December 21, 2021 • RBS

Categories: Security News

Vince Arneja, Chief Product Officer at GrammaTech, joins Jake Kouns, CEO and CISO at Risk Based Security to talk about securing the software supply chain. Recent events like the recently discovered Log4Shell vulnerability in Apache log4j continue to make supply chain security a hot and relevant topic. What can organizations do to protect their vendors, and themselves, from digital supply chain vulnerabilities? Tune in to the latest episode of The Right Security to find out!

The Right Security

In The Right Security, join leaders and veterans in the security industry, as we tackle the biggest issues impacting organizations today.

Check out The Right Security series on YouTube, and subscribe to the Risk Based Security channel to see new episodes in your feed.

Show Notes

0:00 – Introductions
1:06 – What is Supply Chain Security
4:50 – What is SBOM and how will it be used
11:19 – What is Software Assurance?
16:42 – How Product Assurance is different
19:36 – How to address digital supply chain vulnerabilities
24:59 – Visibility of vulnerability data in third parties
30:42 – GrammaTech Code Sonar
34:19 – How to build a product
38:57 – How to implement software supply chain security
41:10 – Coaching in the workplace
44:24 – The next big GrammaTech thing
46:59 – Conclusions

Further Reading

Our products
The Platform
Risk Based Intelligence
Learn more
Vulnerability Intelligence
Learn more
Cyber Risk Analytics
Threat Intelligence
Learn more
Risk Management
Learn more