BSIMM15 Report

Detailed analysis of the top software security initiatives.

 

BSIMM15 report cover

We analyzed the software security practices of 121 organizations to see how they secure their applications. Our annual report identifies key trends and activities for you to benchmark your own program against. Learn how top companies are addressing trends such as

  • "Shift everywhere" testing and integrations
  • AI adoption in software development
  • Software supply chain risk management
  • Cloud security efforts
  • Other considerations for improving software security

Download the latest BSIMM

What's Inside

Building Security in Maturity Model (BSIMM) is the world’s leading model for software security initiatives. Built on 15-plus years of real-world analysis, BSIMM offers you the best measuring stick against your peers across a variety of industries.

BSIMM15, published in January 2025, provides the latest analysis of 121 organizations. It reveals

  • The top 10 software security activities being used today
  • Notable growth in the creation and use of Software Bills of Materials (SBOMs)
  • New focus on supply chain security, open collaboration, and “shift everywhere” testing and integrations
  • New standards to control and guide AI adoption in software development
  • Key actions leading organizations are taking to evolve their application security programs