The Secure Delivery Framework
- Responsibility for the security of software products lies with the product teams that develop them.
- The only person accountable for a software product's security is the decision-maker of the product.
- Secure software products are produced by delivery organisations that deliberately manage security.
- Compliance requirements can be continuously met and exceeded through a visible approach to secure product delivery.
The Secure Delivery Framework defines a way of delivering secure software products based on these four guiding principles. If the principles resonate with you, then it’s likely a good fit for your purposes.
Next: Framework Overview