Cigital’s latest Building Security in Maturity Model (BSIMM) released Monday. Health care organizations tended to score lower than their counterparts in financial services, independent software vendors, and consumer electronics. This is the first time information obtained from health care organizations was included in the model. The model looks at software security practices in four domains: governance, intelligence, secure software development lifecycle, and deployment. For example, only three organizations in the BSIMM have implemented a bug bounty program.”]
Source: https://www.csoonline.com/article/2994950/health-care-orgs-falls-short-on-software-security.html