A passion for application security and a strong belief in OWASP SAMM is what brought Codific and Toreon together. The collaboration started within the scope of the core team behind SAMM where several people from both companies volunteer their time. Both companies are ambassadors of SAMM and have tons of real world experience implementing SAMM at organizations large and small in many different industries. As Toreon focusses on consultancy services around SAMM and Codific focuses on the tooling, this is your dream team when implementing SAMM at your organization. Hence the decision to host a booth together.
Toreon
Several key OWASP figures including the SAMM project co-leader are part of the Toreon team. Its close association with several projects and extensive experience with implementations make it the go-to partner for SAMM assessments and threat modeling training. Team members include Sebastien Deleersnyder, Maxim Baele and Steven Wierckx.
See the interview of The Application Security Podcast with Toreon’s CTO Sebastien Deleersnyder
Codific
Codific is a product team that first built SAMMY for internal use, to manage SAMM for all its products and teams. Ample demand led to a large investment in the tooling and the team behind it. Team members include Aram Hovsepyan and Brian Glas.
See the introduction to the OWASP SAMM Fundamentals Course by Aram Hovsepyan, the CEO of Codific
Download the full OWASP SAMM training for free.
You can download the full OWASP SAMM training in SCROM format so you can integrate it any LMS. Fill out the form below. Once submitted, you’ll receive an email with a direct download link, allowing you to integrate the SCORM package seamlessly into your learning environment.
What is SAMMY?
SAMMY is the tool we created to help with the implementation of OWASP SAMM. It exists in three versions, a free online version, an open source version (coming soon), and a corporate (paid) version.
