close search bar

Sorry, not available in this language yet

close language selection

BSIMM14 Report

An analysis of the top software security initiatives

BSIMM14 report

What’s Inside 

Building Security in Maturity Model (BSIMM) is a data-driven model developed through the analysis of real-world software security initiatives (also known as application security, product security, or DevSecOps programs). The BSIMM14 report, published in December 2023, represents the latest evolution of this detailed measuring stick for software security.

Through the analysis of 130 organizations across a variety of industry verticals, the BSIMM14 report reveals

  • The top 10 software security activities being used today
  • Notable growth in Software Bill of Materials (SBOM) creation, governance and automation, security champion program enablement, cloud security programs, and vulnerability disclosure efforts
  • Supply chain security, “shift everywhere,” and other major trends
  • Key actions organizations should adopt to evolve their application security programs

Download the report


BSIMM14 Report

Explore the findings based on an analysis of 130 organizations on software security trends, top security activities, growth in “shift everywhere” testing methodologies and integrations, software supply chain risk management, cloud security efforts, and key actions for improving security programs.

BSIMM Trends & Insights

Download the latest BSIMM