Security Talk: MSF Agile + SDL

Sign in to queue


Following up on our last intro video for Microsoft's SDL Process Template, Bryan Sullivan joins us to talk about MSF Agile+SDL, which adds security practices to Team Foundation Server. MSF-A+SDL is a TFS process template that provides Security Development Lifecycle (SDL) guidance into the development framework. The code checked into the Visual Studio Team System source repository is analyzed to make sure it complies with SDL practices. This helps automate the security workflow for things like threat modeling, making sure security items are not missed or skipped.

As usual, this SDL product is free and can be downloaded from here. You can follow the SDL team blog at



Download this episode

The Discussion

  • User profile image

    Great work.


    I'm a bit surprised that there aren't any custom excel workbooks, dashboards, SSRS Reports, build quality customizations, or customized build targets and workflow activities with the Agile+SDL process template.


    I'd love to hear about the roadmap for the process template and the continued tooling improvements coming from the SDL team. 

Add Your 2 Cents