Sunday, May 16, 2010

Building Security In Maturity Model, comparative security study for your security initiative

I just came across something called the Building Security In Maturity Model (BSIMM), pronounced "bee simm", study that should be important to us all which is security. If you don't have a software security initiative, you need one. This one has been released under a creative commons license. We can use BSIMM as a measuring stick to determine where our approaches to software security currently stands relative to other firms. I recognized a couple of the names listed has participants in the study as being involved in the Embedded Space, we need to see more.
"The BSIMM is a study of real-world software security initiatives organized so that you can determine where you stand with your software security initiative and how to evolve your efforts over time."