The Book
Membership
Explore MembershipGlobal Expansion Program
AppSecConJourney to AppSec Maturity
Events
Upcoming Events
AppSecCon New York Reception
Past Events
AppSecCon Austin ReceptionAppSecCon Santa Clara ReceptionMumbai ChapterAtlanta ChapterBengaluru ChapterNew Delhi ChapterNYC Chapter LaunchCyber SoireeWomen In SecurityDavos DialogueFirst LookSBOM
Resources
ResourcesPodcastsBlogsState of AppSec 2023
Contact Us
The Book
Membership
Explore Membership
Global Expansion Program
AppSecCon
Journey to AppSec Maturity
Events
Upcoming Events
AppSecCon New York Reception
Past Events
AppSecCon Austin Reception
AppSecCon ย Santa Clara Reception
Mumbai Chapter
Atlanta Chapter
Bengaluru Chapter
New Delhi Chapter
NYC Chapter Launch
Cyber Soiree
AppSecCon
Women In Security
Davos Dialogue
First Look
SBOM
Resources
Podcast
Blogs
State of AppSec 2023
Join Now

A New Software Security Maturity Model? What? Why? How?

Description

An exciting first episode for our ๐—๐—ผ๐˜‚๐—ฟ๐—ป๐—ฒ๐˜† ๐˜๐—ผ ๐—”๐—ฝ๐—ฝ๐—ฆ๐—ฒ๐—ฐ ๐— ๐—ฎ๐˜๐˜‚๐—ฟ๐—ถ๐˜๐˜† series: Thoughtworks CISO Nitin Raina rejoins us with co-host and prolific Purple Booker, The AppSec Elder Statesman himself, Brook Schoenfield. Exploring the state of today's application security programs we gain answers to the major questions our Journey to AppSec Maturity initiative prompts: what is a software security maturity model, why do we need a new one for the modern day, and how specifically would it be built? Enter operation codename ๐—ฆ๐Ÿฏ๐— ๐Ÿฎ, The Purple Book Community's latest passion project

Resources

PBC's Journey to AppSec Maturity Initiativeโ€

โ€Join our Community leaders at AppSecCon 2023

Nitin Raina
CISO, Thoughtworks
Nitin has close to 24 years of experience in performing IT, Security and Risk leadership roles for various organisations and serves as a global advisor tasked with prioritising and evaluating trade-offs and conflicts among various security initiatives within the realm of ThoughtWorks businesses. Proven leadership with key skills like security governance, compliance, budgeting, hiring, risk management, project management, mentoring, negotiation, and problem-solving skills demonstrated throughout his career.
Read Bio
Hide Bio
Brook Schoenfield
Chief Technology Officer & Chief Security Architect, Resilient Software Security
Brook S.E. Schoenfield is the author/co-author of 6 books on software security and has contributed to numerous industry efforts including The Threat Modeling Manifesto. He originated โ€œdeveloper-centric securityโ€ and Just Good Enough Risk Rating. Over the last 20+ years, he has built and led multiple AppSec programs. He is currently CTO at Resilient Software Security and is also on the faculty of the University Of Montana.
Read Bio
Hide Bio

Watch the episode here

Available on:

Interesting Reads

Road to CISO: Rohit Parchuri
#PBPod Episode 15: Yext CISO Rohit Parchuri shares his origin story and tips for success in security leadership.
LingRaj Patil
April 12, 2023
Road to CISO: Nitin Raina
#PBPod Episode 14: A new CISO spotlight series kicks of with Thoughtworks' Nitin Raina.
Nitin Raina
March 8, 2023
The Absolute Risk Mindset: Strategies from a Head of Product Security
ArmorCode's Mark Lambert explores product security best practices with Databricks' Mrityunjay Gautam.
The Purple Book Community
December 15, 2022
View All
This book will be shared as a free resource with all so we can work towards simplifying software security and help our organizations stay secure and compliant.
The Book
Membership
Podcasts
Blogs
Events
Past Events
Mumbai Chapter
Atlanta Chapter
Bengaluru Chapter
Women In Security
Cyber Soiree
Davos Dialogue
Resources
Contact Us
Copyright ยฉ Powered By ArmorCode Inc.
Privacy Policy
|
Terms & Conditions
The information contained in the Purple Book of Software Security and associated marketing material contains content expressed by Purple Book Community members. These opinions are their own, are not affiliated with the organizations that they belong to and have no commercial affiliation or any endorsement of any commercial products or services, including the community sponsors.