Earlier this week, Synopsys Inc. published the eleventh version of the Building Security In Maturity Model (BSIMM) looking at the software security practices across 130 different organisations in a variety of industries including financial services, FinTech, independent software vendors, cloud, healthcare, Internet of Things, insurance and retail. BSIMM11 outlines the work of over 8,000 software security professionals who are guiding the efforts of almost 500,000 developers.
BSIMM was created to help organisations plan, execute, measure and improve on their software security initiatives (SSIs). Through the community of other businesses using BSIMM, they are able to compare and contrast their own initiatives along with the data given from others. In the latest report, BSIMM11 shows how organisations are adapting their software security efforts to support digital transformation and modern software development paradigms like DevOps.
“The BSIMM is an excellent resource for security leaders interested in learning from the collective experiences of their peers, particularly to solve new or emerging challenges,” said Mike Newborn, CISO of Navy Federal Credit Union, a member organisation of the BSIMM community. “Today, most organisations face the challenge of securing a growing portfolio of applications against the backdrop of rapidly evolving and accelerating software development practices. BSIMM11 reflects how many of these organisations are adapting their software security strategies to protect themselves and their customers without stifling innovation or impeding the speed of development.”
There are some key trends that have emerged from BSIMM11. Firstly, it shows that CI/CD instrumentation and operations orchestration have become standard compon ..
Support the originator by clicking the read the rest link below.
