Software Supply Chain Security – The Right Security
December 21, 2021 • RBS
Vince Arneja, Chief Product Officer at GrammaTech, joins Jake Kouns, CEO and CISO at Risk Based Security to talk about securing the software supply chain. Recent events like the recently discovered Log4Shell vulnerability in Apache log4j continue to make supply chain security a hot and relevant topic. What can organizations do to protect their vendors, and themselves, from digital supply chain vulnerabilities? Tune in to the latest episode of The Right Security to find out!
The Right Security
In The Right Security, join leaders and veterans in the security industry, as we tackle the biggest issues impacting organizations today.
0:00 – Introductions
1:06 – What is Supply Chain Security
4:50 – What is SBOM and how will it be used
11:19 – What is Software Assurance?
16:42 – How Product Assurance is different
19:36 – How to address digital supply chain vulnerabilities
24:59 – Visibility of vulnerability data in third parties
30:42 – GrammaTech Code Sonar
34:19 – How to build a product
38:57 – How to implement software supply chain security
41:10 – Coaching in the workplace
44:24 – The next big GrammaTech thing
46:59 – Conclusions