By Vishal Asthana, Security Compass (former) with Manuel Ifland, Siemens

This post will cover how to roll out a Security Champions (SC) program in a sustainable way. As you can imagine, kicking off the program with a huge disruption to engineering’s workflow will not help repair security’s reputation as an obstacle. So, a thoughtful kick-off is key to successful program adoption.

By Tania Ward, Dell with Altaz Valani, Security Compass

Sometimes, despite the best intentions, Security Champion (SC) programs can run into trouble. Often, when launching a new initiative, it takes a bit of trial and error to get things right

By: Tania Ward, Dell with Altaz Valani, Security Compass

In our first blog post on this topic we explained the need to support a security culture within the software development lifecycle (SDLC) and the key role of Security Champions (SCs) in helping us meet that need. In the second blog post we dove deeper into the core skills and capabilities of a SC. In this blog post, we answer the question, “How do you build an effective SC program in your organization?”

Hosted by Altaz Valani, Security Compass and featuring Izar Tarandach, Autodesk and Vishal Asthana, Security Compass (former).

Listen in as members of the Security Champions team share insight into the development of a robust Security Champion.

By Kristian Beckers, Siemens and John Martin, Boeing with Nick Ozmore, Veracode

This is the third post in SAFECode’s Month of Champions series on building and sustaining a successful Security Champions program. See here for Part One: Start 2019 Strong: Join SAFECode for Our Month of Champions and here for Part Two: Building Secure Software: It Takes a Champion.

By: Vishal Asthana, Security Compass (former); Manuel Ifland, Siemens; John Martin, Boeing; Altaz Valani, Security Compass; Tania Ward, Dell; Nick Ozmore, Veracode; Kristian Beckers, Siemens
Organizations and their development teams often struggle with scaling their Secure Development Lifecycle (SDL) efforts. This is typically due to one or more reasons.

By Stacy Simpson, SAFECode
At SAFECode, we are always looking for common themes among our members that lead to successful software security outcomes.

Eric Baize, SAFECode Chairman
Last week, I had the honor of presenting a keynote at the International Common Criteria Conference in Amsterdam.

By: Steve Lipner, Executive Director, SAFECode
This week, the UK Government’s Department for Digital, Culture, Media and Sport (DCMS) released a Code of Practice for the secure design of internet-connected consumer devices and their associated services.

Over 150 security development professionals participated in an event sponsored in part by SAFECode recently in Cambridge, MA steps from the Massachusetts Institute of Technology.