The SDL Optimization Model is a valuable framework to gradually move development organizations towards the adoption of the Security Development Lifecycle (SDL).
The SDL Optimization Model has been designed to facilitate gradual, consistent and cost-effective implementation of the SDL and reduce customer risk. The model enables development managers and IT policy-makers to:
Assess the state of the security of their development organization by using a scale of four maturity levels
The four security maturity levels of the SDL Optimization Model
.jpg)
Create a practical vision and roadmap for moving up the SDL maturity levels in each of the five software development capability areas to improve the state of security and reduce customer risk
The five capability areas of the software development process
.jpg)
- Outline practical and cost-effective activities in each of the five capability areas to assist with budgeting, planning and staffing efforts associated with software development
.jpg) |
An overview of the SDL Optimization Model and how to use it |
| A questionnaire for mapping your current secure development practices to the SDL maturity levels |
| Detailed and actionable guidance on the necessary steps for moving up the SDL maturity levels in each of the five capability areas. |