Learn how our CloudBees partnership helps users optimize CI/CD and automate AppSec Testing, and steps to take after you get an open source audit report.
Implementing DevSecOps With Synopsys and CloudBees
As many organizations have learned, sometimes the hard way, DevOps transformation is as much about creating a process and adopting a mindset as it is about acquiring the right tools. But organizations creating a DevOps process shouldn’t neglect to implement security into their pipelines. Synopsys and CloudBees aim to deliver the best of both worlds to customers adopting DevOps: CI/CD optimization and application security testing automation.
Join experts from Synopsys and CloudBees as we discuss:
- How CloudBees Core™, built on Jenkins®, helps organizations scale CI/CD to a multitude of teams without increasing the administrative burden
- How to add Synopsys tools Coverity, Black Duck, and Seeker to your pipelines
- How to leverage the power of Kubernetes with the management of CloudBees Core to orchestrate the use of these tools as part of your SDLC
When: Tuesday, Nov. 12 @ 12 p.m. Eastern / 9 a.m. Pacific
Who: Meera Rao, senior principal consultant, Synopsys; Chris Saleski, sr. technical alliance marketing manager, CloudBees
You’ve Got Your Open Source Audit Report—Now What?
Companies’ use of open source software has surpassed the occasional and solidified itself as mainstream. Effectively identifying and managing the compliance and security risks associated with open source software can be a difficult task. Whether you’re acquiring another company, preparing for acquisition, or simply wanting to manage your use of open source, the universal first step is to figure out the composition of your code, often via an audit. But what do you do once you have the audit report?
Join us for this live webinar to learn best practices before and after an open source audit. We’ll cover how to:
- Select and prepare the codebase
- Get the most out of an audit
- Implement a third-party software policy
- And more
When: Thursday, Nov. 14 @ 12 p.m. Eastern / 9 a.m. Pacific
Who: Tony Decicco, shareholder, GTC Law Group & Affiliates; Leon Schwartz, associate, GTC Law Group & Affiliates; Phil Odence, GM of Black Duck Audits, Synopsys
*** This is a Security Bloggers Network syndicated blog from Software Integrity Blog authored by Synopsys Editorial Team. Read the original post at: https://www.synopsys.com/blogs/software-security/webinars-nov-11-15/