You are viewing an old version of this page. View the current version.

Compare with Current View Page History

Version 1 Current »

Information on the TAC Security Seat Role

The TAC will elect from amongst the voting TAC members a chairperson for a term of one year. The TAC shall hold elections to select a TAC Chair annually; there are no limits on the number of terms a TAC Chair may serve. 

Responsibilities

The scope of this seat will include, but not be limited to:

The role of the security SME is to work with project TSCs, the TAC and the LFNGB to improve the security of the code produced by LFN projects by

  • Implementing more secure software development culture:
    • Secure software development best practices and tools (e.g. from the survey table),
    • Software development best practices and tools that decrease the vulnerabilities in LFN project code (code scanning, package upgrades),
    • Software supply chain security best practices (SBOM, code/container signing) to increase the security transparency of LFN project code,
    • LFIT security practice improvement,
    • OpenSSF badging assistance.
  • Identify cross open source project security issues and provide action recommendations.
  • Keep track of the The Open Source Software Security Mobilization Plan implementation and identify touch points for LFN projects.
  • Providing subject matter expertise to the TAC.
  • Advising the TAC on security related issues.

Election Mechanics

  • Candidates for TAC Appointment to the TAC are nominated by the existing TAC members.
  • A nomination page will be created for each candidate, including a supporting statement and contact information
  • Candidates must accept nomination prior to consideration.
  • Failure to accept within two weeks is considered declining the nomination.
  • Once the candidates' nomination period is complete, there will be a 14-day period for the TAC to contact and evaluate candidate submissions.

Nomination Phase

The nomination phase starting    and will conclude on    17:00 PDT. 

Election Phase

If there are multiple nominees: A Condorcet election will be initiated by the LF using the OpaVote voting system.  All TAC members will receive an invitation to vote. In the case of multiple candidates the timing is as follows:

  • The election phase will begin on with the distribution of the OpaVote poll via email
  • The election phase will end four (4) full business days later in the same time zone the poll was initiated from (typically PDT).


Information on Candidates

Name:
<photo>

Company: (Optional)

Short Biography:

Statement of Intent



-----------------------------------------------

-----------------------------------------------

  • No labels