
 +
The three open board seats shall be filled by:
 +
Andrew van der Stock
 +
Matt Konda
 +
Johanna Curiel
 +
 
 +
[https://www.owasp.org/index.php/OWASP_Foundation_ByLaws Bylaws in effect] Section 2.2
 +
 
 +
=============
 +
 
 +
2016 Election - https://www.owasp.org/index.php/2016_Global_Board_of_Directors_Election
 +
 
 +
2015 Election - https://www.owasp.org/index.php/2015_Global_Board_of_Directors_Election
 +
 
 +
2017 Board
 +
 
 +
 
 +
OWASP Board Chair  _________________
 +
 
 +
OWASP Board Vice Chair  ______________
 +
 
 +
OWASP Board Treasurer ___________________
 +
 
 +
OWASP Board Secretary  ___________________
 +
 
 +
OWASP Board Member  ____________________
  
 +
OWASP Board Member _____________________
  
==Announcements==
+
OWASP Board Member _____________________
TBA
 
  
 
==Adjournment==
 
==Adjournment==
*Next meeting date/time: [https://www.owasp.org/index.php?title=November_9,_2016 November 9 2016 1500-1630 PST] [http://www.timeanddate.com/worldclock/meetingdetails.html?year=2016&month=11&day=09&hour=23&min=0&sec=0&p1=224&p2=24&p3=263&p4=78&p5=37&p6=102&p7=152 TimeZone Converter ]
+
*Next meeting date/time: [https://www.owasp.org/index.php?title=December_14,_2016 December 14 2016 1500-1630 PST] [http://www.timeanddate.com/worldclock/meetingdetails.html?year=2016&month=12&day=14&hour=23&min=0&sec=0&p1=224&p2=24&p3=263&p4=78&p5=37&p6=102&p7=152 TimeZone Converter ]
  
 
==Motion to close meeting==
 
==Motion to close meeting==

Latest revision as of 19:08, 14 December 2016

Time

Location

Teleconference Information:

https://www3.gotomeeting.com/join/861328838

International Toll Free Calling Information

Attendance Tracker

Board Meeting Attendance Tracker

Notice of Recording

  • Notice to all attendees - board meetings are recorded and publicly available as of March, 2013
  • Joining the call acknowledges your awareness of recording and consent to be recorded and public dissemination of the recording.
  • Meeting Recording

Meeting Minutes

- September meeting minutes
- October meeting minutes
- November Meeting Minutes

Reading Material

It is a requirement as a board member to fully read all material prior to the start of the meeting

Meeting Agenda

Call to Order /OWASP Mission

  • Administrative: List of attendees and Agenda bashing (only if last-minute changes to the agenda are needed) (5 min)

Reports

Chair's Report - Matt Konda

Vice Chair's Report - Josh Sokol

TBA

Treasurer Report - Andrew van der Stock

Secretary Report -Tobias Gondrom

Nothing to report

Updated from Members at Large - Tom Brennan, Michael Coates, and Tobias Gondrom

  • Coates - Chapters

TBA

  • Carter - Governance

TBA

  • Brennan - Projects

Matt T., has been recruited, hired and empowered to drive the job description that was written. Good job to him and the staff for working together on key objectives. Next is the website effort, budget was allocated and removed. This is a issue and needs discussion of issue and solution. Invest in owasp and budget appropriately as one does with a 2M business.

-2017 Project Summits

- Industry moving pubilc/private, m&a, opensource

Project Flows - Examples Labs Current, OpenDXL, ZAP Proxy and BugHeist models of open source and other Open Source business models

- Local project chapters

Staff Reports

Staff Reports

Old Business

All active board proposals are listed here

New Business


Additional Notes to 150K Seed Fund:
We are gathering a team with ample experience in organizing owasp (and other) events, including the last 2 owasp summits.
By focusing on the content and outcome objectives we are creating the necessary momentum for this summit.
In parallel we are putting in motion the logistics for this summit (venue, catering, sponsoring, ...)

We will definitely try to make this a "budget-neutral" event, by:
1) having people cover their participation themselves
2) having sponsors that cover part of the costs
3) tapping into the under-used chapter and project funds

At this stage we want to be sure to have the support from the board & staff and have a "seed-fund" of 150K USD.
I count on your (and the complete board) to support this new summit.
Seba & Dinis

Action Items

Announcements

Election results:

The three open board seats shall be filled by: Andrew van der Stock Matt Konda Johanna Curiel

Bylaws in effect Section 2.2

=

2016 Election - https://www.owasp.org/index.php/2016_Global_Board_of_Directors_Election

2015 Election - https://www.owasp.org/index.php/2015_Global_Board_of_Directors_Election

2017 Board


OWASP Board Chair _________________

OWASP Board Vice Chair ______________

OWASP Board Treasurer ___________________

OWASP Board Secretary ___________________

OWASP Board Member ____________________

OWASP Board Member _____________________

OWASP Board Member _____________________

Adjournment

Motion to close meeting

Agenda



Extra points