Hi Colin,
Good question. We did not observe any activities in European initiatives that
were not in the model. We would have added them to the model had we made such
observations. We followed the same data collection protocol as in the first
BSIMM, using interviews that were open (driven by
Gary,
Well done to you and your team for working on this, I've read the
article and was interested in something that actually didn`t appear.
There was a lot of comparisions between the activities that all the
european sites performed, and the activities that were not performed
w.r.t. the BSIMM act
hi sc-l,
Today we officially launch BSIMM Europe, a study of 9 EU firms' software
security initiatives. We continue to focus our work on large-scale software
security initiatives at major software firms. Firms in the study included:
Nokia, Standard Life, SWIFT, Telecom Italia, and Thomson R