Your organization's dynamic software security strategy.

We also maintain a working copy which is updated in real time based on our GitHub respository.

The prime maturity model for software assurance that provides an effective and measurable way for all types of organizations to analyse and improve their software security posture.

Why OWASP SAMM?

Measurable

Defined maturity levels accross a range of business practices.

Actionable

Clear pathways for improving maturity levels.

Versatile

Technology, process, and organization agnostic.