Business Case for Software Assurance

Had a chance to present in "Business Case for Software Assurance " conference
at Carnegie Mellon University,Pittsburg.My paper was about a ROI framework on process improvements titled "PIVR framework for measuring returns on process improvement".Was a good experience to be part of the elite community.
Some of the interesting points discussed were :
integrating security in SDLC, need for CMMI to explicitly address security issues
of application in its practices,code quality audit,tackling offshoring quality issues.Few discussion points that pondered my thoughts were :
across organizations commitment to process and frameworks,
abuse and assurance cases to ensure asssurance of applications,
importance of risk management.
You can download all the action of the proceedings in :
SEI website link.

Image Courtesy :http://www.flickr.com/photos/micke-fi/