Cybersecurity Insights with Contrast CISO David Lindner | 2/3
Insight #1
”
CISA is establishing a supply chain security risk management office. I love it, it fits, and I hope we see even more of this in the future. Possibly an SBOM clearing house?”
CISA is establishing a supply chain security risk management office. I love it, it fits, and I hope we see even more of this in the future. Possibly an SBOM clearing house?”
Insight #2
”
Security questionnaires are not providing the industry what we think they are. Most often the answers are wrong, or only for a specific portion of the in-scope architecture. Make sure your third-party vetting is based on more than these questionnaires.”
Security questionnaires are not providing the industry what we think they are. Most often the answers are wrong, or only for a specific portion of the in-scope architecture. Make sure your third-party vetting is based on more than these questionnaires.”
Insight #3
”
If I was being asked to generate an SBOM by a customer and I didn’t know where to start, I would start with CodeSec. You’ll be providing that SBOM in 3 simple steps.”
If I was being asked to generate an SBOM by a customer and I didn’t know where to start, I would start with CodeSec. You’ll be providing that SBOM in 3 simple steps.”
*** This is a Security Bloggers Network syndicated blog from AppSec Observer authored by David Lindner, Director, Application Security. Read the original post at: https://www.contrastsecurity.com/security-influencers/cybersecurity-insights-with-contrast-ciso-david-lindner-2/3
