This site is the archived OWASP Foundation Wiki and is no longer accepting Account Requests.
To view the new OWASP Foundation website, please visit https://owasp.org

Difference between revisions of "OWASP Working Session - Software Assurance Maturity Model"

From OWASP
Jump to: navigation, search
(Working Session Participants)
(Working Session Participants)
 
Line 102: Line 102:
 
|-
 
|-
 
  | style="width:7%; background:#7B8ABD" align="center"|5
 
  | style="width:7%; background:#7B8ABD" align="center"|5
  | style="width:15%; background:#cccccc" align="center"|Justin Clarke
+
  | style="width:15%; background:#cccccc" align="center"|
  | style="width:15%; background:#cccccc" align="center"|Chapter Leader for London/Gotham Digital Science
+
  | style="width:15%; background:#cccccc" align="center"|
  | style="width:63%; background:#cccccc" align="center"|Early SAMM user at large Financial for benchmarking. Feedback on practical use
+
  | style="width:63%; background:#cccccc" align="center"|
 
|-
 
|-
 
  | style="width:7%; background:#7B8ABD" align="center"|6
 
  | style="width:7%; background:#7B8ABD" align="center"|6
  | style="width:15%; background:#cccccc" align="center"|Matt Bartoldus
+
  | style="width:15%; background:#cccccc" align="center"|
  | style="width:15%; background:#cccccc" align="center"|Gotham Digital Science
+
  | style="width:15%; background:#cccccc" align="center"|
  | style="width:63%; background:#cccccc" align="center"|Mapping large scale software security transformation project against SAMM. Feedback from usage.
+
  | style="width:63%; background:#cccccc" align="center"|
 
|-
 
|-
 
  | style="width:7%; background:#7B8ABD" align="center"|7
 
  | style="width:7%; background:#7B8ABD" align="center"|7

Latest revision as of 15:22, 2 February 2009

Working Sessions Operational Rules - Please see here the general frame of rules.
WORKING SESSION IDENTIFICATION
Work Session Name Software Assurance Maturity Model
Short Work Session Description This working session will provide a quick introduction to the Software Assurance Maturity Model and then move on to collate and integrate feedback since the Beta release. Several specific topics will be discussed, including proposed changes, terminology, case studies, additional roadmaps, assessments and scorecards, etc.
Related Projects (if any)

OWASP CLASP Project

Email Contacts & Roles Chair
Pravir Chandra
Secretary
TBD
Mailing list
Subscription Page
WORKING SESSION SPECIFICS
Objectives
  • General terminology definition and usage
  • Proposed changes to the high-level framework
  • Proposed changes to activities and details under each security function
  • Creation of pilots and case studies
  • Additional roadmaps for common organization types
  • Self-assessment and scorecard generation
  • Real-world feedback and data collection
Venue/Date&Time/Model Venue
OWASP EU Summit Portugal 2008
Date&Time
November 4, 2008
Time TBD
Discussion Model
"Participants + Attendees"
WORKING SESSION OPERATIONAL RESOURCES
Please review the latest SAMM release prior to the working session (available here). Bring a laptop, pen/paper, and any additional resources related to security in the SDLC or secure development best practices.
WORKING SESSION ADDITIONAL DETAILS

Please add here, any additional notes, links, ideas, guidelines, etc... The objective is to help the working sessions participants and attendees to prepare their participation/contribution.

WORKING SESSION OUTCOMES
Statements, Initiatives or Decisions Proposed by Working Group Approved by OWASP Board
Fill in here. After the Board Meeting - fill in here.
Fill in here. After the Board Meeting - fill in here.

Working Session Participants

(Add you name by editing this table. On your the right, just above the this frame, you have the option to edit)

WORKING SESSION PARTICIPANTS
Name Company Notes & reason for participating, issues to be discussed/addressed
1 John Steven Cigital Implemented large scale software security programs a large Fortune-100 orgs
2 Colin Watson Watson Hall Ltd
3 Mano Paul SecuRisk Solutions
4 James McGovern Chapter Leader for Hartford Current employee/owner of large scale software security program for a Fortune 100
5
6
7
8
9
10

If needed add here more lines.