To give you the best possible experience, this site uses cookies. Review our Privacy Policy and Terms of Service to learn more. Forstått!
Artwork

Business Tech News Reimagining Cyber Cybersecurity Cyber Security News Hacking Technology Cybercrime Tech Cyber Security Hackers Its Information Technology
Innhold levert av Reimagining Cyber. Alt podcastinnhold, inkludert episoder, grafikk og podcastbeskrivelser, lastes opp og leveres direkte av Reimagining Cyber eller deres podcastplattformpartner. Hvis du tror at noen bruker det opphavsrettsbeskyttede verket ditt uten din tillatelse, kan du følge prosessen skissert her https://no.player.fm/legal.
Player FM - Podcast-app
Gå frakoblet med Player FM -appen!
Get it on App Store Get it on Google Play

Reimagining Cyber - real world perspectives on cybersecurity »
Unpacking SBOMs: The Building Blocks of Software Security - Ep 103

33:11
 
Spill
Avspiller
Del
 

MP3Episoder hjem
Manage episode 425678018 series 3361845
Innhold levert av Reimagining Cyber. Alt podcastinnhold, inkludert episoder, grafikk og podcastbeskrivelser, lastes opp og leveres direkte av Reimagining Cyber eller deres podcastplattformpartner. Hvis du tror at noen bruker det opphavsrettsbeskyttede verket ditt uten din tillatelse, kan du følge prosessen skissert her https://no.player.fm/legal.

In this episode, Stan Wisseman and Rob Aragao welcome Justin Young to explore the transformative role of Software Bill of Materials (SBOMs) in enhancing software supply chain security. Justin shares his extensive experience and insights into how SBOMs contribute to the maturation of the software industry, drawing parallels with the auto and food industries' approaches to defect and ingredient tracking.

The discussion delves into the regulatory landscape, highlighting the FDA's SBOM requirements for medical devices, the U.S. National Cybersecurity Strategy, and various compliance mandates from CISA, DORA, PCI, and the EU CRA. Justin explains the importance of shifting liability to software vendors and away from end users and open-source developers, emphasizing the need for actively maintained and secure software components.

Listeners will gain an understanding of the different SBOM formats, Cyclone DX and SPDX, and their respective advantages. Justin also addresses the challenges organizations face in managing SBOMs, including procurement, validation, and the necessity of a dedicated SBOM program manager.

Finally, the episode explores the practicalities of SBOM implementation, from storage and cataloging to enrichment and vulnerability management, offering a comprehensive guide for organizations aiming to bolster their software security practices.

Tune in to learn how SBOMs are reshaping the software industry, driving transparency, and enhancing security across software supply chains.
Relevant Links:
Episode 88: Open-Source Software: Unlocking efficiency and innovation

Episode 41: Do a little dance, Time for some SLSA

Episode 26: Log4j Vulnerabilities: All you need to know and how to protect yourself

Episode 4: SolarWinds: Bringing down the building… Software Supply-Chain Pressure Points

Whitepaper: The need for a Software Bill of Materials

Software Supply Chain Hub page

Follow or subscribe to the show on your preferred podcast platform.
Share the show with others in the cybersecurity world.
Get in touch via reimaginingcyber@gmail.com

  continue reading

103 episoder

#Business #Tech News #Reimagining Cyber #Cybersecurity #Cyber #Security #News #Hacking #Technology #Cybercrime #Tech #Cyber Security #Hackers #Its #Information Technology
Artwork

Unpacking SBOMs: The Building Blocks of Software Security - Ep 103

Reimagining Cyber - real world perspectives on cybersecurity

published

Spill Avspiller
iconDel
 
MP3Episoder hjem
Manage episode 425678018 series 3361845
Innhold levert av Reimagining Cyber. Alt podcastinnhold, inkludert episoder, grafikk og podcastbeskrivelser, lastes opp og leveres direkte av Reimagining Cyber eller deres podcastplattformpartner. Hvis du tror at noen bruker det opphavsrettsbeskyttede verket ditt uten din tillatelse, kan du følge prosessen skissert her https://no.player.fm/legal.

In this episode, Stan Wisseman and Rob Aragao welcome Justin Young to explore the transformative role of Software Bill of Materials (SBOMs) in enhancing software supply chain security. Justin shares his extensive experience and insights into how SBOMs contribute to the maturation of the software industry, drawing parallels with the auto and food industries' approaches to defect and ingredient tracking.

The discussion delves into the regulatory landscape, highlighting the FDA's SBOM requirements for medical devices, the U.S. National Cybersecurity Strategy, and various compliance mandates from CISA, DORA, PCI, and the EU CRA. Justin explains the importance of shifting liability to software vendors and away from end users and open-source developers, emphasizing the need for actively maintained and secure software components.

Listeners will gain an understanding of the different SBOM formats, Cyclone DX and SPDX, and their respective advantages. Justin also addresses the challenges organizations face in managing SBOMs, including procurement, validation, and the necessity of a dedicated SBOM program manager.

Finally, the episode explores the practicalities of SBOM implementation, from storage and cataloging to enrichment and vulnerability management, offering a comprehensive guide for organizations aiming to bolster their software security practices.

Tune in to learn how SBOMs are reshaping the software industry, driving transparency, and enhancing security across software supply chains.
Relevant Links:
Episode 88: Open-Source Software: Unlocking efficiency and innovation

Episode 41: Do a little dance, Time for some SLSA

Episode 26: Log4j Vulnerabilities: All you need to know and how to protect yourself

Episode 4: SolarWinds: Bringing down the building… Software Supply-Chain Pressure Points

Whitepaper: The need for a Software Bill of Materials

Software Supply Chain Hub page

Follow or subscribe to the show on your preferred podcast platform.
Share the show with others in the cybersecurity world.
Get in touch via reimaginingcyber@gmail.com

  continue reading

103 episoder

#Business #Tech News #Reimagining Cyber #Cybersecurity #Cyber #Security #News #Hacking #Technology #Cybercrime #Tech #Cyber Security #Hackers #Its #Information Technology

Alle episoder

×
 
Loading …

Velkommen til Player FM!

Player FM scanner netter for høykvalitets podcaster som du kan nyte nå. Det er den beste podcastappen og fungerer på Android, iPhone og internett. Registrer deg for å synkronisere abonnement på flere enheter.

 

Lytt til 500+ tema
Player FM - Podcast-app
Gå frakoblet med Player FM -appen!
Get it on App Store Get it on Google Play

Hurtigreferanseguide

Topp podcaster
Indre bane
VG Sporten med Brenne og Borud
NIH-podden
E24-podden
Misjonen med Antonsen og Golden
Radioresepsjonen
Filmpolitiets podkast
Filmfrelst
Dine Penger - Pengerådet
Bekk Open Podcast
Ekko
Dagsnytt 18
Mentaltrener Podcasten
Rekommandert
Uillustrert Vitenskap
Lørdagsrådet
Historier fra virkeligheten
Truecrimepodden
Gåten i Isdalen
To hvite menn
Player FM logo
Hjelp/FAQ | Oppgrader | Advertise
Kunst|Business|Komedie|Økonomi|Underholdning|Nyheter|Politikk|Religion
Vitenskap|Fotball|Sport|Historiefortelling|Teknologi|True Crime
Copyright 2024 | Sitemap | Personvern | Vilkår for bruk | | opphavsrett
Episode being played series thumbnail
icon icon
Hastighet
Serier innstillinger
1x
1x
Volume
100%
icon
icon icon
/

Se Player FM i ...
Player FM
Browser
Chrome
Safari
Firefox