C-SCRM: Much-needed definition for software supply chain policy & processes

In this episode, Matt shares why CISA's new Cyber Supply Chain Risk Management (C-SCRM) office — which will help to operationalize both industry and government efforts on software supply chain security — is key to maturity.

Keep learning

• Related post: How C-SCRM could fill gaps
• Special: The Evolution of App Sec
• Special: The State of Supply Chain Security

Field CISO at ReversingLabs. Matt Rose has an extensive background in application security, object-oriented programming, multi-tier architecture design and implementation, and internet/intranet development. His areas of expertise include Application Security, SAST, DAST, IAST, SCA, DevSecOps, and Threat Modeling. Matt is an accomplished public speaker and has been quoted in 50+ AST industry media publications.

Typosquatting and software supply chain security

SCA Is Good. SSCS Is Better.

Reproducible Builds: Graduate Your Application Security

Spectra Assure Free Trial

Related episodes

Typosquatting and software supply chain security

SCA Is Good. SSCS Is Better.

Reproducible Builds: Graduate Your Application Security