Software Engineering Radio - the podcast for professional software developers SE Radio 606: Charlie Jones on Third-Party Software Supply Chain Risks
9 snips
Mar 7, 2024 Charlie Jones and Priyanka Raghavan discuss third-party software risks, case studies, secure software development frameworks, laws and regulations, and advise on tackling enterprise risks. They cover definitions, importance of managing risks, supply chain attack case studies, NIST secure software development framework, Salsa framework for security, transitive dependencies, automation for risk management, accountability in mitigating risks, and tools for software supply chain risk testing.
Chapters
Transcript
Episode notes
1 2 3 4 5 6 7
Introduction
00:00 • 3min
Navigating Third-Party Software Risks in Enterprises
03:08 • 14min
Securing Software in the Supply Chain: Lessons Learned and Best Practices
17:31 • 8min
Exploring the Salsa Framework for Software Supply Chain Security
25:52 • 3min
Managing Transitive Dependencies and Supply Chain Risks
29:06 • 16min
Navigating Third-Party Software Risks and Security Measures
45:21 • 2min
Exploring Tools for Software Supply Chain Risk Testing and Decision-Making
47:32 • 3min