Description
Software supply chain attacks are increasing in frequency and impact—but how concerned should we really be, and what can we do about it?
To deploy software rapidly and safely, organizations must ensure their software is trustworthy, compliant, and secure. In this session, you’ll learn how a shift-left security approach introduces security checks and guardrails at every stage of the software development lifecycle to protect the software supply chain.
We’ll explore different tools we can use as well as easy-to-adopt practices that empower developers, platform engineers, and security teams alike—such as generating Software Bills of Materials (SBOMs), analyzing dependencies, and using Git commit signing and verification — to significantly reduce supply chain risk without slowing down delivery.
Optional: Speaker / convener biography
Magnus Eklund works as a Specialist Solution Architect in the OpenShift team at Red Hat, his focus is on supply chain security, developer productivity and cloud native development. He has a background as a software developer and software architect and he has been working with Java most of his career.
| Length | 45 minutes |
|---|