Diversity, Equity, and Inclusion in OpenSSF
Security Through Inclusion
At SOSS Community Day North America 2024, John Kjell joined a panel discussion exploring how diversity, equity, and inclusion initiatives can strengthen the security of open source software. This wasn't just about doing the right thing socially - it was about recognizing that diverse perspectives are essential for building secure, resilient software systems.
As a leader in the OpenSSF community, John brought practical experience about how DEI initiatives can be integrated into security-focused open source projects. The discussion explored both the challenges and opportunities of building more inclusive communities in the security space.
Beyond Good Intentions
The panel went beyond surface-level discussions of diversity to examine how inclusive practices directly impact the quality and security of the software we produce. When security tools and practices are developed by diverse teams, they're more likely to work for diverse user bases and environments.
John's perspective from TestifySec's work in supply chain security provided concrete examples of how different backgrounds and experiences contribute to identifying and solving security challenges that homogeneous teams might miss.
Key Takeaways
Diverse perspectives strengthen security by identifying blind spots and edge cases
Inclusive communities produce more robust and broadly applicable security solutions
Barriers to participation often disproportionately affect underrepresented groups
Mentorship and sponsorship are crucial for building diverse leadership in security projects
DEI initiatives must be embedded in project governance, not treated as afterthoughts
Psychological safety is essential for contributors to raise security concerns and ask questions
Watch the Full Presentation
60 minutes of insights on DEI
About the Speaker
About John Kjell
John Kjell is a Principal Consultant at ControlPlane and an active leader in the OpenSSF community, where he champions both security excellence and inclusive practices. His unique perspective comes from understanding that stronger communities produce stronger security outcomes.
Throughout his career, John has been committed to building bridges between different communities and perspectives. His work in DEI isn't separate from his security expertise - he sees inclusion as fundamental to creating robust, widely applicable security solutions.
John has contributed to multiple OpenSSF working groups and initiatives, always with an eye toward making these critical security projects accessible to contributors from all backgrounds. His approach emphasizes practical implementation over abstract ideals, focusing on changes that demonstrably improve both inclusion and security outcomes.
Related Resources
OpenSSF Community Guidelines
Community standards and inclusive practices for OpenSSF projects
CHAOSS Diversity & Inclusion Metrics
Metrics and tools for measuring diversity and inclusion in open source communities
All In for Students
Initiative to increase diversity in open source through student engagement and mentorship