"The BSIMM is a study of real-world software security initiatives organized so that you can determine where you stand with your software security initiative and how to evolve your efforts over time."
Sunday, May 16, 2010
Building Security In Maturity Model, comparative security study for your security initiative
I just came across something called the Building Security In Maturity Model (BSIMM), pronounced "bee simm", study that should be important to us all which is security. If you don't have a software security initiative, you need one. This one has been released under a creative commons license. We can use BSIMM as a measuring stick to determine where our approaches to software security currently stands relative to other firms. I recognized a couple of the names listed has participants in the study as being involved in the Embedded Space, we need to see more.