Dell's Sarah Evans and Lisa Bradley and Ensuring Secure Open Source Software at the Enterprise Level

In this episode, CRob sits down with Sarah Evans, security research technologist at Dell and Lisa Bradley, senior director of product and application security at Dell. They dig into the challenges of implementing secure open software at a complex enterprise.  

Sarah sits on the OpenSSF Technical Advisory Council and at Dell’s she has been instrumental in cybersecurity innovation, conducting research within the global CTO R&D organization. Her career spans pivotal roles, including being an enterprise security architect and engaging in Identity and Access Management and IT at prestigious organizations like Wells Fargo and the U.S. Air Force.

Dr. Lisa Bradley is a distinguished cybersecurity expert and visionary leader. She has earned her reputation as a trailblazer in the field of security and vulnerability management. In her current role, she oversees Dell's Product Security Incident Response Team (PSIRT), Bug Bounty Program, SBOM initiative, Dependency Management, and Security Champion and Training Programs. 

• 02:38 How Dell is managing its ingestion and productization of open source software
• 04:54 The complex task of managing open source software for a company the size of Dell
• 06:34 The importance of executive support when implementing security initiatives
• 10:40 Lisa and Sarah answer CRob’s rapid-fire questions
• 12:40 Lisa and Sarah’s advice to aspiring developers and security professionals
• 14:12 Lisa and Sarah’s call to action

Episode links:

• Lisa Bradley on LinkedIn
• Sarah Evans on LinkedIn
• Get involved in the OpenSSF community