Codific
  • Home
  • AppSec
    • SAMMY
      • OWASP SAMM with SAMMY
    • OWASP SAMM Assessments
      • OWASP SAMM Assessment Additional Resources
    • OWASP SAMM Training
    • SAMMY Recommended Vendor Program
    • AppSec Partners
    • Global Appsec San Francisco
    • Global Appsec Lisbon
  • Ed-Tech
    • Videolab
    • MatchMaker
    • TestPortal with Supervisor
    • Attendance Radar
    • Partners
  • HR-Tech
    • SARA: Survey Analysis and Reporting Automation
    • HR Partners
  • Success Stories
    • Zebra Technologies uses SAMMY to implement OWASP SAMM
    • Digitalized student learning through Videolab – Maastricht University
    • Video evaluations with Videolab – Amsterdam VUmc
    • Secure video sharing with Videolab – Amsterdam UMC
    • General practitioner training with Videolab – Belgian universities
    • Improving medical education with Videolab – RadboudUMC
  • About
    • The Story Behind Codific
    • Who we are
    • Careers
    • Codific Academy
    • Codific @ OWASP
    • Contact
  • Insights

SAMM

Home SAMM
BSIMM (Building Security In Maturity Model): A Complete Guide

29

Nov

BSIMM (Building Security In Maturity Model): A Complete Guide

  • Nicolas Montauban
  • Application Security, BSIMM, SAMM, Security, SSDLC

Application security is a complex discipline. To make things even harder for us, it is […]

Read Article
Comparing NIST SSDF vs SAMM

28

Nov

Comparing NIST SSDF and OWASP SAMM: A Comprehensive Analysis

  • Aram Hovsepyan
  • Application Security, BSIMM, NIST SSDF, OWASP, SAMM

Over the past year, our SAMMY tool has grown significantly. It now supports not just[…]

Read Article
Mastering OWASP SAMM

02

Nov

Common mistakes when implementing OWASP SAMM

  • Aram Hovsepyan
  • Application Security, OWASP, SAMM, Secure Software Development, SSDLC

OWASP Software Assurance Maturity Model (SAMM) is one of the only comprehensive frameworks available for[…]

Read Article
Mastering OWASP SAMM

20

Oct

Supplier Security Explained: Best Practices to Manage Supplier Risk

  • Aram Hovsepyan
  • Application Security, OWASP, SAMM, Secure Software Development, SSDLC

What is supplier risk management about? Outsourcing software development has become a cornerstone for many[…]

Read Article
Mastering OWASP SAMM

19

Oct

Software Security Requirements Explained: Why It Matters and How to Implement It Effectively

  • Aram Hovsepyan
  • Application Security, OWASP, SAMM, Secure Software Development, SSDLC

Introduction to software security requirements Despite clearly understanding the importance of security requirements, organizations seem[…]

Read Article
SAMM Benchmark average data across all business functions.

05

Oct

OWASP SAMM Benchmark Data Update

  • Aram Hovsepyan
  • Application Security, OWASP, SAMM

The OWASP Software Assurance Maturity Model (SAMM) is rapidly becoming the go-to framework for application[…]

Read Article
Bridging cybersecurity compliance standards

02

Oct

Mapping compliance standards: Harnessing SAMMY and OpenCRE

  • Aram Hovsepyan
  • Application Security, NIST SSDF, OWASP, SAMM, Secure Software Development, Software security

Cybersecurity in general and application security (AppSec) in particular are extremely challenging topics. They run[…]

Read Article
how to do SAMM assessments

10

May

How to do SAMM assessments: Everything you need to know from industry experts

  • Michaella Masters
  • Application Security, OWASP, Privacy by Design, SAMM, Security
Starting a OWASP SAMM assessment journey can feel overwhelming. SAMM, short for Software Assurance Maturity[...]
Read Article
Communicating security

12

Apr

Reporting with OWASP SAMM

  • Dag Flachet
  • OWASP, SAMM, Security

How to use OWASP SAMM for effective communication on security? Reporting with OWASP SAMM is[…]

Read Article
Security requirements driven testing

28

Feb

Security Requirements Driven Development: the best ROI for your SDLC

  • Aram Hovsepyan
  • Application Security, SAMM, SDLC, Secure Software Development, Software security, SSDLC

Application security requires a systematic approach and requires dealing with software security throughout every stage[…]

Read Article
Security Tools for your DevSecOps pipeline

14

Jan

How to Pick the Security Tools for your DevSecOps

  • Aram Hovsepyan
  • Application Security, SAMM, Secure Software Development, Security, Software security

Introduction to the security tool frenzy “Invest in Outcomes, not Tools and Capabilities” – Paul[…]

Read Article
OWASP ZAP and Github

29

Dec

How to integrate OWASP ZAP in Gitlab CI/CD pipeline.

  • Viki Grozdeva
  • SAMM, Secure Software Development, Security, Software security
In this article you will learn how to automate your secure deployment by integrating OWASP[...]
Read Article
Next

Building a simple and safe digital future

  • Visit Codific's LinkedIn channel (opens in a new tab)
  • Visit Codific's YouTube channel (opens in a new tab)

Main Focus

Application Security BSIMM Cybersecurity NIST SSDF OWASP Privacy by Design SAMM Secure Software Development Security Security Software Engineer Software security SSDLC

Recent Post

  • December 19, 2024

    How to implement NIST 800-53

    December 19, 2024

  • A visually modern illustration of a secure digital network with interconnected nodes and locks symbolizing cybersecurity controls, representing the comprehensive protection offered by frameworks like NIST 800-53.

    December 19, 2024

    What is NIST 800-53? A comprehensive guide

    December 19, 2024

  • ISO Controls

    December 16, 2024

    How to implement ISO 27001

    December 16, 2024

In the Spotlight

  • Videolab
  • SAMMY
  • SARA
  • Attendance Radar
  • Terms & Conditions
  • Privacy Policy

Codific ® 2024. All rights reserved.