Codific
  • Home
  • AppSec
    • SAMMY
      • OWASP SAMM with SAMMY
    • OWASP SAMM Assessments
      • OWASP SAMM Assessment Additional Resources
    • OWASP SAMM Training
    • SAMMY Recommended Vendor Program
    • AppSec Partners
    • Global Appsec San Francisco
    • Global Appsec Lisbon
  • Ed-Tech
    • Videolab
    • MatchMaker
    • TestPortal with Supervisor
    • Attendance Radar
    • Partners
  • HR-Tech
    • SARA: Survey Analysis and Reporting Automation
    • HR Partners
  • Success Stories
    • Zebra Technologies uses SAMMY to implement OWASP SAMM
    • Digitalized student learning through Videolab – Maastricht University
    • Video evaluations with Videolab – Amsterdam VUmc
    • Secure video sharing with Videolab – Amsterdam UMC
    • General practitioner training with Videolab – Belgian universities
    • Improving medical education with Videolab – RadboudUMC
  • About
    • The Story Behind Codific
    • Who we are
    • Careers
    • Codific Academy
    • Codific @ OWASP
    • Contact
  • Insights

Author Archives: Aram Hovsepyan

Home Aram Hovsepyan
Security frameworks ontology

12

Dec

Information Security and Cybersecurity: Understanding the Layers

  • Aram Hovsepyan
  • Application Security, Cybersecurity, Information Security, Secure Software Development

The terms information security and cybersecurity are often used interchangeably, which frequently leads to confusion. […]

Read Article
Mappings to OWASP SAMM

07

Dec

NIST 800-53 and NIST 800-171: Key Differences

  • Aram Hovsepyan
  • Compliance, Cybersecurity, NIST SSDF, Privacy by Design, Security, Software security

The U.S. cybersecurity strategy seems to be lightyears ahead of the EU. I strongly believe[…]

Read Article
Comparing NIST SSDF vs SAMM

28

Nov

Comparing NIST SSDF and OWASP SAMM: A Comprehensive Analysis

  • Aram Hovsepyan
  • Application Security, BSIMM, NIST SSDF, OWASP, SAMM

Over the past year, our SAMMY tool has grown significantly. It now supports not just[…]

Read Article
fisma

22

Nov

What is FISMA and how to comply with it

  • Aram Hovsepyan
  • Application Security, Compliance, Cybersecurity

What is FISMA and why is it important? The Federal Information Security Modernization Act (FISMA)[…]

Read Article
CSF 2.0 Functions

20

Nov

What is NIST CSF 2.0 and how to implement it

  • Aram Hovsepyan
  • Application Security, Cybersecurity, Secure Software Development

Managing cybersecurity risks requires a clear strategy combining people, processes, tools, and knowledge, all guided[…]

Read Article
Mastering OWASP SAMM

02

Nov

Common mistakes when implementing OWASP SAMM

  • Aram Hovsepyan
  • Application Security, OWASP, SAMM, Secure Software Development, SSDLC

OWASP Software Assurance Maturity Model (SAMM) is one of the only comprehensive frameworks available for[…]

Read Article
Mastering OWASP SAMM

20

Oct

Supplier Security Explained: Best Practices to Manage Supplier Risk

  • Aram Hovsepyan
  • Application Security, OWASP, SAMM, Secure Software Development, SSDLC

What is supplier risk management about? Outsourcing software development has become a cornerstone for many[…]

Read Article
Mastering OWASP SAMM

19

Oct

Software Security Requirements Explained: Why It Matters and How to Implement It Effectively

  • Aram Hovsepyan
  • Application Security, OWASP, SAMM, Secure Software Development, SSDLC

Introduction to software security requirements Despite clearly understanding the importance of security requirements, organizations seem[…]

Read Article
SAMM Benchmark average data across all business functions.

05

Oct

OWASP SAMM Benchmark Data Update

  • Aram Hovsepyan
  • Application Security, OWASP, SAMM

The OWASP Software Assurance Maturity Model (SAMM) is rapidly becoming the go-to framework for application[…]

Read Article
Bridging cybersecurity compliance standards

02

Oct

Mapping compliance standards: Harnessing SAMMY and OpenCRE

  • Aram Hovsepyan
  • Application Security, NIST SSDF, OWASP, SAMM, Secure Software Development, Software security

Cybersecurity in general and application security (AppSec) in particular are extremely challenging topics. They run[…]

Read Article
Zebra Technologies in the NFL

20

Mar

Maturing the SDLC with OWASP SAMM at a Fortune 500 Company

  • Aram Hovsepyan

Application security is a paramount concern for organizations that develop software. However systematically managing AppSec[…]

Read Article
Security requirements driven testing

28

Feb

Security Requirements Driven Development: the best ROI for your SDLC

  • Aram Hovsepyan
  • Application Security, SAMM, SDLC, Secure Software Development, Software security, SSDLC

Application security requires a systematic approach and requires dealing with software security throughout every stage[…]

Read Article
Next

Building a simple and safe digital future

  • Visit Codific's LinkedIn channel (opens in a new tab)
  • Visit Codific's YouTube channel (opens in a new tab)

Main Focus

Application Security BSIMM Cybersecurity NIST SSDF OWASP Privacy by Design SAMM Secure Software Development Security Security Software Engineer Software security SSDLC

Recent Post

  • December 19, 2024

    How to implement NIST 800-53

    December 19, 2024

  • A visually modern illustration of a secure digital network with interconnected nodes and locks symbolizing cybersecurity controls, representing the comprehensive protection offered by frameworks like NIST 800-53.

    December 19, 2024

    What is NIST 800-53? A comprehensive guide

    December 19, 2024

  • ISO Controls

    December 16, 2024

    How to implement ISO 27001

    December 16, 2024

In the Spotlight

  • Videolab
  • SAMMY
  • SARA
  • Attendance Radar
  • Terms & Conditions
  • Privacy Policy

Codific ® 2024. All rights reserved.