OWASP Funding and CEO DiscussionPRESENTED BY

Ke i th Turp in & Mar t in Knob loch

• Leverage the great opportunity the session provides to discuss current and future OWASP

• Open discussion on the

CEO proposal

Session Focus

2010 Activity Income:•Conference income: $683,364.93• Conference Registration, Sponsorships, Training•Donations: $2342.09•Membership Dues: $200,281.80 Total $885,988.82 2010 Activity Expenses:•Banking Charges $2324.69•Chapter Support $934.46•Committee $2903.50•Conference Costs

(Logistics, Financing, Trainers and Operations) $511,493.50•Operational Costs $99,142.03•Payroll $87,226.21•Professional Services $40,545.89 Total $744,570.28

Profits: $ 141,418.54(Does not include 2009 and 2011 impacts on the 2010 P&L)

Future General Funding Needs:

• Marketing, Branding and Identity

• Process Re-engineering

• Education Outreach and Support

• Project and OWASP Leader Support– Project Management – Copywriting– Technical Writing and Editing – Graphic Design– Formal Publishing– Project Promotion/Marketing– Travel and presentation/Road-Show Expenses

New Funding for International Operations

• International incorporation

• Associated finance and legal support

• Translation services

• International chapter/conferences support services

• International leader expenses

Actions:

• Gather suggestions– Email Sarah Baso: sarah.baso@owasp.org

• Review for feasibility, resource constraints and alignment with organizational core values

• Prioritize ideas

• Develop an implementation plan

• Provide guidance for chapters, conference planners and committees

CEO Discussion:

Jeremiah Grossman in his 'Open letter to OWASP' blog post:

• It is time for an OWASP Chief Executive Officer

• Other highly successful non-profits have a President / CEO position (e.g. Mozilla)

• OWASP generates enough revenue and has sufficient growth to justify the position

Proposed Role:

• Responsible for the day-to-day operational affairs and growing the organization.

• A go to person for global committees, project leaders, members, sponsors, press

• Authority to make decisions

• Serve as an industry cheerleader and work with the leadership of other organizations

CEO Discussion (continued):

Mark Bristow’s response:

• As OWASP grows as an organization there is a continuing need for a consistent "cheerleader" who is always working on OWASP's behalf.

• Core staff in leadership roles are needed to support the organization

• Hiring an experienced CEO to put a consistent "face" on OWASP activities, who can go and meet with industry leaders, potential supporters, press and perform outreach activities would be a boon to maturing us into OWASP 4.0.

• Hiring a CEO with experience in running an international non-profit organization would also be a huge value add for OWASP

• An experienced person could improve international operations