Learn how to empower your developers with IDE-based security testing, and why open source audits are an essential part of tech due diligence in M&A.
Your Developers Aren’t Security Experts—But They Can Be With the Right Tools
Securing your applications is critical, but maintaining release velocity and developer productivity is just as important. Let’s face it: Developers aren’t security experts. They unwittingly introduce security weaknesses and vulnerable open source components into your applications, and they’re ultimately responsible for fixing any issues that surface. But what if you could equip developers with the tools and information they need to prevent security issues from ever making it into your codebase, without creating unnecessary friction or slowing them down?
Join guest presenter Sandy Carielli, Principal Analyst, Forrester Research, Inc., and Patrick Carey, Synopsys, as they discuss the benefits of IDE-based security testing and the role developers can play in securing your applications.
When: Wednesday, May 20 @ 12 p.m Eastern / 9 a.m. Pacific
Who: Patrick Carey, Director Product Marketing, Synopsys; Sandy Carielli, Principal Analyst, Forrester Research, Inc.
Open Source Risk in M&A by the Numbers
In over 1,000 codebases audited in 2019, Black Duck Audits found that nearly every one contained open source components. Not only that, but a significant percentage of “proprietary code” overall was open source. However, left unmanaged, open source can lead to license compliance issues plus security and code quality risks. Whether you’re on the buy side or sell side, these risks could negatively affect valuation in an M&A transaction.
Many acquirers have come to understand all this in concept; the Black Duck Audit Services group has the data. Join us for this webinar as we answer questions about the code of tech companies being acquired today. We’ll cover:
- Open source license and security risks by the numbers
- Why audits have become the norm in M&A tech due diligence
- How you can get a complete picture of open source risks
Don’t miss this informative webinar. Register today.
When: Thursday, May 21 @ 12 p.m. Eastern / 9 a.m. Pacific
Who: Phil Odence, Synopsys
*** This is a Security Bloggers Network syndicated blog from Software Integrity Blog authored by Synopsys Editorial Team. Read the original post at: https://www.synopsys.com/blogs/software-security/webinars-may-18-22/