GeekWire

Best Practices in Software Security

Software security is very vital, and developers must give it due attention. Over the years, software development has become an important aspect of our lives as we use it for almost everything.
JD Supra

UPDATE: Secure Software Development Attestation: A(nother) Government Requirement

As follow-on guidance to Office of Management and Budget’s (OMB) September 14, 2022 memo and the associated Executive Order on Improving the Nation’s Cybersecurity from May 2021, the Cybersecurity and ...
Nextgov

Trade Org Urges OMB to ‘Harmonize’ Secure Software Development Practices

The Information Technology Industry Council, or ITI—a technology trade association—sent a letter to the White House’s Office of Management and Budget Monday asking the agency to “harmonize” secure ...
SD Times

Biden-Harris Administration to require secure software development attestation form for government software

Value stream management involves people in the organization to examine workflows and other processes to ensure they are deriving the maximum value from their efforts while eliminating waste — of ...
Homeland Security Today

Mitigating the Risk of Software Vulnerabilities by Adopting a Secure Software Development Framework (SSDF)

This white paper recommends a core set of high-level secure software development practices, called a secure software development framework (SSDF), to be added to each software development life cycle ...
Infosecurity-magazine.com

How the New EU Regulatory Landscape Will Impact Software Security

The new European Union (EU) cybersecurity regulatory landscape has arrived. Organizations are now being faced with more demanding, challenging and fine-tuned cyber resilience requirements across their ...
Security

The Linux Foundation and OpenSSF release report on the state of education in secure software development

Linux Foundation Research and the Open Source Security Foundation (OpenSSF) are pleased to release a new report titled “Secure Software Development Education 2024 Survey: Understanding Current Needs.” ...
Business Wire

Tidelift Introduces Advanced Open Source Intelligence Capabilities To Improve Software Supply Chain Security in Partnership with Maintainers

BOSTON--(BUSINESS WIRE)--Tidelift, a provider of solutions for improving the security and resilience of the open source software supply chain powering modern applications, today announced a broad new ...
Computer Weekly

What secure coding practices mean to modern cyber security

The world as we know it is comprised of layers upon layers of carefully connected technology, found in everything from international banks and local community owned shops to wireless doorbells and ...
Computer Weekly

Secure software: Third-party suppliers your first-party risk

In 1965, Ralph Nader’s groundbreaking book Unsafe at Any Speed exposed how car manufacturers prioritised style, performance, and profit over the safety of drivers and passengers. His narrative spurred ...

Take the Lawyers Out of Cybersecurity. There Is a Better Way to Secure Software.

About the authors: Kiran Sridhar is the head of Strategic Initiatives for Resilience, a cyber insurance and cyber risk management company. Sridhar is also on the investment team of venture-capital ...