Martin Gilje Jaatun

Martin Gilje Jaatun is a Senior Scientist at SINTEF Digital (Trondheim, Norway). He graduated from the Norwegian Institute of Technology (NTH) in 1992, and received the Dr.Philos degree in critical infrastructure security from the University of Stavanger in 2015. Previous positions include scientist at the Norwegian Defence Research Establishment (FFI), and Senior Lecturer in information security at the Bodø Graduate School of Business. His research interests include software security, security in cloud computing and security of critical information infrastructures. He is vice chairman of the Cloud Computing Association (cloudcom.org), president of Cloud Security Alliance Norway, and a Senior Member of the IEEE. Martin has published more than 70 technical papers, and edited several books.

Publications

Towards a Conceptual Framework for Security Requirements Work in Agile Software Development
Inger Anne Tøndel, Martin Gilje Jaatun. © 2020. 30 pages.
Security requirement work plays a key role in achieving cost-effective and adequate security in a software development project. Knowledge about software companies'...
Towards a Secure DevOps Approach for Cyber-Physical Systems: An Industrial Perspective
Pekka Abrahamsson, Goetz Botterweck, Hadi Ghanbari, Martin Gilje Jaatun, Petri Kettunen, Tommi J. Mikkonen, Anila Mjeda, Jürgen Münch, Anh Nguyen Duc, Barbara Russo, Xiaofeng Wang. © 2020. 20 pages.
With the expansion of cyber-physical systems (CPSs) across critical and regulated industries, systems must be continuously updated to remain resilient. At the same time, they...
Threat Modeling in Agile Software Development
Martin Gilje Jaatun, Karin Bernsmed, Daniela Soares Cruzes, Inger Anne Tøndel. © 2019. 14 pages.
Threat modeling is a way to get an overview of possible attacks against your systems. The advantages of threat modeling include tackling security problems early, improved risk...
Measuring Developers' Software Security Skills, Usage, and Training Needs
Tosin Daniel Oyetoyan, Martin Gilje Gilje Jaatun, Daniela Soares Cruzes. © 2019. 27 pages.
Software security does not emerge fully formed by divine intervention in deserving software development organizations; it requires that developers have the required theoretical...
International Journal of Systems and Software Security and Protection (IJSSSP)
Hossain Shahriar. Est. 2018.
The International Journal of Systems and Software Security and Protection (IJSSSP) publishes original research on the security concerns that arise with systems and software....
A Secure MANET Routing Protocol for Crisis Situations
Martin Gilje Jaatun, Åsmund Ahlmann Nyre, Inger Anne Tøndel. © 2018. 29 pages.
Emergency and rescue operations are often carried out in areas where the network infrastructure cannot be relied on for message exchange between first responders. Since a...
A Lightweight Measurement of Software Security Skills, Usage and Training Needs in Agile Teams
Tosin Daniel Oyetoyan, Martin Gilje Jaatun, Daniela Soares Cruzes. © 2017. 27 pages.
Although most organizations understand the need for application security at an abstract level, achieving adequate software security at the sharp end requires taking bold steps to...
Risk Centric Activities in Secure Software Development in Public Organisations
Inger Anne Tøndel, Martin Gilje Jaatun, Daniela Soares Cruzes, Nils Brede Moe. © 2017. 30 pages.
When working with software security in a risk-centric way, development projects become equipped to make decisions on how much security to include and what type of security pays...
International Journal of Secure Software Engineering (IJSSE)
Martin Gilje Jaatun. Est. 2010.
The International Journal of Secure Software Engineering (IJSSE) publishes original research on the security concerns that construe during the software development practice....