Application Development Trends magazine editor-at-large John K. Waters talks about BSIMM-V with Cigital’s CTO Gary McGraw. “The BSIMM is based on the study of real practices as they exist,” explained Gary McGraw, CTO of security consulting firm Cigital and author of eight books on software security. “It describes those practices; it’s not a prescriptive model…. Read More
Presentations to Focus on History of and Best Practices for Software Security Dulles, VA – September 12, 2013 – Cigital, Inc., a world leader in software security services and solutions, will present at HP Protect 2013, HP’s annual security user conference, taking place at the Washington Hilton, in Washington, DC, September 16-19. Gary McGraw, Ph.D.,… Read More
The BSIMM model shows that measuring a firm’s software security initiative is both possible and extremely useful. Once you determine where you stand with particular activities, you can devise a plan to enhance security practices with other activities suggested by the BSIMM. Read Search Security’s full BSIMM4 article authored by Gary McGraw, Sammy Migues and… Read More
Security defects come in two flavors, bugs in the code and flaws in the design. The latest Spotify issue is a flaw, therefore anyone who blithely says ‘they should have used encryption’ hasn’t thought this problem through very far.” Read the full article from Cigital Principal Paco Hope on Infosecurity Magazine at http://ow.ly/kUQdR.
Cyber criminals do not care who you are or what your company stands for. If you have vulnerabilities in your software, they have real financial incentive to find it and build an exploit for it. Creating good, solid software saves more than money and time; it protects the reputation of your business. Read the full… Read More
Last night in Indianapolis, I was awarded the Career Achievement Award at my alma mater Indiana University. I am honored and grateful to get this award, though I am still very much in the middle of my career! During my brief remarks, I mentioned a handful of people who have helped to inspire and mentor… Read More
Dennis Fisher from Kaspersky Lab‘s Threatpost interviews Cigital CTO Gary McGraw to learn more about his journey from child violin prodigy to philosopher to software security guru.
Did you or someone from your team manage to get tickets to Security B-Sides London on April 24th, 2013? If so, be sure to catch these presentations from Cigital Software Security Consultants Alex Polychronopoulos and Ksenia Dmitrieva. Going Stealth: Staying off the Anti-Virus RADAR Alex Polychronopoulos Anti-Virus software is often the first line of defense… Read More
How do you know what security activities belong in your software lifecycle? How do you measure what you are currently doing? Join Paco Hope, Member of the (ISC)² Application Security Advisory Board and Principal Consultant at Cigital, to hear his presentation on the Building Security In Maturity Model (BSIMM) and learn about this powerful measurement… Read More
Join Cigital at InfoSecurity Europe in London 23 – 25 April for the largest information security event of the year in Europe. Contact us to schedule an onsite meeting or simply stop by Stand J79 to learn more about Cigital’s software security training solutions like SecureAssist or our comprehensive range of security services from BSIMM… Read More