Building Security in Maturity Model: BSIMM3
The BSIMM is designed to help you understand, measure, and plan a software security initiative. The BSIMM was created by observing and analyzing real-world data from 42 leading software security initiatives.
“The BSIMM provides unique and objective insight into what software security practices are in use today across a diverse set of large corporations, as well as a helpful taxonomy for describing these practices. In this way, the BSIMM provides a great foundation for future industry work to advance software assurance and SAFECode looks forward to taking a closer look at the new data.”