I graduated cum laude on a Master in Computer Engineering in Rome, with a thesis on the merits of moving the entire core tech stack of Telecom Italia – the largest Italian telco – to Open Source.
I went on to spend my whole career in open source, with over 20 years in across Italy, The Netherlands, The East and West Coast of the US, garnering experience in each of the major constituents of the ecosystem: individual contributors, contributing corporates and open source foundations.
I started on the community side, in an individual capacity as a contributor (Apache Maven), committer and release manager (Apache Chemistry, Spring Surf), and community builder (alfresco-sdk).
I had the luck of being paid for my open source work when I joined Alfresco (a UK headquarters open source content management system). Over 7 years, I covered several individual contributor and management roles across Engineering, Professional Services, Support, Sales Engineering and Product Management. During this period I also participated in open standardization processes, like CMIS (Content Management Interoperability Services) under OASIS.
In 2016, I became the initial Executive Director for the Symphony Software Foundation, a 501c6 open source foundation created by the largest global investment banks in the world to democratize secure communications technology in financial services. Founding Members included Goldman Sachs, Blackrock, JPMorgan, Morgan Stanley, Citi, Deutsche Bank, S&P.
Less than two years later I led the Board to rebrand the Symphony Software Foundation into FINOS, the Fintech Open Source Foundation, with the broader mission of enabling individuals and companies to better collaborate on financial technology, seizing the major opportunity for open collaboration in a conservative and highly regulated industry.
In two years we grew to 40 Members with a diverse representation across financial institutions, technology, data and fintech vendors, and hosted over 30 open source (landscape.finos.org) and open standard projects (e.g. fdc3.finos.org), with major contributions amongst others by Goldman Sachs (legend.finos.org), JPMorgan (perspective.finos.org), Morgan Stanley (morphir.finos.org) and Deutsche Bank (waltz.finos.org).
In early 2020 right before the pandemic, I led FINOS to join the Linux Foundation umbrella to accelerate growth, ensure long term sustainability of our efforts and seeking to reduce fragmentation in the Foundation’s ecosystem.
Since then we almost doubled our Membership base, growing our global footprint with notable additions of Wellington Management, Google, Societe Generale, Natwest, Lloyds and AXA, continued to grow our project portfolio with a strong focus on better regulatory technology and collaborating directly with regulators (e.g. Common Domain Model – https://www.finos.org/common-domain-model), and grew the Open Source in Finance Forum, the sole event for open source in Financial Services, to over 800 people across NYC and London.
Besides the growth of the FINOS Community, perhaps the most notable achievement is that open source is nowadays much better understood in this industry, with financial institutions (and regulators) not only structuring themselves for open source (I personally witnessed 20+ OSPOs created in 2022), but engaging in contributions not only specific to their industry but also upstream (e.g. OpenSSF, Kubernetes, Pandas, etc.)
As of September 2022, I’ve taken on a dual role as General Manager of the newly launched Linux Foundation Europe, created to foster regional open collaborations in the European continent and grow them through the global platform of the Linux Foundation (e.g. openwallet.foundation) . While I’m still based in the Bay Area until relocating to Europe in a not so far future, I spend at least 20% of my time in Europe working closely with the EU and public sector, the Linux Foundation Europe Members (linuxfoundation.eu/en/members), individual contributors and engaging in collaborative initiatives with other open source foundation (e.g. Open Forum Europe, Eclipse, etc) on pressing community and policy matters (e.g. CRA, Fragmentation Report).
Outside of my day job(s), I am advisor for OpenBB (openbb.co), an open source investment platform.
On the personal front, I am a passionate Napoli (Italian football) fan and love playing football any chance I get. I love reggae/dancehall music and I enjoy cooking – unsurprisingly – Italian cuisine. I have extensive public speaking experience, both as keynote speaker and technical workshops, and I speak fluently Italian, English and Spanish, with a basic understanding of Dutch and French.
How the candidate will contribute to the board
I have the utmost respect for OSI as a fundamental institution at the very heart of the functioning of the global open source ecosystem.
Here’s a few areas which I assume would be beneficial for OSI:
– Introductions at executive, legal and technology level out of my extensive network in technology and financial services, across US and Europe
– Represent and catalyze attention, action and compliance of the hundreds of open source projects in the Linux Foundation
– Where applicable, co-promotion/co-organization of OSI initiatives through the platform of the Linux Foundation
– Support consensus building through my extensive board experiencing, lead / participating in Board committees as appropriate
– Represent OSI in public speaking engagements as well as meetings across private and public sector
– Produce blogs, podcasts, content for the OSI if desired
Ultimately, should I be elected I plan to contribute actively in the areas deemed most relevant by the Board of Directors and by the Executive Director, as I see myself at the service of the organization rather than the other way around.
Why the candidate should be elected
First off, it would be a dream and an incredible honor to serve in the OSI Board. I was born and bred in open source and I wouldn’t be here hadn’t I started contributing in the flourishing open source decade of the early 2000s.
This makes me an extremely motivated candidate, with the goal of making OSI ever more successful, as OSS evolves in the face of systemic sustainability challenges and existential challenges posed by AI.
As you decide your vote, I would ask you to consider I have:
– Been a contributor myself
– First-hand experience in all the constituents of the OSS ecosystem (contributor, commercial, foundation)
– Extensive Board leadership experience, having grown FINOS from the ground up through a pivot and a merger
– Unique experience of building a “vertical” foundation in one of highly regulated industry, a construct I expect to see ever more often as every industry undergoes digital transformation
– A global open source network, through my EU, UK and US tenures
– Developed, through FINOS, a clear vision for collaboration of public sector (lawmakers, regulators, academic), corporate and individual contributors
– Deep understanding of legal aspects of OSS, having build FINOS’ governance from the inception
Thank you for your consideration!
2 thoughts on “Gabriele Columbro”-
-
Questions for the candidates received from Luis Villa:
Your time: You have 24 hours in the day and could do many different things. Why do you want to give some of those hours to OSI? What do you expect your focus to be during those hours?
Licensing process: The organization has proposed improvements to the license-review process. What do you think of them?
Broader knowledge: What should OSI do about the tens of millions of people who regularly collaborate to build software online (often calling that activity, colloquially, open source) but don’t know what OSI is or what it does?
Regulation: New industry regulation in both the EU and US suggests government will be more involved in open source in the future. What role do you think OSI should play in these discussions? How would you, as a board member, impact that?
Solo maintainers: The median number of developers on open source projects is one, and regulation and industry standards are increasing their burden. How (if at all) should OSI address that? Is there tension between that and industry needs?
OSI initiative on AI: What did you think of the recent OSI initiative on AI? If you liked it, what topics would you suggest for similar treatment in the future? If you didn’t like it, what would you improve, or do instead?
Responsible licensing: There are now multiple initiatives around “responsible” or “ethical” licensing, particularly (but not limited to) around machine learning. What should OSI’s relationship to these movements and organizations be?
Thanks for your your questions, Luis! Answers below:
Your time: You have 24 hours in the day and could do many different things. Why do you want to give some of those hours to OSI? What do you expect your focus to be during those hours?
Because I really hate sleeping 🙂
Kidding aside, in terms of why:
– on a personal level because I truly believe in strengthening the role of OSI as the neutral steward for the very definition of open source and I can’t think of a better way than driving my multi-faceted experience across different constituencies (individual contributor, corporate open source, foundations) in service of the Board.
– on a professional level, because the Linux Foundation’s global presence and hosting of projects across every level of the stack and industry allows me to provide a very broad perspective and provide representation to a very large slice of the open source community might otherwise not be represented in the OSI.
In terms of focus, as I discussed in my candidate information, I think I see myself helping building consensus in the board by engaging in active collaboration with the other board members, active leading conversations with the private and public sector, as well as expanding the OSI support through introductions and making connections outside of the tech industry (e.g. finance).
Licensing process: The organization has proposed improvements to the license-review process. What do you think of them?
Given IANAL, I don’t believe I am in the position of making categorical statements on the output of a working group which I have not participated in or even followed extremely closely. As an general approach, I am more often than not supportive of progressive / incremental improvements (generally on everything, as I believe no process is ever perfect) to what was perceived as a confusing review process by the community, especially in the wake of the heated debates in the open source community at large on new licenses emerged in the last years. Having said that, I do particularly favor the 2 explicit requirements for new licenses to “describe what gap not filled by currently existing licenses that the new license will fill” and “compare it to and contrast it with the most similar OSI-approved license(s)”, because it affirmatively puts the burden on the submitter to demonstrate the actual general need for a new license, hence fostering consolidation rather than proliferation.
Broader knowledge: What should OSI do about the tens of millions of people who regularly collaborate to build software online (often calling that activity, colloquially, open source) but don’t know what OSI is or what it does?
I think the answer truly depends on what is the direct benefit / value for collaborators out there that are not aware of the OSI and its role. Meaning, if a developer is *actually* doing open source, i.e. working on a project that uses a license that respects the OSD, then I don’t think they necessarily need to know about the OSI. On the other hand, I would focus OSIs attention and advocacy on those developer who *think* they are doing open source and instead they are either collaborating on a project with no license, a pseudo/wannabe open source license or even worse on a project whose sole purpose is openwashing. Especially the latter phenomenon is still quite widespread in less mature industries (e.g. finance) where the “open” buzzword is largely abused.
Regulation: New industry regulation in both the EU and US suggests government will be more involved in open source in the future. What role do you think OSI should play in these discussions? How would you, as a board member, impact that?
I think the OSI should be at the forefront of these conversations, because regulations like the CRA or the recent US Cyber Security Strategy have the potential to effectively massively impact open source as we know it, and either inadvertently or purposefully shunt the unique innovation engine it has proven to be over the last decades. As a Board member, I would advocate for OSI to be the lead of a broad coalition across the largest open source non-profit organizations, commercial open source companies and individual contributors to effectively impact legislation before it takes effect and over time. As GM for Linux Foundation Europe I would expect my support to be more effective in EU level regulations.
Solo maintainers: The median number of developers on open source projects is one, and regulation and industry standards are increasing their burden. How (if at all) should OSI address that? Is there tension between that and industry needs?
I am not sure how well the OSI is currently positioned to address the issue solo, but I do think that, in collaboration with other entities, OSI can and should be an advocate for individual contributors, by helping more effectively identify projects with critical sustainability issues and then campaign for private/public sector funding projects for the long tail that don’t have an established financial sponsorship model (e.g. open source foundations, crowdfunding, direct-to-maintainer funding platforms). Ultimately, while I am very conscious of the tension between between individuals and industry – and early in my open source career I certainly have been supportive of more divisive positions – but I currently am of the opinion that in this time and age we will not be able to address some of the systemic sustainability issues with open source without private sector investment and participation. And ultimately, as I’ve learned in creating a community in one of the most conservative industries in the world – finance – I firmly believe open source can and should be a positive-sum game, whereby inherently there’s value produced for each constituent, i.e. business value for the private and social value for public sector. It’s all about how value is then fairly redistributed to individuals, and I welcome the opportunity to work with the OSI board to figure out how.
OSI initiative on AI: What did you think of the recent OSI initiative on AI? If you liked it, what topics would you suggest for similar treatment in the future? If you didn’t like it, what would you improve, or do instead?
While I haven’t had a chance to follow in a great deal of detail – yet, as I said in my candidate notes, AI is redefining what open source means and I believe it’s important for OSI to evolve the scope of its activities to reflect that.
Per the previous questions, I think – potentially connected – topics that could use similar treatments would be:
– The relationship and active engagement of public sector in open source to drive collective value and
– open source ecosystem sustainability
Responsible licensing: There are now multiple initiatives around “responsible” or “ethical” licensing, particularly (but not limited to) around machine learning. What should OSI’s relationship to these movements and organizations be?
While I am instinctively driven to explore common points with these initiatives as I do firmly believe in the social value / social responsibility of open source, as IANAL, I am quite wary of any unintended consequences changes to the current ethos of the OSD might have on the overall open source ecosystem.
Thanks again for considering my candidacy!