Developer-Centric Threat Modeling
SD Elements
Research
Upcoming Events
Resources
Watch this on-demand Webinar now!
Few software development life cycle (SDLC) models explicitly address software security in detail. As a result, secure software development practices usually need to be added in. Approaches can vary widely across development teams, leading to confusing and inconsistent secure software development practices. To address this issue, in February 2022, NIST published the final version SP 800-218, Secure Software Development Framework (SSDF) Version 1.1: Recommendations for Mitigating the Risk of Software Vulnerabilities. This framework provides a core set of high-level secure software development practices. Following these practices will help software producers reduce the number of vulnerabilities in released software, mitigate the potential impact of the exploitation of undetected or unaddressed vulnerabilities, and address the root causes of vulnerabilities to prevent future recurrences. Join us on March 24th at 1:00 p.m. EST to learn more about: How the Executive Order impacts both application security and software development teams Where you should be today, and where you need to get to by May 2022 How to efficiently demonstrate your compliance with key Secure Software Development Framework recommendations using SD Elements Speakers: Jay Ryan, U.S. Federal Government Program Manager, Security Compass Joseph Rowe, U.S. Federal Government Solution Engineer, Security Compass
About Security Compass
Security Compass is a leading cybersecurity company that was founded in 2004 by a team of experienced penetration testers and security professionals. With a strong commitment to developing secure applications, Security Compass has become a pioneer in the application security industry. The company's Security by Design philosophy ensures that systems are built with security in mind from the very beginning of the development process. By integrating with existing DevSecOps tools and workflows, Security Compass enables organizations to shift left and build secure applications that are protected against potential cyber threats. In addition to its security solutions, Security Compass is also a trusted provider of Application Security Training. The company offers a full suite of on-demand, role-based courses covering various programming languages, cloud solutions, and IaC tools. Security Compass aims to create a culture of secure development and help reduce cyber risks by educating individuals and organizations on best practices in application security. Security Compass is trusted by leading financial and technology organizations, the U.S. Department of Defense, government agencies, and renowned global brands across multiple industries. Its flagship product, SD Elements, is an automated, developer-centric approach to threat modeling, secure development, and compliance. It helps organizations accelerate their software time-to-market while reducing cyber risks. Security Compass is dedicated to helping organizations build secure applications and empowering individuals to do the same. For more information, please visit www.securitycompass.com