application-security

BSIMM

Building Security In Maturity Model

Definition

BSIMM is a data-driven framework that measures the maturity of software security initiatives by observing real-world practices across participating organizations. It catalogs 121 activities across 12 practices organized into four domains: Governance, Intelligence, SSDLC, and Deployment.

Organizations use BSIMM to benchmark themselves against industry peers and identify gaps in their security program.

Related Terms

SAMM

Software Assurance Maturity Model

SSDLC

Secure Software Development Lifecycle

DevSecOps

Development, Security, and Operations

← Back to Glossary

Ship secure code faster

Crash Override integrates security into the developer workflow. No context switching, no waiting on reviews.

Talk to a Human See the Product