|
[FYI] 2023 TAC & SCIR election process
Fam – Below details the steps that will be taken this year to elect the 2023-2024 TAC for the OpenSSF. Anyone interested in participating, details to register to vote, details about the TAC self-nomination process, and details about the SCIR (community security representative for the foundation) are listed below.
I strongly encourage everyone to take the minute or so to register to vote once the self-nominations are complete. You’ll need your GH id. For anyone interested in putting themselves forth to be a candidate for the TAC, the process is also discussed below. If anyone has questions about that, feel free to reach out to me, and I can share what my last year on the TAC has entailed.
Voter Eligibility (Electorate) Self-Nomination Process Any contributor to OpenSSF working groups or initiatives is eligible to participate in the election. Valid contributions include: commits or submitted pull requests via Github; public edits or comments on Google docs or other work products associated with OpenSSF; posting messages to any mailing list or on Slack; and beyond that any other form of positive engagement with OpenSSF activities. The form asks you for an example of your contributions; this is merely to make it easier for election observers and OpenSSF staff to validate. If you have in any way been involved in or care about OpenSSF, but are in doubt as to whether your contribution “counts”, please fill it out anyways, and we will follow up. Deadline: March 12, 2023 Voter Eligibility Self-Nomination Form
TAC Self-Nomination Process The OpenSSF Technical Advisory Council (TAC) is composed of seven total individuals, four of whom are elected annually. If you are interested in serving on the TAC, and qualify as an eligible voter as above, please complete the self-nomination form below, Deadline: March 12, 2023 TAC Candidate Self-Nomination Form
SCIR Self-Nomination Information and Process Since early in its existence, the OpenSSF Governing Board has sought to ensure it gets adequate input from voices in the software security community who would otherwise not be at the table. We seek candidates for the Security Community Individual Representative (SCIR) who can represent those voices, while also being a subject matter expert in the field with their own set of perspectives. Familiarity with the different OpenSSF working groups and projects, and being able to dedicate the time to be sufficiently informed on the issues that arise in our monthly calls and ongoing discussions, is highly desired. It is also highly desired, but not required, that the SCIR be a contributor and thus eligible to vote in the election. Deadline: March 12, 2022 SCIR Candidate Self-Nomination Form
2023 Election Process The Election Process will be monitored by Election Officials (volunteers identified by the TAC). At the conclusion of the validation period, Election Officials will publish the complete list of candidates.
The election will be conducted using the electronic voting tool, Opavote. A Single Transferable Voting method will be used for the TAC as there are multiple candidates. Following the validation period, the Election Officials will review the pool of eligible voters to confirm eligibility to participate in the election, per the guidelines set forth by the TAC. Eligible voters will receive an invitation to access their ballot from Opavote. The ballot will include the option to vote for both the TAC and SCIR. Questions related to the nomination and/or election process should be directed to operations@....
Links:
Cheers,
CRob Director of Security Communications Intel Product Assurance and Security
|
||||||||||||
|
|
||||||||||||
|
OSSF EDU.SIG & Intel AppSec Education Meetup
Purpose:
- to facilitate direct collaboration between members of the OpenSSF Education SIG and members of Intel’s SARC/security education communities.
Desired outcomes :
Agenda:
________________________________________________________________________________
Microsoft Teams meeting
Join on your computer, mobile app or room device
Meeting ID: 286 910 427 343
Passcode: ufhXir Join with a video conferencing device
Video Conference ID: 111 357 828 8
________________________________________________________________________________
|
||||||||||||
|
|
||||||||||||
|
OSSF EDU.SIG & Intel AppSec Education Meetup
Purpose:
- to facilitate direct collaboration between members of the OpenSSF Education SIG and members of Intel’s SARC/security education communities.
Desired outcomes :
Agenda:
________________________________________________________________________________
Microsoft Teams meeting
Join on your computer, mobile app or room device
Meeting ID: 286 910 427 343
Passcode: ufhXir Join with a video conferencing device
Video Conference ID: 111 357 828 8
________________________________________________________________________________
|
||||||||||||
|
|
||||||||||||
|
Re: Developing Secure Software - translating to more languages
On Feb 1, 2023, at 4:51 PM, Avishay Balter via lists.openssf.org <avbalter=microsoft.com@...> wrote:I think this is wonderful! I recommend contributing back as markdown (the same format as the original). I know GitHub's built-in renderer has some problems with right-to-left (at least with numbering), but we can file that as an issue with GitHub, and we can directly generate the HTML if needed. Our current plan is to merge the Japanese translation into the main repository. We can do the same, or make separate repositories for different languages if that's better. I know LF Training & Certification would love to have these materials available in Arabic & Hebrew. However, because of the costs I can't commit them to it. Let me contact them (cc Brian Behlendorf) to get their thoughts. --- David A. Wheeler |
||||||||||||
|
|
||||||||||||
|
Developing Secure Software - translating to more languages
Hello all
A few colleagues and I from Microsoft Israel have started some work around translating the Developing Secure Software content to Hebrew and Arabic, intending to contribute them back to the foundation through the Education SIG and the BEST WG. The two languages will enable communities across EMEA for which English is a barrier to cybersecurity.
We hope to make a solution that is easy to maintain as content evolves and can scale to support more languages.
I'm opening this up for your feedback and thoughts |
||||||||||||
|
|
||||||||||||
|
[FYI] DEI Meeting Time & Details
Hello all. Christine and Jay will be leading calls focused on the DEI activities within the EDU.SIG Plan(1) starting 17Jan2023. A calendar invite can be found on the OSSF’s Community Calendar(2).
When – Every other Tuesday at 11am-12pm EST starting 17 jan2023 Where – https://zoom.us/j/91587450609 Repo - https://github.com/ossf/education/ Chat - https://openssf.slack.com/archives/C04FMD5HSC9
Cheers,
CRob Director of Security Communications Intel Product Assurance and Security
|
||||||||||||
|
|
||||||||||||
|
Re: [RFA] remove SIG Subsections meeting invites.... for now
Khahil White (LF)
Hey CRob! All set, I've removed the section 1 - 3 calls from the calendar. Cheers, On Wed, Jan 4, 2023 at 11:34 AM Robinson, Christopher <christopher.robinson@...> wrote:
--
Khahil White (he/him) Program Manager The Linux Foundation |
||||||||||||
|
|
||||||||||||
|
[RFA] remove SIG Subsections meeting invites.... for now
Hey Operations! With the EDU.SIG and OSS-SIRT.SIGs sharing their “final” draft plans with the TAC to address Streams 1 and 5 of the OSSF Mobilization plan, we no longer need the subsection calls until the TAC/GB determines what, if anything, will happen to move forward. Please cancel the OSS-SIRT SIG Section 1-3 calls and the EDU.SIG Sections 1-3 calls, but KEEP the full SIG calls (Tuesdays & Wednesdays bi-weekly). Thanks!
Cheers,
CRob Director of Security Communications Intel Product Assurance and Security
|
||||||||||||
|
|
||||||||||||
|
[FYI] EDU.SIG Section 1 Meeting Canceled for Thursday 01-05
Dave Russo
FYI,
We will not be having the scheduled Collect & Curate Content EDU.SIG meeting this Thursday. Thanks! Dave -- Dave Russo Senior Principal Program Manager, Secure Development Red Hat Product Security |
||||||||||||
|
|
||||||||||||
|
[FYI] Vote for Time to hold DEI Subcommittee Meetings by EoD Friday 1/6
Hello all – The DEI subcommittee would LOVE your opinion on a bi-weekly meeting time that works out for the majority of folks who would like to join us in our focused efforts to move forward to addressing historically underserved communities with our educational efforts. Please pick a time from the choices on this doodle(1) by FRIDAY JAN 6, 2023 so we can accommodate the majority of folks desiring to participate. We’ll then get an official meeting invite & assorted zoom details sent out to everyone afterward. A copy of our first call’s meeting notes can be found here(2). We’re looking forward to working with everyone as this effort progresses.
Cheers,
CRob Director of Security Communications Intel Product Assurance and Security
|
||||||||||||
|
|
||||||||||||
|
[FYI] Inaugural EDU.SIG-DEI call will be 11am EST on Zoom
Friends – Sorry for the short notice and lack of an actual calendar invite.
Our best time seems to be 11am EST (~30min from now) for the responders. If you are available, please join us on Zoom(1) to help us begin planning our efforts for the OSSF EDU.SIG DEI Subcommittee.
Cheers,
CRob Director of Security Communications Intel Product Assurance and Security
|
||||||||||||
|
|
||||||||||||
|
Re: [FYI] New EDU.SIG DEI Subcommittee
toggle quoted message
Show quoted text
From: Christine Abernathy <c.abernathy@...>
Sent: Thursday, December 15, 2022 6:53:44 AM To: Jay White <jaywhite@...>; CRob Robinson <christopher.robinson@...>; openssf-sig-education@... <openssf-sig-education@...>; openssf-sig-education-dei@... <openssf-sig-education-dei@...> Cc: openssf-wg-best-practices@... <openssf-wg-best-practices@...>; yyser@... <yyser@...> Subject: [EXTERNAL] Re: [FYI] New EDU.SIG DEI Subcommittee Hi Jay
Noon ET / 9am PST was the most popular time. Can you make that work? CRob is planning to send out an invite for that time. We could also go with 11am ET / 8am PT. It was the next
most popular time.
Thanks
Christine
From: Jay White <jaywhite@...>
Sent: Thursday, December 15, 2022 8:34:00 AM To: Christine Abernathy <c.abernathy@...>; CRob Robinson <christopher.robinson@...>; openssf-sig-education@... <openssf-sig-education@...>; openssf-sig-education-dei@... <openssf-sig-education-dei@...> Cc: openssf-wg-best-practices@... <openssf-wg-best-practices@...>; yyser@... <yyser@...> Subject: Re: [FYI] New EDU.SIG DEI Subcommittee EXTERNAL MAIL: jaywhite@... I believe we were all good with the 8-9 am (I'm assuming PST) time frame for today.
I may have gotten my selection in too late. Let me know if I need to choose another time.
Jay White
From: openssf-sig-education-dei@... <openssf-sig-education-dei@...> on behalf of Christine Abernathy via lists.openssf.org
<c.abernathy=f5.com@...>
Sent: Wednesday, December 14, 2022 1:45:24 PM To: CRob Robinson <christopher.robinson@...>; openssf-sig-education@... <openssf-sig-education@...>; openssf-sig-education-dei@... <openssf-sig-education-dei@...> Cc: openssf-wg-best-practices@... <openssf-wg-best-practices@...>; yyser@... <yyser@...> Subject: [EXTERNAL] Re: [openssf-sig-education-dei] [FYI] New EDU.SIG DEI Subcommittee
Hi
Happy to see this get started. A quick clarification, Jay White and I will be co-chairs.
Thanks Christine
--
From:
openssf-sig-education-dei@... <openssf-sig-education-dei@...> on behalf of CRob Robinson <christopher.robinson@...> EXTERNAL MAIL: bounce+112097+1+6791241+11891681@... Team – we’ve had numerous members express interest in devoting time to collaborating specifically on our Diversity, Equity, and Inclusion goals for the SIG. If you wish to join in the conversation and help us further these important components of our plan, please join us on Slack(1), our mailing list(2), and sign up to join the kick-off call chaired by our very own Christine(3)! We’d LOVE to get this group kickstarted before the end of 2022 so we can hit the ground running on achieving our goals early in 2023! Thanks for your consideration and support!
Cheers,
CRob Director of Security Communications Intel Product Assurance and Security
|
||||||||||||
|
|
||||||||||||
|
Re: [FYI] New EDU.SIG DEI Subcommittee
Christine Abernathy (F5 Networks)
Hi Jay
Noon ET / 9am PST was the most popular time. Can you make that work? CRob is planning to send out an invite for that time. We could also go with 11am ET / 8am PT. It was the next most popular time.
Thanks
Christine
From: Jay White <jaywhite@...>
Sent: Thursday, December 15, 2022 8:34:00 AM To: Christine Abernathy <c.abernathy@...>; CRob Robinson <christopher.robinson@...>; openssf-sig-education@... <openssf-sig-education@...>; openssf-sig-education-dei@... <openssf-sig-education-dei@...> Cc: openssf-wg-best-practices@... <openssf-wg-best-practices@...>; yyser@... <yyser@...> Subject: Re: [FYI] New EDU.SIG DEI Subcommittee EXTERNAL MAIL: jaywhite@... I believe we were all good with the 8-9 am (I'm assuming PST) time frame for today.
I may have gotten my selection in too late. Let me know if I need to choose another time.
Jay White
From: openssf-sig-education-dei@... <openssf-sig-education-dei@...> on behalf of Christine Abernathy via lists.openssf.org
<c.abernathy=f5.com@...>
Sent: Wednesday, December 14, 2022 1:45:24 PM To: CRob Robinson <christopher.robinson@...>; openssf-sig-education@... <openssf-sig-education@...>; openssf-sig-education-dei@... <openssf-sig-education-dei@...> Cc: openssf-wg-best-practices@... <openssf-wg-best-practices@...>; yyser@... <yyser@...> Subject: [EXTERNAL] Re: [openssf-sig-education-dei] [FYI] New EDU.SIG DEI Subcommittee
Hi
Happy to see this get started. A quick clarification, Jay White and I will be co-chairs.
Thanks Christine
--
From:
openssf-sig-education-dei@... <openssf-sig-education-dei@...> on behalf of CRob Robinson <christopher.robinson@...> EXTERNAL MAIL: bounce+112097+1+6791241+11891681@... Team – we’ve had numerous members express interest in devoting time to collaborating specifically on our Diversity, Equity, and Inclusion goals for the SIG. If you wish to join in the conversation and help us further these important components of our plan, please join us on Slack(1), our mailing list(2), and sign up to join the kick-off call chaired by our very own Christine(3)! We’d LOVE to get this group kickstarted before the end of 2022 so we can hit the ground running on achieving our goals early in 2023! Thanks for your consideration and support!
Cheers,
CRob Director of Security Communications Intel Product Assurance and Security
|
||||||||||||
|
|
||||||||||||
|
Re: [FYI] New EDU.SIG DEI Subcommittee
Exciting times, Team!
toggle quoted message
Show quoted text
I believe we were all good with the 8-9 am (I'm assuming PST) time frame for today.
I may have gotten my selection in too late. Let me know if I need to choose another time.
Jay White
From: openssf-sig-education-dei@... <openssf-sig-education-dei@...> on behalf of Christine Abernathy via lists.openssf.org
<c.abernathy=f5.com@...>
Sent: Wednesday, December 14, 2022 1:45:24 PM To: CRob Robinson <christopher.robinson@...>; openssf-sig-education@... <openssf-sig-education@...>; openssf-sig-education-dei@... <openssf-sig-education-dei@...> Cc: openssf-wg-best-practices@... <openssf-wg-best-practices@...>; yyser@... <yyser@...> Subject: [EXTERNAL] Re: [openssf-sig-education-dei] [FYI] New EDU.SIG DEI Subcommittee
Hi
Happy to see this get started. A quick clarification, Jay White and I will be co-chairs.
Thanks Christine
--
From:
openssf-sig-education-dei@... <openssf-sig-education-dei@...> on behalf of CRob Robinson <christopher.robinson@...> EXTERNAL MAIL: bounce+112097+1+6791241+11891681@... Team – we’ve had numerous members express interest in devoting time to collaborating specifically on our Diversity, Equity, and Inclusion goals for the SIG. If you wish to join in the conversation and help us further these important components of our plan, please join us on Slack(1), our mailing list(2), and sign up to join the kick-off call chaired by our very own Christine(3)! We’d LOVE to get this group kickstarted before the end of 2022 so we can hit the ground running on achieving our goals early in 2023! Thanks for your consideration and support!
Cheers,
CRob Director of Security Communications Intel Product Assurance and Security
|
||||||||||||
|
|
||||||||||||
|
Re: [FYI] New EDU.SIG DEI Subcommittee
Christine Abernathy (F5 Networks)
Hi
Happy to see this get started. A quick clarification, Jay White and I will be co-chairs.
Thanks Christine
--
From:
openssf-sig-education-dei@... <openssf-sig-education-dei@...> on behalf of CRob Robinson <christopher.robinson@...> EXTERNAL MAIL: bounce+112097+1+6791241+11891681@... Team – we’ve had numerous members express interest in devoting time to collaborating specifically on our Diversity, Equity, and Inclusion goals for the SIG. If you wish to join in the conversation and help us further these important components of our plan, please join us on Slack(1), our mailing list(2), and sign up to join the kick-off call chaired by our very own Christine(3)! We’d LOVE to get this group kickstarted before the end of 2022 so we can hit the ground running on achieving our goals early in 2023! Thanks for your consideration and support!
Cheers,
CRob Director of Security Communications Intel Product Assurance and Security
|
||||||||||||
|
|
||||||||||||
|
[FYI] New EDU.SIG DEI Subcommittee
Team – we’ve had numerous members express interest in devoting time to collaborating specifically on our Diversity, Equity, and Inclusion goals for the SIG. If you wish to join in the conversation and help us further these important components of our plan, please join us on Slack(1), our mailing list(2), and sign up to join the kick-off call chaired by our very own Christine(3)! We’d LOVE to get this group kickstarted before the end of 2022 so we can hit the ground running on achieving our goals early in 2023! Thanks for your consideration and support!
Cheers,
CRob Director of Security Communications Intel Product Assurance and Security
|
||||||||||||
|
|
||||||||||||
|
[RFC] EDU.SIG Plan ready for review & comment - DUE 23Dec2022
EDU.SIG & BEST WG members – the EDU.SIG has completed our work on the next draft of the Education plan that we desire to share with the TAC in early 2023. Please take some time and read through the plan(1) and provide any feedback you may have(2). If you have corrections or desired changes to the wording, please submit a PR. We’d like to have this feedback no later than 23Dec2022 so that we can begin the process of sharing with the TAC and GB. Thanks to everyone that helped us get this far, great work! I’m really looking forward to collaborating on the next stages of our efforts here!
Cheers,
CRob Director of Security Communications Intel Product Assurance and Security
|
||||||||||||
|
|
||||||||||||
|
[RFC] - Request for any notes on EDU.SIG plan
EDU.SIG - as we near completion of the revised plan, I invite EVERYONE to give it a last read/re-read to ensure it makes sense and we're not missing any obvious gaps. As each section wraps up I'll be ensuring the formatting/wording is consistent as well as collecting all resource needs into a summary page. I'll send an official RFC out once that happens, but we'd love to get any gaps or questions addressed ASAP - https://github.com/ossf/education/tree/main/plan
Cheers,
CRob Director of Security Communications Intel Product Assurance and Security
|
||||||||||||
|
|
||||||||||||
|
Education Materials Organization Spreadsheet Complete
Dave Russo
FYI,
The initial version of the Educational Materials Matrix [1] has been completed and is available to accept data. The intention for this spreadsheet is to have a definitive centralized list of the existing secure development educational materials that the Education SIG intends to use in pursuit of our objectives. We have defined a number of categories that will help us understand what each artifact provides and assist with creating curricula, defining gaps, acquiring and creating new content and planning for engaging and incentivizing the open source community. To add an item to the spreadsheet, please provide the following in the Matrix tab: - Title of the artifact, hyperlinked to its location - Content Type - selected from the drop-down list - Check all Domains that apply to the artifact (these are intended to be general, see the Domain Mapping tab for examples) - Check all Personas that apply to the artifact (the types of learner that would benefit from the content) - Check all Learner Levels that apply to the artifact - Stack / Language - selected from the drop-down list - The date of the submission in the Last Updated column - The name (and e-mail) of the person who submitted the artifact in the Submitted By column Suggestions for changes to the spreadsheet and categories should be submitted by creating an issue in the SIG repo [2]. Thanks to everyone that contributed, especially those who met during our working session yesterday to get things wrapped up! Dave [1] https://docs.google.com/spreadsheets/d/14g7jdt-e-AV1aeFFDKpPkyUh3ljPhC2kalaojMurqBU/edit?usp=sharing [2] https://github.com/ossf/education/issues -- Dave Russo Senior Principal Program Manager, Secure Development Red Hat Product Security |
||||||||||||
|
|
||||||||||||
|
Invitation: Materials Matrix Spreadsheet @ Thu Oct 20, 2022 9am - 10am (EDT) (openssf-sig-education@lists.openssf.org)
Dave Russo
|
||||||||||||
|
|
| 1 - 20 of 33 |