By Steve Lipner, Executive Director, SAFECode.

Recruiting developers and testers from the product group is a great way to build a top-notch application security team. Here’s why.

By Steve Lipner, SAFECode Executive Director This week, the Business Software Alliance released The BSA Framework for Software Security. The document aims to provide a consolidated framework that brings together best practices in a manner that can be effectively described and communicated, regardless of the development environment or the purpose of the software. Specifically, according […]

By: Stacy Simpson, SAFECode

A key principle guiding SAFECode’s work has always been our belief that secure software development can only be achieved with an organizational commitment and a holistic assurance process. But what does that mean in practice?

By: Stacy Simpson, SAFECode

A key principle guiding SAFECode’s work has always been our belief that secure software development can only be achieved with an organizational commitment and a holistic assurance process. But what does that mean in practice?

By: Stacy Simpson, SAFECode

Next week, tens of thousands of security professionals will gather once again in San Francisco to talk all things security, including software security. At SAFECode, this is one of our favorite times of the year, despite the fact that many might not know we are even there.

By Vishal Asthana, Security Compass (former) with Altaz Valani, Security Compass

Ever wonder what it is like to work on a SAFECode project team? Two of our Champions – Vishal Asthana and Altaz Valani were kind enough to participate in a short Q&A; about their experience working on the Security Champions and other SAFECode projects.

This is the closing post to our Security Champions Series. Read all of the posts below. Part One: Start 2019 Strong: Join SAFECode for Our Month of Champions Part Two: Building Secure Software: It Takes a Champion Part Three: Putting a Face to Software SCs Part Four: How to Build an Effective Security Champions Program […]

Security Champions Podcast: Final Thoughts

Hosted by John Martin, Boeing. Featuring Tania Ward, Dell and Nick Ozmore, Veracode

As the Month of Champions comes to an end, join the Security Champions Team as they offer some parting advice on developing a successful Security Champions program.

Part One: Start 2019 Strong: Join SAFECode for Our Month of Champions Part Two: Building Secure Software: It Takes a Champion Part Three: Putting a Face to Software SCs Part Four: How to Build an Effective Security Champions Program Part Five: Warning: Six Signs Your Security Champions Program is in Trouble Part Six: Kicking off […]

By Vishal Asthana, Security Compass (former) with Manuel Ifland, Siemens

This post will cover how to roll out a Security Champions (SC) program in a sustainable way. As you can imagine, kicking off the program with a huge disruption to engineering’s workflow will not help repair security’s reputation as an obstacle. So, a thoughtful kick-off is key to successful program adoption.