Build Security In / Software & Supply Chain Assurance content is no longer updated.
The articles are provided here for historical reference.
Suggested resource: https://www.cert.org/cybersecurity-engineering/
Build Security In was a collaborative effort that provided practices, tools, guidelines, rules, principles, and other resources that software developers, architects, and security practitioners can use to build security into software in every phase of its development. Software assurance (SwA) is the level of confidence that soft ware is free from vulnerabilities, either intentionally designed into the software or accidentally inserted at any time during its life cycle, and that the software functions in the intended manner.