
Supply Chain Management - Doug Barbin - ASW #147
Gabrielle
Description
<p>Supply chain security isn't new, despite the renewed attention from the Solar Winds attack. It has old challenges, like having an accurate asset or app inventory, and new opportunities, like Software Bill of Materials. From consequences to code integrity, DevOps teams need to understand how to protect their own code from others' components.</p> <p>Additional resources:</p> <p>- National Supply Chain Integrity Month, <a href= "https://www.cisa.gov/supply-chain-integrity-month">https://www.cisa.gov/supply-chain-integrity-month</a></p> <p>- SCRM vendor template, <a href= "https://www.cisa.gov/publication/ict-scrm-task-force-vendor-template"> https://www.cisa.gov/publication/ict-scrm-task-force-vendor-template</a></p> <p>- CWE VIEW: Hardware Design, <a href= "https://cwe.mitre.org/data/definitions/1194.html">https://cwe.mitre.org/data/definitions/1194.html</a></p> <p> </p> <p>Visit <a href= "https://www.securityweekly.com/asw">https://www.securityweekly.com/asw</a> for all the latest episodes!</p> <p>Show Notes: <a href= "https://securityweekly.com/asw147">https://securityweekly.com/asw147</a></p>
Uploader
Episodes
Supply Chain Management - Doug Barbin - ASW #147
Gabrielle