How can we create a world where we can trust technology?

Research is critical to our mission at Security Compass. We actively engage and foster debate both inside and outside the security community to discuss critical issues that either face us today or will soon emerge.
OUR MISSION
From privacy and compliance to security and technology, we ask hard questions, challenge assumptions, and collaborate with key partners across industry, academia, and standards groups for the benefit of our whole industry.

From privacy and compliance to security and technology, we ask hard questions, challenge assumptions, and collaborate with key partners across industry, academia, and standards groups for the benefit of our whole industry. Security Compass is part of a much larger research and development community that comprises many different disciplines and interests.


We work closely with leading industry groups including Object Management Group, OASIS, IEEE, SAFECode, The Open Group, ISACA, PCI, and Cloud Security Alliance. Drawing on the expertise of thought leaders across multiple sectors, we encourage debate and widen access to knowledge, as we create a world where we can trust technology.

RESEARCH FOCUS

Our research interests evolve in response to the needs of our industry and community. Discover some of our current focus areas below.

GRC

We explore best Governance, Risk and Compliance (GRC) practices for continuously monitoring and aligning secure software development and product delivery pipelines with business drivers.

DevSecOps

We investigate how DevOps and Security practices can integrate into a better enterprise delivery pipeline.

Threat Modeling

We research democratizing threat modeling and applying automation to achieve a modern, scalable approach to address the known limitations of traditional practices.

Product Security

We discover ways to better integrate product and software delivery life cycles using DevSecOps workflows.

Zero Trust

We collaborate to shape the future of Zero Trust through IEEE and The Open Group working groups.

Our Community

At Security Compass, our researcher community is integral to asking and answering key questions. Meet some of our researchers below and discover their areas of interest and expertise.

Spencer Koch

Offensive Security Professional – Various

Hasan Yasar

Co Director, Secure Lifecycle Solutions, CERT, SEI, CMU

Simone Curzi

Principal Consultant – Microsoft Consulting Services

Ayhan Tek

VP of Information security – Cyber Electra

Altaz Valani

Director, Insights Research

ADD YOUR VOICE

We are always looking for new voices to collaborate with us as we explore the frontiers of application security.

Join our community and be part of the conversation.
[gravityform id="172" title="false" description="false"]
<div class='gf_browser_unknown gform_wrapper gravity-theme' id='gform_wrapper_172' ><form method='post' enctype='multipart/form-data' id='gform_172' action='/research/' novalidate> <div class='gform_body gform-body'><div id='gform_fields_172' class='gform_fields top_label form_sublabel_below description_below'><div id="field_172_3" class="gfield gfield_contains_required field_sublabel_below field_description_below gfield_visibility_visible" data-js-reload="field_172_3"><label class='gfield_label' for='input_172_3' >Email<span class="gfield_required"><span class="gfield_required gfield_required_text">(Required)</span></span></label><div class='ginput_container ginput_container_email'> <input name='input_3' id='input_172_3' type='email' value='' class='large' aria-required="true" aria-invalid="false" /> </div></div><fieldset id="field_172_5" class="gfield gfield--width-full field_sublabel_below field_description_below hidden_label gfield_visibility_visible" data-js-reload="field_172_5"><legend class='gfield_label gfield_label_before_complex' >Opt-in</legend><div class='ginput_container ginput_container_consent'><input name='input_5.1' id='input_172_5_1' type='checkbox' value='1' aria-describedby="gfield_consent_description_172_5 gfield_description_172_5" aria-invalid="false" /> <label class="gfield_consent_label" for='input_172_5_1' >Communications Opt-In</label><input type='hidden' name='input_5.2' value='Communications Opt-In' class='gform_hidden' /><input type='hidden' name='input_5.3' value='176' class='gform_hidden' /></div><div class='gfield_description gfield_consent_description' id='gfield_consent_description_172_5'>I understand that by subscribing I will receive research and occasional promotional emails from Security Compass, as described in the Privacy Policy, and can unsubscribe anytime.</div></fieldset><div id="field_172_6" class="gfield gform_validation_container field_sublabel_below field_description_below gfield_visibility_visible" data-js-reload="field_172_6"><label class='gfield_label' for='input_172_6' >Comments</label><div class='ginput_container'><input name='input_6' id='input_172_6' type='text' value='' autocomplete='new-password'/></div><div class='gfield_description' id='gfield_description_172_6'>This field is for validation purposes and should be left unchanged.</div></div></div></div> <div class='gform_footer top_label'> <input type='submit' id='gform_submit_button_172' class='gform_button button' value='Submit' onclick='if(window["gf_submitting_172"]){return false;} if( !jQuery("#gform_172")[0].checkValidity || jQuery("#gform_172")[0].checkValidity()){window["gf_submitting_172"]=true;} ' onkeypress='if( event.keyCode == 13 ){ if(window["gf_submitting_172"]){return false;} if( !jQuery("#gform_172")[0].checkValidity || jQuery("#gform_172")[0].checkValidity()){window["gf_submitting_172"]=true;} jQuery("#gform_172").trigger("submit",[true]); }' /> <input type='hidden' class='gform_hidden' name='is_submit_172' value='1' /> <input type='hidden' class='gform_hidden' name='gform_submit' value='172' /> <input type='hidden' class='gform_hidden' name='gform_unique_id' value='' /> <input type='hidden' class='gform_hidden' name='state_172' value='WyJ7XCI1LjFcIjpcImVlOGY1NWEyMTVhNGZjNGJhMDlkNWI5OTY0MDg0ODEyXCIsXCI1LjJcIjpcIjAzZTAzZDQxMWY1YzNmODViOTQ1OGYwMWE1Y2ZkNmE0XCIsXCI1LjNcIjpcImVlZDA5YjgwNTQwZmM4ZDM3ZjM4ZTQ4OThkMGEyZWQxXCJ9IiwiYzNkZmU1MjM5MDVmMTYwMzFkNWE4YjJlOTJlYTBlN2EiXQ==' /> <input type='hidden' class='gform_hidden' name='gform_target_page_number_172' id='gform_target_page_number_172' value='0' /> <input type='hidden' class='gform_hidden' name='gform_source_page_number_172' id='gform_source_page_number_172' value='1' /> <input type='hidden' name='gform_field_values' value='' /> </div> </form> </div>