Title :
A Security Engineering Capability Maturity Model
Author :
Regulwar, Ganesh B. ; Gulhane, V.S. ; Jawandhiya, P.M.
Author_Institution :
Info-Tech Dept, Jawaharlal Darda Inst. of Eng. & Tech., Yavatmal, India
Abstract :
This paper presents a framework for a mature security engineering process and organization that can lead to better, cheaper, and faster development of secure systems and products. A Security Engineering Capability Maturity Model (SE CMM) is being developed to guide process improvement in the practice of security engineering. The model consists of a sequence of levels that guide a security engineering organization toward process improvement through small, incremental steps. The goal of the model is to develop an organizational culture of continuous process improvement. Development and acceptance of the SE CMM can lead to improvements in the practice of security engineering and also the production and measurement of assurance. This paper describes the concept of a SE CMM, promotes an understanding for its need and use, and states our objectives and approach for producing the model.
Keywords :
Capability Maturity Model; organisational aspects; security of data; continuous process improvement; mature security engineering process; organizational culture; secure systems; security engineering capability maturity model; security engineering organization; Coordinate measuring machines; Security; CMM for quality; Security of CMM; process improvement;
Conference_Titel :
Educational and Information Technology (ICEIT), 2010 International Conference on
Conference_Location :
Chongqing
Print_ISBN :
978-1-4244-8033-3
Electronic_ISBN :
978-1-4244-8035-7
DOI :
10.1109/ICEIT.2010.5607700
