The Building Security In Maturity Model (BSIMM, pronounced “bee simm”) is a study of existing software security initiatives. By quantifying the practices of many different organizations, we can describe the common ground shared by many as well as the variation that makes each unique. We know reports can be boring which is why we picked out some key facts so you can jump right in to the data. https://www.bsimm.com