Securing The Software Supply Chain Ctrl Alt Defend podcast

22 weeks geleden 8:23

Inhoud geleverd door Better Informed Network. Alle podcastinhoud, inclusief afleveringen, afbeeldingen en podcastbeschrijvingen, wordt rechtstreeks geüpload en geleverd door Better Informed Network of hun podcastplatformpartner. Als u denkt dat iemand uw auteursrechtelijk beschermde werk zonder uw toestemming gebruikt, kunt u het hier beschreven proces https://nl.player.fm/legal volgen.

The episode focuses on the Enterprise Software Framework (ESF), a collaborative group tackling cybersecurity threats to US national security systems. The ESF unites public and private sector experts to address shared challenges. A key area of focus is mitigating software vulnerabilities, referencing the NIST SP 800-218 Secure Software Development Framework (SSDF) as a recommended approach. We also discuss the SLSA framework and various threat mitigation strategies.

4 afleveringen

1
Secure by Design 23:58

20 weeks geleden23:58

23:58

This episode outlines three core principles: manufacturers taking ownership of customer security outcomes, embracing radical transparency and accountability, and establishing strong leadership commitment to security. The episode provides detailed recommendations for manufacturers to integrate security throughout the software development lifecycle (SDLC), focusing on practices like eliminating default passwords, mandating multi-factor authentication, and utilizing secure coding techniques.…

1
Securing SMB Supply Chains 21:47

21 weeks geleden21:47

21:47

This episode highlights six key risk categories—cyber expertise, executive commitment, ICT supply chain risk management, single-source suppliers, supplier disruption, and supplier visibility— impacting IT and communications SMBs. The episode provides use cases illustrating these risks and offers practical mitigation strategies, referencing various government and industry resources. The episode is to empower SMBs to proactively address these vulnerabilities and enhance their cybersecurity posture.…

1
Securing the Software Supply Chain: Recommended Practices for Developers 13:08

22 weeks geleden13:08

13:08

This episode offers a guide to securing software supply chains, focusing on recommended practices for developers, suppliers, and customers. with detailed best practices for developers, emphasizing secure coding, build environment hardening, third-party component verification, and vulnerability response. The episode stresses the importance of secure development lifecycle (SDLC) processes, threat modeling, and artifact creation for auditing and verification. We discuss relevant frameworks like NIST SP 800-218 (SSDF) and SLSA, providing a crosswalk between its recommendations and these standards.…

1
Securing the Software Supply Chain 8:23

22 weeks geleden8:23

8:23

The episode focuses on the Enterprise Software Framework (ESF) , a collaborative group tackling cybersecurity threats to US national security systems. The ESF unites public and private sector experts to address shared challenges. A key area of focus is mitigating software vulnerabilities, referencing the NIST SP 800-218 Secure Software Development Framework (SSDF) as a recommended approach. We also discuss the SLSA framework and various threat mitigation strategies.…

Podcasts die het beluisteren waard zijn

Ctrl Alt Defend «
Securing the Software Supply Chain