Date: On demand
Duration: 1 hour
Cost: No Fee

Like a consumer looking for information about the features in a car or a food product, agencies are increasingly looking for more information about the quality of the software they’re buying to improve security outcomes.

Ron Ross, a senior fellow at the National Institute of Standards and Technology, says agencies are starting to seek secure development evidence from vendors. NIST recently published a secure software development framework, recommendations for a “cybersecurity labeling” of consumer software, and other documents to help boost software security.

Agencies are also considering the use of “Software Bills of Materials,” or SBOMs, to help communicate the different software libraries that went into building a system. While SBOMs are just one step in the security process, the momentum behind the idea could help lead to broader transparency across the software industry, according to Jeff Williams, co-founder and chief technology officer at Contrast Security.

Learning objectives:

• Progress and Challenges with Cybersecurity Progress
• DevSecOps in a Risk Management Environment
• Industry analysis

This program is sponsored by   

Complimentary Registration
Please register using the form on this page or call (202) 895-5023.