Thursday, May 12, 2016


OWASP SAMM (Software Assurance Maturity Model) is an open framework to help organizations formulate and implement a strategy for software security that is tailored to the specific risks facing the organization.  SAMM helps you:

  • Evaluate an organization’s existing software security practices
  • Build a balanced software security assurance program in well-defined iterations
  • Demonstrate concrete improvements to a security assurance program
  • Define and measure security-related activities throughout an organization

The much anticipated SAMM 1.1 was released in March 2016.  Read the entire press release HERE.

Last month, contributors from 18 different cities in Belgium, France, Germany and the United States met in New York, NY for the second annual SAMM summit.   The SAMM contributors, led by Seba Deleersnyder and Bart De Win reviewed the 1.1 release, outlined improvements for the in-process 1.2 release (expected release date - June 2016), and created the roadmap for SAMM 2.0 (expected release date - June 2017).

Are you ready to get involved?  The SAMM team collaborates virtually  every 2nd Wednesday of the month.  Call details and minutes/agenda from previous calls can be found on the Community tab of the project webpage.

If you are unable to participate in the meetings, but still want to support SAMM, you can allocate a portion of your individual membership fees to the project or make a donation here.

Companies and other organizations who wish to support this project, please CONTACT US for additional information and options.

No comments: