The Illusion of Control - Secrets Within Your Software Supply Chain

Explore the hidden risks and opportunities within software supply chains in this 48-minute LASCON conference talk. Gain insights into the massive consumption of open source and third-party components by development organizations worldwide. Learn how leading AppSec and DevOps practices have improved visibility, supplier choices, and control mechanisms, resulting in increased developer productivity and reduced security debt. Discover alarming statistics from the 2015 State of the Software Supply Chain Report, including the prevalence of known security flaws in consumed components and the lack of policies controlling their use. Understand the impact of these issues on application integrity and operational efficiency. Acquire valuable knowledge on how to avoid elective risks and apply proven supply chain principles from other industries to enhance AppSec and DevOps practices. Walk away with actionable strategies to improve visibility, control, and security within your own software supply chain.

2015 - The Illusion of Control: Secrets Within Your Software Supply Chain