Codific
  • Solutions
    • AppSec Management with SAMMY
    • GRC Management with SAMMY
    • Ed-Tech and HR-Tech
      • Secure Video Sharing with Videolab
      • Student Attendance Tracking with Attendance Radar
      • Survey Analysis Automation with SARA
  • Services
    • OWASP SAMM Assessments
    • OWASP SAMM Training
    • OWASP SAMM Guidance
  • Company
    • Our Story
    • Who We Are
    • Codific @ OWASP Global AppSec Barcelona 2025
    • Codific @ OWASP
    • Careers
  • Partners
    • Implementation Partners Program
    • Recommended Vendors Program
      • Our Recommended Vendors
    • Academic Application Security Program
  • Customers
  • Insights
  • Contact
  • Go to SAMMY

Software security

Home Software security
Steps to implement OWASP SAMM graphic

04

Apr

How to implement OWASP SAMM: Tooling, Example and Mistakes to Avoid

  • Nicolas Montauban
  • Application Security, OWASP SAMM, Secure Software Development, Software security, Team Management

Understanding OWASP SAMM is only the beginning. The real value comes from using it to […]

Read Article
Mappings to OWASP SAMM

07

Dec

NIST 800-53 and NIST 800-171: Key Differences

  • Aram Hovsepyan
  • Compliance, Cybersecurity, NIST SSDF, Privacy by Design, Security, Software security

The U.S. cybersecurity strategy seems to be lightyears ahead of the EU. I strongly believe[…]

Read Article
Bridging cybersecurity compliance standards

02

Oct

Mapping compliance standards: Harnessing SAMMY and OpenCRE

  • Aram Hovsepyan
  • Application Security, NIST SSDF, OWASP, SAMM, Secure Software Development, Software security

Cybersecurity in general and application security (AppSec) in particular are extremely challenging topics. They run[…]

Read Article
Security requirements driven testing

28

Feb

Security Requirements Driven Development: the best ROI for your SDLC

  • Aram Hovsepyan
  • Application Security, SAMM, SDLC, Secure Software Development, Software security, SSDLC

Application security requires a systematic approach and requires dealing with software security throughout every stage[…]

Read Article
OWASP ZAP and Github

29

Dec

How to integrate OWASP ZAP in Gitlab CI/CD pipeline.

  • Viki Grozdeva
  • SAMM, Secure Software Development, Security, Software security
In this article you will learn how to automate your secure deployment by integrating OWASP[...]
Read Article
Secure Software Development with SAMM: Misuse/Abuse testing

05

Sep

Security verification with Jmeter Stress Test

  • Alex Ashkov
  • Secure Software Development, Security Software Engineer, Software security

Security verification is about validating that a system or application adheres to predefined security requirements[…]

Read Article
ISO 27001 Certificate, Information Security Managment

12

Jul

Renewal of ISO 27001 Audit Certification

  • Michaella Masters
  • SAMM, Secure Software Development, Software security

Codific is proud to receive the renewal of the ISO 27001 audit certification. ISO 27001[…]

Read Article
SAMMY scores overview

09

Jun

OWASP SAMM: Education and Guidance

  • Aram Hovsepyan
  • OWASP, Secure Software Development, Security Software Engineer, Software security

Ever heard the saying “our team is our greatest asset”. I’d dare to say that[…]

Read Article
SAMM: your map and itinerary in the security journey.

24

Jan

BSIMM vs SAMM: Which model is better?

  • Aram Hovsepyan
  • BSIMM, SAMM, Secure Software Development, Security, Software security
Application security has been a hot topic for decades. It was a buzzword in 2001,[...]
Read Article

Building a simple and safe digital future

  • Visit Codific's LinkedIn channel (opens in a new tab)
  • Visit Codific's YouTube channel (opens in a new tab)

Main Focus

Application Security Compliance Cybersecurity NIST SSDF OWASP Privacy by Design SAMM Secure Software Development Security Security Software Engineer Software security SSDLC

Recent Post

  • Conceptual illustration of the SSDLC

    June 11, 2025

    What Is the SSDLC? A Guide to Secure Development

    June 11, 2025

  • dependency governance in SOOS

    June 03, 2025

    Master Dependency Management with SOOS and SAMM

    June 03, 2025

  • vulnerability management dashboard

    May 26, 2025

    Security metrics with purpose and strategic impact

    May 26, 2025

In the Spotlight

  • SAMMY
  • Secure Video Sharing with Videolab
  • Attendance Radar
  • SARA
  • Terms & Conditions
  • Imprint
  • Cookie Policy
  • Privacy Statement

Codific ® 2025. All rights reserved.

Manage Consent
To provide the best experiences, we use technologies like cookies to store and/or access device information. Consenting to these technologies will allow us to process data such as browsing behavior or unique IDs on this site. Not consenting or withdrawing consent, may adversely affect certain features and functions.
Functional Always active
The technical storage or access is strictly necessary for the legitimate purpose of enabling the use of a specific service explicitly requested by the subscriber or user, or for the sole purpose of carrying out the transmission of a communication over an electronic communications network.
Preferences
The technical storage or access is necessary for the legitimate purpose of storing preferences that are not requested by the subscriber or user.
Statistics
The technical storage or access that is used exclusively for statistical purposes. The technical storage or access that is used exclusively for anonymous statistical purposes. Without a subpoena, voluntary compliance on the part of your Internet Service Provider, or additional records from a third party, information stored or retrieved for this purpose alone cannot usually be used to identify you.
Marketing
The technical storage or access is required to create user profiles to send advertising, or to track the user on a website or across several websites for similar marketing purposes.
Manage options Manage services Manage {vendor_count} vendors Read more about these purposes
View preferences
{title} {title} {title}
Manage Consent
To provide the best experiences, we use technologies like cookies to store and/or access device information. Consenting to these technologies will allow us to process data such as browsing behavior or unique IDs on this site. Not consenting or withdrawing consent, may adversely affect certain features and functions.
Functional Always active
The technical storage or access is strictly necessary for the legitimate purpose of enabling the use of a specific service explicitly requested by the subscriber or user, or for the sole purpose of carrying out the transmission of a communication over an electronic communications network.
Preferences
The technical storage or access is necessary for the legitimate purpose of storing preferences that are not requested by the subscriber or user.
Statistics
The technical storage or access that is used exclusively for statistical purposes. The technical storage or access that is used exclusively for anonymous statistical purposes. Without a subpoena, voluntary compliance on the part of your Internet Service Provider, or additional records from a third party, information stored or retrieved for this purpose alone cannot usually be used to identify you.
Marketing
The technical storage or access is required to create user profiles to send advertising, or to track the user on a website or across several websites for similar marketing purposes.
Manage options Manage services Manage {vendor_count} vendors Read more about these purposes
View preferences
{title} {title} {title}