Pravir Chandra

Pravir Chandra is Director of Strategic Services at Fortify where he works with clients to build and optimize software security assurance programs. Pravir is widely recognized in the industry for his expertise in software security and code analysis, and also for his ability to apply technical knowledge strategically from a business perspective. Prior to Fortify, he was affiliated with Cigital as a Principal Consultant where he led large software security programs at Fortune 500 companies. Pravir was also Co-Founder and Chief Security Architect at Secure Software, Inc. before the company was acquired by Fortify Software. His book, Network Security with OpenSSL is a popular reference on protecting software applications through cryptography and secure communications. His varied special project experience includes creating and leading the Open Software Assurance Maturity Model (OpenSAMM) project with the Open Web Application Security Project (OWASP) Foundation. Also, Pravir currently serves as a Member of the OWASP Global Projects Committee.

Posts by Pravir Chandra

Hardcopies available on

Thursday, April 23rd, 2009

Model changes between the Beta and 1.0

Saturday, March 28th, 2009

Press release about SAMM

Thursday, March 26th, 2009

OWASP Podcast about SAMM

Wednesday, March 25th, 2009

SAMM 1.0 Released!

Wednesday, March 25th, 2009

SAMM Mailing List

Monday, March 23rd, 2009

Next SAMM release coming this week

Monday, March 23rd, 2009

What’s up with the other model?

Friday, March 6th, 2009

Shiny new website

Wednesday, March 4th, 2009

Working Session on SAMM at OWASP EU Summit

Monday, October 20th, 2008