In mid-November, I attended the BSIMM Community Conference 2013 in Chantilly, VA. The community represents 67 firms, and there were about 100 people in attendance.
The Building Security In Maturity Model (BSIMM) is the result of a multi-year study of real-world software security initiatives. The BSIMM helps to measure, compare and contrast software security data. The model also describes how mature software security initiatives evolve, change and improve over time. Adobe was one of the nine original participants in the first version of BSIMM and has participated in subsequent BSIMM surveys.
This year the conference provided two tracks, thereby providing a smaller ratio of presenters to attendees per presentation. Topics included Static Analysis, Software Security Meets Agile, Mobile Security, Software Security Metrics for Efficiency and Effectiveness, Architecture Analysis, Insider Threats, and Third Party Software and Security.
To sum it up, I appreciated the opportunity to connect, network and discuss comparative security initiatives, current events, and best practices with those in attendance. Thanks to BSIMM organizers for putting on a great event.
Product Security Group Program Manager