The Book
Membership
Explore MembershipGlobal Expansion Program
AppSecConS3M2Journey to AppSec Maturity
Events
Upcoming Events
RSAC 2024
JTAM OWASP Global AppSec conferenceJTAM AWS ReInvent conference
Past Events
Mumbai ChapterAtlanta ChapterBengaluru ChapterNew Delhi ChapterNYC Chapter LaunchCyber SoireeWomen In SecurityDavos DialogueFirst LookSBOM
Cyber Future Dialogue 2024
JTAM Virtual Workshop - September
JTAM Roundtable - OWASP Global AppSec
Resources
PodcastsBlogsState of AppSec 2023
Contact Us
The Book
Membership
Explore Membership
Global Expansion Program
AppSecCon
S3M2
Journey to AppSec Maturity
Events
Resources
Contact Us

A New Software Security Maturity Model? What? Why? How?

Description

An exciting first episode for our 𝗝𝗼𝘂𝗿𝗻𝗲𝘆 𝘁𝗼 𝗔𝗽𝗽𝗦𝗲𝗰 𝗠𝗮𝘁𝘂𝗿𝗶𝘁𝘆 series: Thoughtworks CISO Nitin Raina rejoins us with co-host and prolific Purple Booker, The AppSec Elder Statesman himself, Brook Schoenfield. Exploring the state of today's application security programs we gain answers to the major questions our Journey to AppSec Maturity initiative prompts: what is a software security maturity model, why do we need a new one for the modern day, and how specifically would it be built? Enter operation codename 𝗦𝟯𝗠𝟮, The Purple Book Community's latest passion project

Resources

PBC's Journey to AppSec Maturity Initiative

Join our Community leaders at AppSecCon 2023

Nitin Raina
CISO, Thoughtworks
Nitin has close to 24 years of experience in performing IT, Security and Risk leadership roles for various organisations and serves as a global advisor tasked with prioritising and evaluating trade-offs and conflicts among various security initiatives within the realm of ThoughtWorks businesses. Proven leadership with key skills like security governance, compliance, budgeting, hiring, risk management, project management, mentoring, negotiation, and problem-solving skills demonstrated throughout his career.
Read Bio
Hide Bio
Brook Schoenfield
Chief Technology Officer & Chief Security Architect, Resilient Software Security
Brook S.E. Schoenfield is the author/co-author of 6 books on software security and has contributed to numerous industry efforts including The Threat Modeling Manifesto. He originated “developer-centric security” and Just Good Enough Risk Rating. Over the last 20+ years, he has built and led multiple AppSec programs. He is currently CTO at Resilient Software Security and is also on the faculty of the University Of Montana.
Read Bio
Hide Bio

Watch the episode here

Available on:

Interesting Reads

Road to CISO: Rohit Parchuri
#PBPod Episode 15: Yext CISO Rohit Parchuri shares his origin story and tips for success in security leadership.
LingRaj Patil
April 12, 2023
Road to CISO: Nitin Raina
#PBPod Episode 14: A new CISO spotlight series kicks of with Thoughtworks' Nitin Raina.
Nitin Raina
March 8, 2023
The Absolute Risk Mindset: Strategies from a Head of Product Security
ArmorCode's Mark Lambert explores product security best practices with Databricks' Mrityunjay Gautam.
The Purple Book Community
December 15, 2022
View All
Uniting security leaders and practitioners on a mission to democratize software security and solve its ever-evolving challenges with the power of Community.
The Book
Membership
Podcasts
Blogs
Events
Past Events
AppSecCon New York Reception
AppSecCon Austin Reception
AppSecCon  Santa Clara Reception
Mumbai Chapter
Atlanta Chapter
Bengaluru Chapter
Davos Dialogue
Resources
Contact Us
Copyright © Powered By ArmorCode Inc.
Privacy Policy
|
Terms & Conditions
The information contained in the Purple Book of Software Security and associated marketing material contains content expressed by Purple Book Community members. These opinions are their own, are not affiliated with the organizations that they belong to and have no commercial affiliation or any endorsement of any commercial products or services, including the community sponsors.