Managing Trustworthiness & Dependability of Systems Acquired Via Supply Chain

Logo
Presented by

Dr. Bill Curtis, Executive Director, CISQ | Robert Martin, Sr. Software and Supply Chain Assurance Principal Eng., MITRE

About this talk

Join the Consortium of Information and Software Quality (CISQ) on April 6th, 2022, 3:00pm CST - 4:00pm CST to learn how to manage the trustworthiness and dependability of systems acquired through your supply chain. Learning Objectives: - Learn how to leverage CISQ measures to reduce risk in your contacts & SLAs - How to certify software and its level of risk - How to manage the quality of the software you are receiving from a supply chain - Learn about the use of Software Bill of Materials (SBOM) in a software supply chain About the Presenters: Robert A. Martin, Senior Principal Engineer at the MITRE Corporation, has dedicated his career to solving some of the world’s most difficult problems in systems and software engineering. His work focuses on the interplay of risk management, cyber security, and quality assessment and assurance. For 23 years, Robert has applied his expertise to international cybersecurity initiatives such as CVE, CAPEC, and CWE, which host large active vendor and research communities, and is now working on standardizing the Software Bill of Materials (SBoM) and the supply chain security System of Trust™. Dr. Bill Curtis is CISQ’s Executive Director. Dr. Curtis led development of the Capability Maturity Model (CMM) at the Software Engineering Institute at Carnegie Mellon University. Dr. Curtis is an active participant in ISO JTC1 SC7 WG6 for Software and System Product Measures. In 2007, he was elected a Fellow of the IEEE for his career contributions to software process improvement and measurement.
Related topics:

More from this channel

Upcoming talks (2)
On-demand talks (173)
Subscribers (13201)
The Object Management Group® (OMG®) is an international, open membership, not-for-profit technology standards consortium. Founded in 1989, OMG standards are driven by vendors, end-users, academic institutions, and government agencies.