I am Not running for the OWASP Board of Directors
I’ve had quite a number of people ask if I am running for the OWASP Board of Directors, and I thought I’d let you know that I have no plans for that, and the reasons why.
If you’ve followed me at all you know that I love the OWASP organization and the community that surounds it. It’s a huge part of my career, and quite frankly, my personal life. I have volunteered countless hours for them, and intend to continue doing so. But not on the board.
Here are my reasons, for those who are curious:
- I have no idea how to be a director of a board. I’m an AppSec nerd, not an executive. If you need me to make an app, I can do that. If you want me to run an international non-profit organization that affects hundreds of thousands of people, has to report to the government for charity status, has to follow different laws in different countries, and more…. I have no experience on my resume that suggests I am qualified for such a position.
- The time commitment for the board is huge. If I was on the board I would no longer have time for all of the other areas of OWASP that I currently volunteer for. This includes the OWASP DevSlop project, the OWASP Ottawa Chapter, running the OWASP Table at Def Con, mentoring several women in AppSec, participating and running events for Women In AppSec (WIA) and my newest venture: Cyber Ladies. I feel like I make a very positive difference doing all of these things, in a way that only I can. If I was on the board, no one would take over all of these initiatives.
- The board have to deal with difficult things, that quite frankly make me uncomfortable. The board, along with the compliance committee, is currently taking acting on a complaint that I made of someone who I felt was bullying women within OWASP. Just making the complaint and going through the process made me stressed, uncomfortable and at times I wanted to run away and hide from the situation. But they confronted the problem head-on, like the professionals that they are. I’m extremely grateful to them for this. Not only for handling my specific complaint (THANK YOU!), but ALL of the complaints and other issues within OWASP. This is why I mostly work with computers instead of people, dealing with issues like this is not something I want to do.
- We have many other AMAZING humans who are going to run for the board this year, and from the ones that I know who are running so far, I would put my faith in (and vote for) any one of them. Confidently. We are lucky to have many, very qualified and dedicated candidates for the board of this wonderful community and professional organization.
- I just don’t feel like this is the best way for me to make a positive difference for our community.
Thanks for listening and supporting me in this decision.