The Building Security In Maturity Model (BSIMM) is a data-driven model developed through rigorous analysis of software security initiatives (SSIs), also known as application / product security programs. BSIMM11 represents the latest evolution of this detailed and sophisticated “measuring stick” for SSIs.
Our analysis of real-world data from 130 organizations in nine industry verticals revealed these trends:
Engineering-led software security efforts are having success contributing to DevOps value streams in pursuit of resiliency.
Software-defined security governance is no longer just aspirational.
Security is becoming part of a quality practice, which is being recognized as part of reliability, all in pursuit of resilience.
“Shift left” is becoming “shift everywhere.”
Download BSIMM11 now to learn about these findings and discover what activities are essential for building a successful SSI.
Download the latest BSIMM
The BSIMM is designed to help you understand, measure, and plan a software security initiative. The BSIMM was created by observing and analyzing real-world data from leading software security initiatives.