YoVDO

Secure Software Supply Chain Framework (S2C2F) Guide - OpenSSF SIG Meeting

Offered By: OpenSSF via YouTube

Tags

Software Supply Chain Security Courses Software Development Courses Maturity Models Courses OpenSSF Courses

Course Description

Overview

Save Big on Coursera Plus. 7,000+ courses at $160 off. Limited Time Only!
Explore the S2C2F SIG's efforts to enhance open source software dependency security in this 48-minute conference talk. Delve into the group's work within the OpenSSF's Supply Chain Integrity Working Group, focusing on the development and improvement of the S2C2F guide. Learn about the guide's two-part structure, including solution-agnostic practices and a maturity model-based implementation guide. Discover strategies for raising awareness, adoption challenges, and best practices for organizations seeking to bolster their software supply chain security. Gain insights into the Scorecard project, target audience considerations, and educational approaches to promote secure OSS consumption. Examine the importance of referencing S2C2F and implementing security tools in the development process.

Syllabus

Introduction
Strategy Doc
Awareness
Bill
Is awareness a problem
Adoption
Best Practices
Scorecard
Target Audience
Education Best Practices
Spread Awareness
Reference S2C2F
Education
Security Tools


Taught by

OpenSSF

Related Courses

DLP Bootcamp - The Complete Data Loss Prevention Course
Udemy CISA Cert Prep: 2 Information Technology Governance and Management for IS Auditors
LinkedIn Learning Building Security In - DevSecOps Approach for Agile Development
ChariotSolutions via YouTube Temporal - The Future of DevSecOps Transformation
OWASP Foundation via YouTube OWASP SAMM 2 - Your Dynamic Software Security Journey
OWASP Foundation via YouTube