Maturity Model Tracking

As the discipline of application security develops, assessing teams and their practices against defined standards will become more prevalent. Several maturity models have developed in the application security space – for example the Building Security In Maturity Model (BSI-MM) as well as OWASP’s Software Assurance Maturity Model (OpenSAMM).

Vulnerability Manager allows assessors to track practices used by different application development teams against maturity model standards and to store these assessments over time, allowing teams to create roadmaps on how they will improve their practices.

Currently-supported maturity models include:

  • Software Assurance Maturity Model (SAMM)

Additional maturity models can easily be incorporated into the system using a straightforward XML document format.

Maturity Tracking Screenshot
Maturity Tracking Screenshot