JD Supra

Secure Software Development Attestation: A(nother) Government Requirement

On September 14, 2022, the Office of Management and Budget (“OMB”) issued a memorandum on Enhancing the Security of the Software Supply Chain through Secure Software Development Practices (“OMB Memo”) ...
SDxCentral

OpenSSF details top 10 secure software development principles

What does it take to make secure software? The Open Source Security Foundation (OpenSSF) has a few ideas (10 of them, in fact). This week at the OpenSSF Day Japan event in Tokyo, the nonprofit group ...
Dark Reading

4 Principles for Creating a New Blueprint for Secure Software Development

Professional and state-sponsored hacking groups are dedicating more time, money, and effort to cybercrime every year. Threat actors use novel techniques in new types of attacks that some of the ...
Bleeping Computer

Why a secure software development life cycle is critical for manufacturers

For all the scary talk about cyberattacks from vendors and industry experts, relatively few attacks are actually devastating. But the Jaguar Land Rover (JLR) attack was. The JLR breach wasn’t some ...
Redmond Magazine

Microsoft Beefs Up Secure Software Development Initiative

Microsoft on Wednesday offered a progress report on its "Secure Future Initiative" (SFI). The announcement by Bret Arsenault, Microsoft's corporate vice president and chief cybersecurity advisor, ...
Business Wire

BlueFlag Security Platform Enhancements Redefine How Organizations Secure Software Development Environments

SUNNYVALE, Ca.--(BUSINESS WIRE)--In response to rising software supply chain attacks, BlueFlag Security is delivering enhanced capabilities within its platform for software development life cycle ...
Dark Reading

New UK Security Guidelines Aim to Reshape Software Development

Software security may finally be getting the attention it deserves as more countries institute necessary guidelines. But with threats increasing against the software supply chains, it is too soon to ...
SD Times

Biden-Harris Administration to require secure software development attestation form for government software

Value stream management involves people in the organization to examine workflows and other processes to ensure they are deriving the maximum value from their efforts while eliminating waste — of ...
BizTech

Modern Platform Engineering: How DevSecOps Enables More Secure Software Development

Security is a key consideration when it comes to platform engineering, which is the next step in the evolution of DevOps. Platform engineering is a discipline for designing, building and maintaining ...

IBM commits $5 billion to secure open-source software

May 28 (Reuters) - IBM said on Thursday it has committed $5 billion to an initiative that will deploy engineers and AI tools to help companies better secure open source software. The initiative, ...
Computer Weekly

Secure software: Third-party suppliers your first-party risk

In 1965, Ralph Nader’s groundbreaking book Unsafe at Any Speed exposed how car manufacturers prioritised style, performance, and profit over the safety of drivers and passengers. His narrative spurred ...
JD Supra

UPDATE: Secure Software Development Attestation: A(nother) Government Requirement

As follow-on guidance to Office of Management and Budget’s (OMB) September 14, 2022 memo and the associated Executive Order on Improving the Nation’s Cybersecurity from May 2021, the Cybersecurity and ...