Companies are implementing software security initiatives, but are they doing it the right way? What is the right way, anyway, This short articles lays down ten commandments that offer prescriptive guidance for a software security initiative based on BSIMM (Building Security in Maturity Model) data gathered from security initiatives at corporations all over the world. Read all the “thou shalts” and “thou shalt nots” here:
http://searchsecurity.techtarget.com/news/2240164512/Ten-commandments-for-software-security