[Owasp-leaders] SAMM 1.0 released (and an OWASP project is born)

Matteo Meucci matteo.meucci at gmail.com
Wed Mar 25 19:09:23 EDT 2009

Hi Pravir,
that's great!

Tomorrow I'll promote your project at ISACA Rome:

and next week at the PCI Portal event:


2009/3/25 Pravir Chandra <chandra at owasp.org>:
> Hey Everyone.
> I've mentioned it before, but today I'm proud to announce that the
> Software Assurance Maturity Model (SAMM) version 1.0 has been released
> and is freely available for download from http://www.opensamm.org
> SAMM is an open framework to help organizations formulate and
> implement a strategy for software security that is tailored to the
> specific risks facing the organization. The resources provided by SAMM
> will aid in:
> * Evaluating an organization’s existing software security practices
> * Building a balanced software security program in well-defined iterations
> * Demonstrating concrete improvements to a security assurance program
> * Defining and measuring security-related activities within an organization
> SAMM was defined with flexibility in mind such that it can be utilized
> by small, medium, and large organizations using any style of
> development. Additionally, this model can be applied
> organization-wide, for a single line-of-business, or even for an
> individual project.
> As an open project, SAMM content shall always remain vendor-neutral
> and freely available for all to use. The project has received a huge
> amount of attention and is keeping me busy, but I'm always open to
> more feedback and supporters.
> Thanks!
> p.
> _______________________________________________
> OWASP-Leaders mailing list
> OWASP-Leaders at lists.owasp.org
> https://lists.owasp.org/mailman/listinfo/owasp-leaders

More information about the OWASP-Leaders mailing list