Best Practices for Leveraging the SSDF

Logo
Presented by

Mike Lyman, Black Duck

About this talk

Legislation requiring stringent software security practices by software producers is being passed around the globe. This requires organizations to rethink their approach to software security, which industry standards they follow, and the best practices for their software development teams. NIST has produced guidance known as the Secure Software Development Framework (SSDF). The SSDF is a series of practices and associated tasks that serve as a baseline for teams seeking to securely develop software in a standardized way. Attestation to conformance with a subset of the SSDF has been signaled by the U.S. In this webinar, you will learn the best practices for performing an SSDF readiness assessment including: • Whether your organization’s software development practices align with the SSDF • How to determine which controls are lacking for conformance with guidelines • How to perform associated corrective recommendations on time • Case studies of successful U.S. government attestations
Related topics:

More from this channel

Upcoming talks (12)
On-demand talks (122)
Subscribers (65717)
Black Duck® offers the most comprehensive, powerful, and trusted portfolio of application security solutions in the industry. We have an unmatched track record of helping organizations around the world secure their software quickly, integrate security efficiently in their development environments, and safely innovate with new technologies. As the recognized leaders, experts, and innovators in software security, Black Duck has everything you need to build trust in your software. As of October 1, 2024 the Synopsys Software Integrity Group is now Black Duck®