OWASP Working Session - Software Assurance Maturity Model

From OWASP
Revision as of 10:22, 2 February 2009 by Justin42 (Talk | contribs)

(diff) ← Older revision | Latest revision (diff) | Newer revision → (diff)
Jump to: navigation, search
Working Sessions Operational Rules - Please see here the general frame of rules.
WORKING SESSION IDENTIFICATION
Work Session Name Software Assurance Maturity Model
Short Work Session Description This working session will provide a quick introduction to the Software Assurance Maturity Model and then move on to collate and integrate feedback since the Beta release. Several specific topics will be discussed, including proposed changes, terminology, case studies, additional roadmaps, assessments and scorecards, etc.
Related Projects (if any)

OWASP CLASP Project

Email Contacts & Roles Chair
Pravir Chandra
Secretary
TBD
Mailing list
Subscription Page
WORKING SESSION SPECIFICS
Objectives
  • General terminology definition and usage
  • Proposed changes to the high-level framework
  • Proposed changes to activities and details under each security function
  • Creation of pilots and case studies
  • Additional roadmaps for common organization types
  • Self-assessment and scorecard generation
  • Real-world feedback and data collection
Venue/Date&Time/Model Venue
OWASP EU Summit Portugal 2008
Date&Time
November 4, 2008
Time TBD
Discussion Model
"Participants + Attendees"
WORKING SESSION OPERATIONAL RESOURCES
Please review the latest SAMM release prior to the working session (available here). Bring a laptop, pen/paper, and any additional resources related to security in the SDLC or secure development best practices.
WORKING SESSION ADDITIONAL DETAILS

Please add here, any additional notes, links, ideas, guidelines, etc... The objective is to help the working sessions participants and attendees to prepare their participation/contribution.

WORKING SESSION OUTCOMES
Statements, Initiatives or Decisions Proposed by Working Group Approved by OWASP Board
Fill in here. After the Board Meeting - fill in here.
Fill in here. After the Board Meeting - fill in here.

Working Session Participants

(Add you name by editing this table. On your the right, just above the this frame, you have the option to edit)

WORKING SESSION PARTICIPANTS
Name Company Notes & reason for participating, issues to be discussed/addressed
1 John Steven Cigital Implemented large scale software security programs a large Fortune-100 orgs
2 Colin Watson Watson Hall Ltd
3 Mano Paul SecuRisk Solutions
4 James McGovern Chapter Leader for Hartford Current employee/owner of large scale software security program for a Fortune 100
5
6
7
8
9
10

If needed add here more lines.