OWASP Project Manager Activity Reports/July 08 2013

Work accomplished since June 10, 2013

 * Project Numbers
 * Active Projects: 161
 * Inactive Projects: 67


 * New OWASP Projects
 * OWASP Windows Binary Executable Files Security Checks Project
 * OWASP Wordpress Security Checklist Project
 * OWASP Simple Host Base Incidence Detection System Project
 * OWASP Supporting Legacy Web Applications in the Current Environment Project
 * OWASP SeraphimDroid Project
 * OWASP Unmaskme Project


 * Project Applications
 * File Format Validation
 * Androïck
 * SafeNuGet


 * Projects Under Review
 * OWASP Cheat Sheets Project
 * OWASP Java HTML Sanitizer Project
 * Xenotix XSS Exploit Framework
 * OWASP Cornucopia Project
 * Project reviews are on hold until we can fill the Technical Project Advisor volunteer roles.

Project Manager Q2 2013 Objectives

 * 1) Identify and target 5-7 specific grants to pursue for 2013.
 * 2) Develop Brand Usage Guidelines for Projects.
 * 3) Need for consistent documentation of guidelines (similar to How To Host a Conference) that can apply to various events and venues.
 * 4) Volunteer Management - identification of skills and supervision required to engage volunteers productively.


 * Ongoing Objectives for 2013
 * Work with Project leaders to reach grant required milestones - ONGOING
 * Develop a project charter outlining appropriate grant revenue spending and grant required milestones. - DUE IN SEPTEMBER - ONGOING
 * Oversight of Marketing and Graphic Design deliverables (Phase 3) provided by 3rd party contractor - ONGOING

Currently Working On

 * Projects at Conferences
 * AppSec USA: I continue to plan logistics for the Project Leader Workshop, and the Project Summits.
 * AppSec EU: The OWASP Projects Track and the Open Source Showcase (OSS) are scheduled to take place at AppSec EU. The local AppSec EU team is working towards gathering submissions for the OSS.
 * AppSec LATAM: Now that AppSec LATAM is moving forward, I will reach out to the local event planners and discuss the possibility of having Projects at the conference.
 * AppSec APAC 2014: I briefly spoke to the local event planning team in Tokyo about our different Project Event Modules. I will send them more detailed information on each module so we can discuss further.


 * Women in Security: AppSec USA 2013
 * The team is now in the fundraising stage.
 * We have managed to raise $500.00 from the OWASP Boston Chapter.
 * Women in Security Sponsorship Document: AppSec USA 2013
 * We have reached out to several organizations and OWASP Chapters to seek sponsorship for this program.
 * You can find more information on the AppSec USA website.
 * The total amount we are requesting is $6,000.00 to cover conference fee, training fee, travel and accommodation for both winners.
 * We continue to work hard with our fundraising efforts to bringing this initiative to AppSec USA 2013.


 * Marketing Phase 3 Update
 * Sisterworks Publishing has finalized their copywriting work, and they have sent their materials to the graphic design studio.
 * Design Foundry has now started designing their first drafts of our remaining marketing collateral.
 * The OWASP Team is currently working on a system that will allow community review of the design work.
 * We will ask for community feedback once we get a more finalized version of each design.
 * Phase 1 Deliverable
 * Phase 2 Deliverable
 * SEO Content Audit
 * Note: Phase 2 Deliverable has recommendations made by Sisterworks and Design Foundry based on their research.
 * We are not necessarily moving forward with these recommendations towards implementation.
 * Sisterworks and Design Foundry are helping with our brand consistency and collateral design.


 * Determining Active Project Status
 * This is a status update on this initiative.
 * I am reaching out to each leader individually to confirm these pieces of data for all 154 projects.
 * Flagship projects are completed.
 * Labs are completed.
 * I am currently working on finalizing the Incubator projects.


 * Technical Project Advisory Roles
 * The interviews for the six advisory roles are complete.
 * I have finished choosing each advisor for each role.
 * I have let each successful candidate know of their role allocation.
 * I am now waiting for confirmation of acceptance for each role.


 * Event Manager Interviews
 * The OWASP Team is currently reviewing resumés, and interviewing candidates for the Event Manager role.
 * We are working together to tackle the 80+ applications we received for this position.
 * The team has a few more interviews to manage before we make our final selection.
 * We plan to have a new candidate in this role by mid July.


 * Personal Development
 * I have finished reading Board Member Orientation: The Concise and Complete Guide to Non-Profit Board Service by Michael E. Batts.
 * I am still taking my online course from Coursera.
 * The course topic is Information Security and Risk Management in Context.
 * I was able to take a week long, personal development course this month in the UK.
 * The program topic was Intellectual Property (IP) Strategy, and the material focused on the development and management of international IP systems for micro, SME, and multinational enterprises.
 * The course material was eye opening, and I truly enjoyed the experience.
 * My primary objective was to become familiar with the different types of IP options that exist on an international level.
 * I felt it would help me manage this aspect of our OWASP Projects since most of the material created is IP related even if it is under a Commons license.
 * Intellectual Property Strategy Report.

Grants Updates

 * OWASP Guidebooks Proposal
 * 1) Amount: $25,000 USD
 * 2) Status: Awarded. The first payment has been allocated to our project budgets.
 * 3) OWASP Development Guide Plan
 * 4) OWASP Testing Guide Plan
 * 5) OWASP Code Review Guide Plan


 * OWASP ESAPI Grant Proposal
 * 1) Amount: $25,000 USD
 * 2) Status: The ESAPI proposal is still being reviewed.


 * OWASP ModSecurity CRS Proposal
 * 1) Amount: $30,000 USD
 * 2) Status: The ModSecurity proposal is still being reviewed.


 * Google Grants Proposal
 * 1) Amount: $120,000 USD in Adwords Funds
 * 2) Status: Awarded.
 * 3) Note: There is no link to show the proposal for this grant. There was a form that was submitted to Google, and we did not receive a record of this form.


 * European Commission Grant Proposal
 * 1) Amount: €250,000
 * 2) Status: This proposal has been completed and submitted.


 * Total Grant Funds Awarded: $145,000 USD for 2013.

OWASP Projects Manager Weekly Reports

 * 1) Project Manager Report: June 07 2013
 * 2) Project Manager Report: June 14 2013
 * 3) Project Manager Report: June 21 2013 - No Report this week. PM was away at a week long course.
 * 4) Project Manager Report: June 28 2013