Holistic AppSec and Software Supply Chain Security

Logo
Presented by

Sam Quakenbush, Senior Director, Field Innovation & Strategy at Mend.io and Chris Taylor Head of Cyber Defense at MSCI

About this talk

AppSec and software supply chain security require more than a loose collection of tools and a vulnerability remediation process. A holistic approach covers risk assessment, a secure software development life cycle, software composition analysis (SCA), SBOMs, static and dynamic application security testing (SAST/DAST), workflow automation, automated remediation, runtime protections, compliance reporting and more. Successful implementation of this holistic approach enables companies to shrink their overall attack surface and reduce technical and security debt. Our panel of software security experts will discuss practical steps to building a sustainable application and software supply chain security strategy that meets today’s business demands and those that may arise in the future.
Related topics:

More from this channel

Upcoming talks (0)
On-demand talks (62)
Subscribers (17195)
Mend, formerly known as WhiteSource, effortlessly secures what developers create. Mend uniquely removes the burden of application security, allowing development teams to deliver quality, secure code, faster. With a proven track record of successfully meeting complex and large-scale application security needs, the world’s most demanding software developers rely on Mend. The company has more than 1,000 customers, including 25 percent of the Fortune 100, and manages Renovate, link here, the open-source automated dependency update project. For more information, visit www.mend.io, the Mend blog, and Mend on LinkedIn and Twitter.