Cybersecurity Minute

Improving the Security of Open-Source Software

Cybersecurity Minute Ep 10
Chris HughesBy Updated:1 Min Read

This episode is brought to you by the Cloud Wars Expo. This in-person event will be held from June 28th to 30th at the Moscone Center in San Francisco, California. 

Highlights 

00:15 — The Linux Foundation and Open-Source Software Security Foundation (OpenSSF) released a high-level mobilization plan for improving the security of open-source software, with input from 37 leading tech companies. 

00:41 — The plan includes three key goals: securing open-source software production, improving vulnerability-discovering remediation, and shortening patch response time. 

01:12 —The open-source ecosystem must better position itself to respond quickly to vulnerabilities as they are discovered. 

01:48 — Efforts to improve secure software development include using digital signatures to deliver trusted software across the supply chain. 

02:03 – An OpenSSF security response team will be tasked with helping organizations mitigate potential gaps in security and closing vulnerabilities as they are discovered. 

Want more cybersecurity insights? Subscribe to the Cybersecurity as a Business Enabler channel:

Share.
Analystuser

Chris Hughes

CISO
Aquia

Areas of Expertise
  • Cybersecurity

Chris Hughes is an Acceleration Economy Analyst focusing on Cybersecurity. Chris currently serves as the Co-Founder and CISO of Aquia. Chris has nearly 20 years of IT/Cybersecurity experience. This ranges from active duty time with the U.S. Air Force, a Civil Servant with the U.S. Navy and General Services Administration (GSA)/FedRAMP as well as time as a consultant in the private sector. In addition, he also is an Adjunct Professor for M.S. Cybersecurity programs at Capitol Technology University and University of Maryland Global Campus. Chris also participates in industry Working Groups such as the Cloud Security Alliances Incident Response Working Group and serves as the Membership Chair for Cloud Security Alliance D.C. Chris also co-hosts the Resilient Cyber Podcast. Chris holds various industry certifications such as the CISSP/CCSP from ISC2 as holding both the AWS and Azure security certifications. He regularly consults with IT and Cybersecurity leaders from various industries to assist their organizations with their Cloud migration journeys while keeping Security a core component of that transformation.

  Contact Chris Hughes ...

Related Posts

Add A Comment

Comments are closed.

Welcome to our new site!

Here you will find a wealth of information created for people  that are on a mission to redefine business models with cloud techinologies, AI, automation, low code / no code applications, data, security & more to compete in the Acceleration Economy!