Tracy Bannon

It's the humans that matter...

Upstream: OSS supply chain security in the wake of Log4Shell

For years, experts have been telling the government to take stock of the software supply chain by generating software bills of materials and defining standards and policies for use. But it took a few big “oh !@#$%” moments like the SolarWinds and Colonial Pipeline breaches to get the wheels of government really turning around improving software supply chain security.

Posted by Tracy Bannon on Sunday, May 22, 2022

SEI DevSecOps Day Pittsburgh - #NoHobbyists

#NoHobbyists - How to Shift Security Everywhere CyberSecurity has traditionally been regarded as a function of a distinct security group. In reality, security and cyber resilient software is the responsibility of everyone in the organization. There is a well intended call to “shift security left” but no one knows how! Instead, organizations are depending on developers to become cyber-savvy on their own. Attendees will learn about why to not shift left, how to build a new security culture, and tips, tricks, and tools for moving away from security hobbyists to having experienced pros.

Posted by Tracy Bannon on Friday, April 22, 2022

avatar

Real Technologist, Human-Focused Software Architect, Change Agent, Tech Evangelist,Mentor, Speaker, Author, Ambassador, Engineer

QUICK LINKS
FEATURED TAGS
carnegie-mellon chatgpt cloud culture cybersecurity design-for-change devops devsecops diversity enterprise-roadmap generative-ai humans-first hybird-cloud its-505 mentoring open-source quality-attributes real-technologist real-technologists sbom sdlc sei sharing software-architects software-architecture software-engineering softwarearchitecture sqas tech-reflections tradeoff-analysis vsm
FRIENDS