all InfoSec news logo
all InfoSec news - Your InfoSec news aggregator
Log in Sign up
all InfoSec news

Developing and Using a Software Bill of Materials Framework

Add to bookmarks
April 4, 2024, 5:58 p.m. | Carol Woody, Michael Bandor

Software Engineering Institute (SEI) Podcast Series www.sei.cmu.edu

With the increasing complexity of software systems, the use of third-party components has become a widespread practice. Cyber disruptions, such as SolarWinds and Log4j, demonstrate the harm that can occur when organizations fail to manage third-party components in their software systems. In this podcast from the Carnegie Mellon University Software Engineering Institute, Carol Woody, principal researcher, and Michael Bandor, a senior software engineer, discuss a Software Bill of Materials (SBOMs) framework to help promote the use of SBOMs and establish …

bill can carnegie mellon carnegie mellon university complexity components cyber disruptions engineering fail framework harm log4j manage materials mellon organizations party podcast practice sboms software software bill of materials software engineering software systems solarwinds systems third third-party university vulnerabilities

Visit resource

More from www.sei.cmu.edu / Software Engineering Institute (SEI) Podcast Series

My Story in Computing with Sam Procter 1 week ago | www.sei.cmu.edu
architecture career carnegie mellon carnegie mellon university +17
Developing and Using a Software Bill of Materials Framework 3 weeks, 5 days ago | www.sei.cmu.edu
bill can carnegie mellon carnegie mellon university +27
The Importance of Divesity in Cybersecurity: Carol Ware 1 month, 1 week ago | www.sei.cmu.edu
career carnegie mellon carnegie mellon university cert +14
The Importance of Diversity in Software Engineering: Suzanne Miller 1 month, 1 week ago | www.sei.cmu.edu
career carnegie mellon carnegie mellon university diversity +14
The Importance of Diversity in Artificial Intelligence: Violet Turri 1 month, 2 weeks ago | www.sei.cmu.edu
account ai artificial artificial intelligence +20
Using Large Language Models in the National Security Realm 2 months, 2 weeks ago | www.sei.cmu.edu
ai artificial carnegie mellon carnegie mellon university +31
Atypical Applications of Agile and DevSecOps Principles 2 months, 3 weeks ago | www.sei.cmu.edu
address agile applications business +16
When Agile and Earned Value Management Collide: 7 Considerations for Successful Interaction 3 months ago | www.sei.cmu.edu
acquisition address agile agile development +13
The Impact of Architecture on Cyber-Physical Systems Safety 3 months ago | www.sei.cmu.edu
architecture build continue cyber +14

Jobs in InfoSec / Cybersecurity

Post a job on infosec-jobs.com Find talent on infosec-jobs.com

EY- GDS- Cybersecurity- Staff

@ EY | Miguel Hidalgo, MX, 11520
View on infosec-jobs.com

Staff Security Operations Engineer

@ Workiva | Ames
View on infosec-jobs.com

Public Relations Senior Account Executive (B2B Tech/Cybersecurity/Enterprise)

@ Highwire Public Relations | Los Angeles, CA
View on infosec-jobs.com

Airbus Canada - Responsable Cyber sécurité produit / Product Cyber Security Responsible

@ Airbus | Mirabel
View on infosec-jobs.com

Investigations (OSINT) Manager

@ Logically | India
View on infosec-jobs.com

Security Engineer I, Offensive Security Penetration Testing

@ Amazon.com | US, NY, Virtual Location - New York
View on infosec-jobs.com
View more jobs