all InfoSec news logo
all InfoSec news - Your InfoSec news aggregator
Log in Sign up
all InfoSec news

Securing the federal software supply chain

Add to bookmarks
May 31, 2022, 6:01 p.m. | Sponsored by Veracode

SC Magazine feed for Risk Management www.scmagazine.com

From SBOMs to pen testing, government is gradually adapting security standards for software development and the IT supply chain to better protect agencies from adversaries. But how far do they have to go? SC Media’s Jill Aitoro spoke to Bob Martin, senior principal engineer of the Mitre Corporation, and Chris Wysopal, co-founder and chief technology officer at Veracode, about progress made and lingering obstacles.

federal software software supply chain supply supply chain third party risk

Visit resource

More from www.scmagazine.com / SC Magazine feed for Risk Management

5.3M World-Check records may be leaked; how to check your records 18 hours ago | www.scmagazine.com
access breach check claim +10
Active adversary report: Ransomware hit a ceiling, but security teams at risk for more pain 19 hours ago | www.scmagazine.com
active adversary adversary attacks organizations +6
Akira takes in $42 million in ransom payments, now targets Linux servers 19 hours ago | www.scmagazine.com
akira critical functions linux +11
Win 95, LastPass, Kubernetes, Sandworm, Bloomtech, Frontier, 911, Aaran Leyland... - SWN #379 22 hours ago | www.scmagazine.com
breach frontier government-regulations kubernetes +3
Octopharma Plasma's US operations shut down due to suspected ransomware attack 1 day ago | www.scmagazine.com
attack centers donation down +7
Cyberattack disrupts Frontier Communications 1 day ago | www.scmagazine.com
bleepingcomputer breach communications compromised +10
Attacks with CryptoChameleon phishing kit target LastPass users 1 day ago | www.scmagazine.com
assets attack attacks bleepingcomputer +15
LabHost phishing service dismantled in international crackdown 1 day ago | www.scmagazine.com
arrests as-a-service canada crackdown +24
How ADR – application detection and response – can become the 'EDR for apps' 1 day, 3 hours ago | www.scmagazine.com
adjust and response application applications +10

Jobs in InfoSec / Cybersecurity

Post a job on infosec-jobs.com Find talent on infosec-jobs.com

SOC 2 Manager, Audit and Certification

@ Deloitte | US and CA Multiple Locations
View on infosec-jobs.com

Information Security Engineers

@ D. E. Shaw Research | New York City
View on infosec-jobs.com

Staff DFIR Investigator

@ SentinelOne | United States - Remote
View on infosec-jobs.com

Senior Consultant.e (H/F) - Product & Industrial Cybersecurity

@ Wavestone | Puteaux, France
View on infosec-jobs.com

Information Security Analyst

@ StarCompliance | York, United Kingdom, Hybrid
View on infosec-jobs.com

Senior Cyber Security Analyst (IAM)

@ New York Power Authority | White Plains, US
View on infosec-jobs.com
View more jobs