YoVDO

Securing the Software Supply Chain - Beyond SBOM Risk Assessment

Offered By: Conf42 via YouTube

Tags

Software Supply Chain Security Courses Risk Management Courses DevSecOps Courses Code Quality Courses Vulnerability Assessment Courses Software Composition Analysis Courses

Course Description

Overview

Save Big on Coursera Plus. 7,000+ courses at $160 off. Limited Time Only!
Explore a comprehensive conference talk on securing the software supply chain, delivered at Conf42 DevSecOps 2023. Dive into the fundamentals of software composition analysis and risk management, examining contributor profiles, project dynamics, code quality, and vulnerability assessments. Learn how to integrate security measures into deployment pipelines, implement DevSecOps practices, and streamline security assessments. Gain insights on initiating and maintaining a robust security strategy for your software development process, including the introduction of new web service platforms and tools like SourceMotion.

Syllabus

intro
preamble
agenda
marek and aleksander
risk model
fundamentals
whys and whats of software composition analysis
risks - what if we don't?
software composition analysis - risk management scarm
contributor profile
project activity = project dynamics
code quality
vulnerabilities cve dynamics
how to plug it into the software deployment pipeline?
production pipeline
devsecops by linux polska
how to make it happen? just start...
new web service platform...
streamline your security assessments
sourcemotion
thank you, contact us!


Taught by

Conf42

Related Courses

DevOps CI/CD Pipeline: Automation from development to deployment
Universidad Anáhuac via edX DevOps Pipeline: Automatización hasta el despliegue
Universidad Anáhuac via edX Exploring the Benefits of Continuous Security and Compliance for Cloud Infrastructure
Pluralsight Integrating Incident Response into DevSecOps
Pluralsight DevSecOps: Building a Secure Continuous Delivery Pipeline
LinkedIn Learning