A Secure Software Development Lifecycle Model Matures

June 24, 2014

It is one thing to say you have secure software, it is quite another to back that up with security best practices. Building Security In Maturity Model (BSIMM) is a secure software development lifecycle model that grew out of observations around software security practices at nine companies ranging from Adobe to Google, and Wells Fargo back in 2009. BSIMM's third iteration, released on Tuesday, now includes the best practices for secure software development from 42 companies, including 19 financial services companies, which co-creator Gary McGraw said are at least "five to seven years ahead of the federal government" in terms of security.

Read More