An Opportunity to Influence the Art of Secure Software Development

Until the end of July, all who have a passion for software assurance can turn their passion into an opportunity to influence the content of one of the foremost reference documents on the topic.

The first version of the report “Fundamental Practices for Secure Software Development”, published by the Software Assurance Forum for Excellence in Code (SAFECode) has been downloaded by tens of thousands of practitioners. It outlines the secure software development practices implemented by the technology leader members of SAFECode. The organization promises an updated version to be released later this year.

In preparation for the paper’s next version, SAFECode is collecting comments and recommendations and is inviting anybody interested to provide their input by visiting the SAFECode Feedback page at the following link: Again, they will be accepting comments until July 31, 2009.

It is your opportunity to make our world more secure.

About the Author: Eric Baize

Throughout his career, Eric Baize has been passionate about building security and privacy into systems and technology from design to deployment. He currently leads Dell EMC’s Product Security Office and serves as Chairman of SAFECode, an industry-led non-profit organization dedicated to advancing software and supply chain security best practices. At Dell EMC, Eric leads the team that sets the standards and practices for all aspects of product security for the product portfolio: Vulnerability response, secure development, consistent security architecture, and code integrity. Eric joined Dell through its combination with EMC where he built EMC’s highly successful product security program from the ground up and was a founding member of the leadership team that drove EMC’s acquisition of RSA Security in 2006. He later led RSA’s strategy for cloud and virtualization. Prior to joining EMC in 2002, Eric held various positions for Groupe Bull in Europe and in the US. Eric has been a member of the SAFECode Board of Directors since the organization was founded in 2007 and also serves on the BSIMM Board of Advisors. He holds multiple U.S. patents, has authored international security standards, is a regular speaker at industry conferences and has been quoted in leading print and online news media. Eric holds a Masters of Engineering degree in Computer Science from Ecole Nationale Supérieure des Télécommunications de Bretagne, France and is a Certified Information Security Manager. Follow Eric Baize on Twitter: @ericbaize