What Is Software Supply Chain And Why It Matters

Guest: Barak Schoster (LinkedIn, Twitter)
Company: Palo Alto Networks (Twitter)
Show: To The Point
Keyword: Software Supply Chain Security

The software supply chain encompasses all the different pieces that a business needs to build an application. It can include third-party software like open source packages, containers that are taken from the internet. It includes code that is written by contractors or a company’s own engineering teams. The software supply chain also includes the delivery pipelines themselves. When delivering new applications to customers, companies should consider whether the delivery pipeline is secure and whether it maintains a full software bill of materials (SBOM) on the entire software and its supply chain including third-party vendors. Barak Schoster, Senior Director, Chief Architect at Palo Alto Networks, explains in the video why the software supply chain is a problem for not only security professionals but also engineering teams today.

About Barak Schoster: Based in Tel Aviv, Barak spends his time helping teams secure cloud infrastructure. He is the creator of Checkov and often contributes to other open source projects. He has previously worked for RSA, focused on cybersecurity machine learning and big data architecture, as well as at Fortscale and IDF tech unit.

About Palo Alto Networks: Palo Alto Networks, the global cybersecurity leader, is shaping the cloud-centric future with technology that is transforming the way people and organizations operate. Our mission is to be the cybersecurity partner of choice, protecting our digital way of life. We help address the world’s greatest security challenges with continuous innovation that seizes the latest breakthroughs in artificial intelligence, analytics, automation, and orchestration. By delivering an integrated platform and empowering a growing ecosystem of partners, we are at the forefront of protecting tens of thousands of organizations across clouds, networks, and mobile devices. Our vision is a world where each day is safer and more secure than the one before.

You may also like

Acorn Labs’ GPTScript aims to redefine coding for AI applications

Kubernetes is not for the weakhearted, so we are trying to simplify it | Sudeep Goswami

Salt Security sheds light on security risks of LLMs

You need a robust cyber materiality program | CISO Insights E2

Akamai offers NVIDIA RTX 4000 Ada GPUs for gaming and media

Are VMware customers looking at alternatives post-Broadcom acquisition?