Comments for OpenSAMM

Comment on Working Session on SAMM at OWASP EU Summit by SandCat | PenTestIT

SandCat | PenTestIT — Thu, 04 Jun 2009 15:26:41 +0000

[...] Working Session on SAMM at OWASP EU Summit | OpenSAMM [...]

Comment on SAMM Mailing List by Anton

Anton — Thu, 04 Jun 2009 03:42:30 +0000

Cool!

Comment on Working Session on SAMM at OWASP EU Summit by OWASP LiveCD | PenTestIT

OWASP LiveCD | PenTestIT — Tue, 28 Apr 2009 07:27:32 +0000

[...] Working Session on SAMM at OWASP EU Summit | OpenSAMM [...]

Comment on SAMM Presentation at OWASP NYC 2008 by OWASP LiveCD | PenTestIT

OWASP LiveCD | PenTestIT — Tue, 28 Apr 2009 07:24:03 +0000

[...] SAMM Presentation at OWASP NYC 2008 | OpenSAMM [...]

Comment on SAMM Mailing List by The SAMM enhancement process | OpenSAMM

The SAMM enhancement process | OpenSAMM — Sun, 26 Apr 2009 14:56:08 +0000

[...] put the straw-man process up. Like everything, its mechanics are up for discussion, so just hit the mailing list if you’ve got strong [...]

Comment on OWASP Podcast about SAMM by Jim Manico

Jim Manico — Wed, 01 Apr 2009 05:13:31 +0000

Pleasure having you on the show, Pravir. The direct download link is at http://www.owasp.org/download/jmanico/owasp_podcast_14.mp3

Comment on Next SAMM release coming this week by chandra

chandra — Mon, 30 Mar 2009 20:26:59 +0000

Awesome, your help would be greatly appreciated! Part of the future plans are to create mappings from SAMM into several different existing standards and COBIT is definitely on the list. The goal was to mark each maturity level with some information about the related sections (and perhaps compile these into a new document like “Using SAMM with COBIT” and write a little introduction and supporting materials). Please let me know anything I can do to help!

For other future development items, I’ll be putting together a list on this site and go over them on the email discussion list, so hop on that too (it’s low traffic).

Thanks!

Comment on Next SAMM release coming this week by Dave (aka Security Ninja)

Dave (aka Security Ninja) — Mon, 30 Mar 2009 11:04:13 +0000

Hi,

I wondered whether you guys had considered mapping your maturity levels to those of governance frameworks such as COBIT?

I would be happy to help on that if you want to proceed with it. I will be doing this internally at work so I can use models such as SAMM and ISM3 for specific areas of security and then map the maturity levels (already done for ISM3) to COBIT for management because we use that for overall IT governance.

Let me know what you think.

Dave

Comment on SAMM 1.0 Released! by chandra

chandra — Wed, 25 Mar 2009 15:06:49 +0000

Thanks, Dan! I’ll be posting the list of ideas for future development of SAMM within the next day or so… There’s lots of cool things yet to be done!

Comment on SAMM 1.0 Released! by Claudio Cossio

Claudio Cossio — Wed, 25 Mar 2009 15:03:15 +0000

To everybody involved in the framework, thank you very much.

Appreciate all your hard work.

Cheers.