{"id":309,"date":"2011-10-14T10:35:00","date_gmt":"2011-10-14T07:35:00","guid":{"rendered":"http:\/\/saisa.eu\/blogs\/Guidance\/?p=309"},"modified":"2011-10-14T17:54:36","modified_gmt":"2011-10-14T14:54:36","slug":"building-security-in-maturity-model-bsimm","status":"publish","type":"post","link":"https:\/\/saisa.eu\/blogs\/Guidance\/?p=309","title":{"rendered":"Building Security In Maturity Model (BSIMM)"},"content":{"rendered":"<p>There exist an interesting model for measuring Software Security called <a href=\"http:\/\/bsimm.com\/\">BSIMM<\/a>.<\/p>\n<p>Their Software Security Framework covers 4 domains and 12 practises.<\/p>\n<p><a href=\"http:\/\/saisa.eu\/blogs\/Guidance\/wp-content\/uploads\/2011\/10\/bsimm-ssf.png\"><img loading=\"lazy\" height=\"285\" alt=\"BSIMM-SSF\" src=\"http:\/\/saisa.eu\/blogs\/Guidance\/wp-content\/uploads\/2011\/10\/bsimm-ssf-small.png\" width=\"640\" \/><\/a><\/p>\n<p>&nbsp;<\/p>\n<p>The maturity is described with levels, and one can compare own result agains the average.<\/p>\n<p><a href=\"http:\/\/saisa.eu\/blogs\/Guidance\/wp-content\/uploads\/2011\/10\/bsimm3fakefirmvsearth42.png\"><img loading=\"lazy\" height=\"455\" alt=\"BSIMM3FakeFirmvsEarth42\" src=\"http:\/\/saisa.eu\/blogs\/Guidance\/wp-content\/uploads\/2011\/10\/bsimm3fakefirmvsearth42-small.png\" width=\"640\" \/><\/a><\/p>\n<p>&nbsp;<\/p>\n<p>Main links<\/p>\n<ul>\n<li><a href=\"http:\/\/bsimm.com\/facts\/\">Facts<\/a><\/li>\n<li><a href=\"http:\/\/bsimm.com\/community\/\">Community<\/a> with list of companies<\/li>\n<li><a href=\"http:\/\/bsimm.com\/online\/\">Software Security Framework<\/a><\/li>\n<\/ul>\n","protected":false},"excerpt":{"rendered":"<p>There exist an interesting model for measuring Software Security called BSIMM. Their Software Security Framework covers 4 domains and 12 practises. &nbsp; The maturity is described with levels, and one can compare own result agains the average. &nbsp; Main links &hellip; <a href=\"https:\/\/saisa.eu\/blogs\/Guidance\/?p=309\">Continue reading <span class=\"meta-nav\">&rarr;<\/span><\/a><\/p>\n","protected":false},"author":2,"featured_media":0,"comment_status":"open","ping_status":"open","sticky":false,"template":"","format":"standard","meta":[],"categories":[32,26],"tags":[],"_links":{"self":[{"href":"https:\/\/saisa.eu\/blogs\/Guidance\/index.php?rest_route=\/wp\/v2\/posts\/309"}],"collection":[{"href":"https:\/\/saisa.eu\/blogs\/Guidance\/index.php?rest_route=\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/saisa.eu\/blogs\/Guidance\/index.php?rest_route=\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/saisa.eu\/blogs\/Guidance\/index.php?rest_route=\/wp\/v2\/users\/2"}],"replies":[{"embeddable":true,"href":"https:\/\/saisa.eu\/blogs\/Guidance\/index.php?rest_route=%2Fwp%2Fv2%2Fcomments&post=309"}],"version-history":[{"count":1,"href":"https:\/\/saisa.eu\/blogs\/Guidance\/index.php?rest_route=\/wp\/v2\/posts\/309\/revisions"}],"predecessor-version":[{"id":310,"href":"https:\/\/saisa.eu\/blogs\/Guidance\/index.php?rest_route=\/wp\/v2\/posts\/309\/revisions\/310"}],"wp:attachment":[{"href":"https:\/\/saisa.eu\/blogs\/Guidance\/index.php?rest_route=%2Fwp%2Fv2%2Fmedia&parent=309"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/saisa.eu\/blogs\/Guidance\/index.php?rest_route=%2Fwp%2Fv2%2Fcategories&post=309"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/saisa.eu\/blogs\/Guidance\/index.php?rest_route=%2Fwp%2Fv2%2Ftags&post=309"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}