How many controls does OWASP SAMM have?

OWASP SAMM contains 31 controls organized across 6 domains.

Where does OWASP SAMM apply?

OWASP SAMM is applicable in International. Organizations operating in or serving customers in this jurisdiction should evaluate its requirements.

What frameworks does OWASP SAMM map to?

OWASP SAMM has control-to-control mappings with 529 other compliance frameworks in our database. Use our compliance platform to explore these mappings interactively.

How do I get started with OWASP SAMM compliance?

Start by understanding the framework's key controls and domains. Our compliance platform provides AI-powered gap analysis and mapping tools to help you assess your current posture and build a remediation plan.

OWASP SAMM

OWASP Software Assurance Maturity Model.

Domains

OWASP SAMM: Communications Security

OWASP SAMM: Operations Security

OWASP SAMM: Asset Management

OWASP SAMM: Access Control

OWASP SAMM: Cryptography

Frequently Asked Questions

Map OWASP SAMM to any other framework

Use our AI-powered compliance platform to find control overlaps, gaps, and build remediation plans in seconds.

Try Free on Compliance Platform