Artwork

Tromzo에서 제공하는 콘텐츠입니다. 에피소드, 그래픽, 팟캐스트 설명을 포함한 모든 팟캐스트 콘텐츠는 Tromzo 또는 해당 팟캐스트 플랫폼 파트너가 직접 업로드하고 제공합니다. 누군가가 귀하의 허락 없이 귀하의 저작물을 사용하고 있다고 생각되는 경우 여기에 설명된 절차를 따르실 수 있습니다 https://ko.player.fm/legal.
Player FM -팟 캐스트 앱
Player FM 앱으로 오프라인으로 전환하세요!

EP 55 — BlackBerry's Christine Gadsby on What's Driving Software Supplier Transparency and Accountability

26:21
 
공유
 

Manage episode 400970145 series 3330694
Tromzo에서 제공하는 콘텐츠입니다. 에피소드, 그래픽, 팟캐스트 설명을 포함한 모든 팟캐스트 콘텐츠는 Tromzo 또는 해당 팟캐스트 플랫폼 파트너가 직접 업로드하고 제공합니다. 누군가가 귀하의 허락 없이 귀하의 저작물을 사용하고 있다고 생각되는 경우 여기에 설명된 절차를 따르실 수 있습니다 https://ko.player.fm/legal.

In this episode of the Future of Application Security, Harshil speaks with Christine Gadsby, VP, Product Security at BlackBerry, a software company specializing in cybersecurity. They discuss the new initiatives driving software transparency, like SBOMs and VEX, and how adoption will not only come from regulations but from companies holding their software suppliers more accountable. They also talk about the need for better telemetry practices and more connected tooling and how security professionals can get involved in industry change and mentorship.

Topics discussed:

  • The important role frameworks like NIST 800-218 and CISA's Secure By Design will play in establishing standards.
  • The ways in which SBOMs and VEX are driving software transparency that will keep customers safer.
  • How commercial industries will increase their software supplier accountability in response to the rising cost of insecurity.
  • How many companies lack knowledge about what's in the software they sell and the importance of having good telemetry practices.
  • Why lack of good tools and the ability to connect tools is a challenge to product security today.
  • Advice to security professionals about not letting things like SBOM and VEX get away from you as you prepare for the future of software development.
  • How product security professionals can get involved with industry efforts to drive change.
  continue reading

60 에피소드

Artwork
icon공유
 
Manage episode 400970145 series 3330694
Tromzo에서 제공하는 콘텐츠입니다. 에피소드, 그래픽, 팟캐스트 설명을 포함한 모든 팟캐스트 콘텐츠는 Tromzo 또는 해당 팟캐스트 플랫폼 파트너가 직접 업로드하고 제공합니다. 누군가가 귀하의 허락 없이 귀하의 저작물을 사용하고 있다고 생각되는 경우 여기에 설명된 절차를 따르실 수 있습니다 https://ko.player.fm/legal.

In this episode of the Future of Application Security, Harshil speaks with Christine Gadsby, VP, Product Security at BlackBerry, a software company specializing in cybersecurity. They discuss the new initiatives driving software transparency, like SBOMs and VEX, and how adoption will not only come from regulations but from companies holding their software suppliers more accountable. They also talk about the need for better telemetry practices and more connected tooling and how security professionals can get involved in industry change and mentorship.

Topics discussed:

  • The important role frameworks like NIST 800-218 and CISA's Secure By Design will play in establishing standards.
  • The ways in which SBOMs and VEX are driving software transparency that will keep customers safer.
  • How commercial industries will increase their software supplier accountability in response to the rising cost of insecurity.
  • How many companies lack knowledge about what's in the software they sell and the importance of having good telemetry practices.
  • Why lack of good tools and the ability to connect tools is a challenge to product security today.
  • Advice to security professionals about not letting things like SBOM and VEX get away from you as you prepare for the future of software development.
  • How product security professionals can get involved with industry efforts to drive change.
  continue reading

60 에피소드

모든 에피소드

×
 
Loading …

플레이어 FM에 오신것을 환영합니다!

플레이어 FM은 웹에서 고품질 팟캐스트를 검색하여 지금 바로 즐길 수 있도록 합니다. 최고의 팟캐스트 앱이며 Android, iPhone 및 웹에서도 작동합니다. 장치 간 구독 동기화를 위해 가입하세요.

 

빠른 참조 가이드