Compare these activities to your own application security programmes and determine if they represent a gap you can fill The Building Security In Maturity Model (BSIMM) tracks the evolution of software security each year. It’s both a roadmap and a measuring stick for organisations seeking to create or improve their application security programmes. Now in its 11th iteration, this year’s report (BSIMM11) includes findings from 130 companies across nine industry verticals, spanning multiple geographies. Four key security activities were found to be trending in BSIMM11. As these activities are on the rise, it could be useful for organisations to compare them with their own programmes and determine if they represent a gap that can be filled.