Blog | ReversingLabs | Jaikumar Vijayan

Jaikumar Vijayan

Jaikumar Vijayan

Freelance technology journalist. A former Senior Editor of Computerworld, Jai is a journalist and technology content writing specialist, with 20+ years of award-winning experience in IT trade journalism. He is a correspondent for the Christian Science Monitor and a contributor to Dark Reading, eWEEK, Datamation, IBM Security Intelligence, and Third Certainty. He writes features and covers breaking news stories on information security, data privacy, and big data/business analytics. His recent projects include ERP case studies and an e-book on enterprise mobility management best practices.

Find Jaikumar Vijayan on: Twitter LinkedIn

Recent Posts from Jaikumar Vijayan

Software supply chain security by the numbers: 30 stats that matter

March 27, 2024

Software supply chain security by the numbers: 30 stats that matter

Understand the state of software supply chain security with key takeaways from recent research and surveys of application security and development pros.

5 reasons you should consider a career in application security

March 7, 2024

5 reasons you should consider a career in application security

There are many reasons to consider a role AppSec. But one stands out: Software supply attacks are creating job security and opportunity.

Are AI development tools exposing your organization? 4 key considerations

February 28, 2024

Are AI development tools exposing your organization? 4 key considerations

When using AI tools including GitHub Copilot, your security team must be aware of — and protect against — risks. Here are four key questions to ask.

The state of container security: 5 key steps to locking down your releases

January 3, 2024

The state of container security: 5 key steps to locking down your releases

Here are best practices — and recommendations for tooling — to modernize your software supply chain security approach.

ESF steps up supply chain security guidance with call for binary analysis

December 20, 2023

ESF steps up supply chain security guidance with call for binary analysis

To advance the state of software supply chain security, the ESF has called for going beyond legacy testing with binary analysis and reproducible builds.

MFA and software supply chain security: It's no magic bullet

December 12, 2023

MFA and software supply chain security: It's no magic bullet

Attacks show that an adversary with development access can wreak havoc. Multifactor authentication can help, but it's not an "end-all solution."

The AI executive order: What AppSec teams need to know

November 30, 2023

The AI executive order: What AppSec teams need to know

While the new White House EO is largely focused on foundational AI, security teams reviewing AI initiatives are still in the hot seat.

5 best practices for putting SBOMs to work with CI/CD

November 1, 2023

5 best practices for putting SBOMs to work with CI/CD

SBOMs are essential — but making them useful is tricky in continuous integration/continuous deployment environments. Here are the key best practices.

How mature is your open-source risk management? S2C2F helps map dependencies

October 26, 2023

How mature is your open-source risk management? S2C2F helps map dependencies

OpenSSF's Secure Supply Chain Consumption Framework can help better lay out risk for open-source components — but remediation is left out of the picture.

Docker's BuildKit adds attestation: How it works and key limitations

April 4, 2023

Docker's BuildKit adds attestation: How it works and key limitations

Here's what you need to know about BuildKit, how to leverage its SBOM capabilities — and its limitations for comprehensive supply chain security.

3 reasons to upgrade your AppSec testing to tackle supply chain security

March 1, 2023

3 reasons to upgrade your AppSec testing to tackle supply chain security

Modern software development practices are a primary target for software supply chain attacks. Here's why traditional application security tools alone are not enough to mitigate these new risks

Lessons from Log4Shell: 4 key takeaways for DevSecOps teams

January 25, 2023

Lessons from Log4Shell: 4 key takeaways for DevSecOps teams

Top leaders and practitioners from eBay, Fidelity, T-Mobile and Tasktop share lessons from the Log4Shell vulnerability. Here are four key takeaways.

Latest Blog Posts

Chinese APT Group Exploits SOHO Routers

Chinese APT Group Exploits SOHO Routers

Conversations About Threat Hunting and Software Supply Chain Security

Reproducible Builds: Graduate Your Software Supply Chain Security

Reproducible Builds: Graduate Your Software Supply Chain Security

Glassboard conversations with ReversingLabs Field CISO Matt Rose

Software Package Deconstruction: Video Conferencing Software

Software Package Deconstruction: Video Conferencing Software

Analyzing Risks To Your Software Supply Chain