What's in the SOSS? An OpenSSF Podcast Securing the Future: AI, Open Source, and Collaboration with Jay White (Microsoft)
10 snips
Dec 2, 2025 Jay White, a key figure in Microsoft's open source ecosystem, shares his journey from risk assessments to AI and community building. He discusses the importance of model signing and transparency in AI, highlighting his work with the OpenSSF and Coalition for Secure AI. White addresses the challenges of cultural representation in AI systems and encourages community involvement in open source security efforts. He emphasizes continuous learning and the need for standardization in AI supply chains, making a compelling case for collaboration in this evolving field.
AI Snips
Chapters
Transcript
Episode notes
Community-Driven Path Into Open Source
- Jay White describes his path into open source as a community-driven, risk-aware journey from licensing and risk assessments to building bridges across teams.
- He emphasizes preserving open source purity while enabling industry-aligned, impactful solutions.
Bridge Building Launched His Career
- Jay recounts building bridges between teams in the military and consulting by bringing unlikely collaborators together.
- Those early community-building successes led to his role at Microsoft focused on open source strategy.
ML SecOps Extends DevSecOps
- The OpenSSF AI/ML group runs substreams like model signing and ML SecOps to adapt DevSecOps for machine learning systems.
- Jay argues these efforts require cross-organizational collaboration to cover diverse attack vectors and operational needs.