OWASP SAMM version 2.0 PDF is now available

OWASP Security Assurance Maturity Model (SAMM) provides an effective and measurable way for all types of organizations to analyze and improve their software security posture. SAMM provides the roadmap to organizations on how to design, develop, and deploy secure software through our self-assessment model. It supports the complete software lifecycle and is technology and process agnostic.


SAMM has evolved quite a bit since the initial release of versions 1.0 and 1.5. Amongst the key changes worth noting are a number of new security practices, more alignment between maturity levels, coverage- and quality-based measurement, redesign of maturity levels in order of increasing difficulty, and implementation cost. 


However, as opposed to SAMM version 1.5 there was still no comprehensive PDF model available for version 2.0. We are happy to share that team Codific has created a comprehensive and UI-optimized PDF of the OWASP SAMM 2.0.

You can now download it from here: SAMM version 2.0 PDF

While you are here, check out SAMMY our free practical OWASP SAMM tool.