For example, Software Security Framework (SSF) is an adaptable security model that allows any organization to assess their current state of software development, to prioritize changes, and to chart progress.
For companies that want to begin the process of secure software development, the BSIMM model provides a loose framework that can be adapted to most any organization, large or small.