dagflachet.bsky.social - Profile | ThreadSky | a Reddit-style client for Bluesky

dagflachet.bsky.social

Co-founder of Codific. Professor and board member of the Geneva Business School. Doctorate in behavioral psychology. Entrepreneur and Appsec champion.

37 posts 712 followers 626 following

Posts 22 Comments 15

A layered perspective to security programs. What is the right level for you? codific.com/information-...

submitted 50 days ago • 0 comments

In 2024 we finally had the impression we moved the meter, at least a tiny bit, in helping to build a simple and safe digital future. The road is long and the steps are small. Let's take more baby steps in 2025 and mature the world appsec defences.

submitted 51 days ago • 1 comment

At Codific we invest a lot of effort in different OWASP projects, and OWASP SAMM is our favorite. We do this for "free" but we get a lot in return. Recognition is one thing, but more important is a seat at the table designing the simple and safe digital future. www.linkedin.com/posts/owasp-...

submitted 54 days ago • 0 comments

There are more than 1000 controls in NIST 800-53, so how do you find your way? codific.com/what-is-nist...

submitted 71 days ago • 0 comments

Need to comply with HIPAA? My colleague Mahe just published a guide. codific.com/hipaa-an-imp...

submitted 79 days ago • 0 comments

FOMO? Dying to get hacked like everyone else you know. We got your back! codific.com/how-to-get-h...

submitted 82 days ago • 2 comments

Chess is still the king of all games, convince me otherwise! codific.com/appsec-and-c...

submitted 83 days ago • 0 comments

OWASP, NIST, ISO, so many standards and frameworks. If only your assessment in one could map to the next. Well, it turns out it can, kinda. codific.com/bridging-com...

submitted 86 days ago • 0 comments

Google calendar now has dark mode. But, I really don't care, and I don't get the fuss. All apps are boasting dark mode now as if it is something super high tech. Bro, I had dark mode on my MS-Dos pc.

submitted 88 days ago • 0 comments

NIST SSDF or OWASP SAMM which one to pick as the backbone of your application security program? And you really have to pick? codific.com/comparing-ni...

submitted 89 days ago • 0 comments

Black Friday special: OWASP SAMM is now free to use. Wait.. aren't all OWASP resources free? ...shhhh!

submitted 92 days ago • 0 comments

Happy thanksgiving, and a special thank you to anyone who contributes to an open source project!

submitted 93 days ago • 0 comments

Doctors and nurses have always been there for us. From the first to the last breath, they are there when it really matters. So it is nice when we, the nerdy computer people, can do something back for them. youtu.be/k6oClwzUa9k?...

submitted 94 days ago • 0 comments

So what does a OWASP SAMM interview look like? Who do you interview? What does the interview look like? How many people should you interview? How can you get started? www.youtube.com/watch?v=3Btv...

submitted 95 days ago • 0 comments

Using OWASP SAMM allows you to communicate internally in a nuanced way about the security state and security roadmap of each team, project or business unit. codific.com/reporting-wi... #appsec #owasp #infosec

submitted 96 days ago • 0 comments

As a company you can keep track of all your appsec processes with BSIMM or SAMM. But which one should you pick? codific.com/bsimm-vs-samm/

submitted 97 days ago • 0 comments

Unpopular opinion: some regulations are good. Trump claims he will try to do away with a lot of regulation. But some regulation is actually actionable and effective. Case in point FISMA. Government and government contractors should be held to high security standards. codific.com/how-to-imple...

submitted 99 days ago • 0 comments

Here is a deep dive by OWASP SAMM experts on the practical aspects of SAMM assessments. With @aramh.bsky.social Maxim Baele, Brian Glas and Rob van de Veer. What a dream team :) youtu.be/Zg-HN17D3O8?...

submitted 100 days ago • 0 comments

So how is the other guy doing? Are you top off class? Find out in the OWASP SAMM benchmark. codific.com/owasp-samm-b...

submitted 101 days ago • 0 comments

How to manage for security when dealing with outsourced development teams. Here is a practical guide to the best practices. codific.com/application-...

submitted 102 days ago • 0 comments

Did you know there is a completely free OWASP SAMM fundamentals training on Thinkific led by @aramh.bsky.social. check it out: codific.com/the-owasp-sa...

submitted 103 days ago • 0 comments

The EU cyber resilience act (CRA) is here. Some call it the GDPR of security. Sounds expensive and dangerous to your European business. But OWASP SAMM can help you manage for a security centric approach: codific.com/comply-with-...

submitted 103 days ago • 0 comments