Gartner:
WHY ENTERPRISES NEED TO LOOK AT SOFTWARE COMPOSITION ANALYSIS (SCA)?

Webinar: June 2nd, 2020 @ 1.30pm CET / 2.30pm EET (45 minutes)
 
Open source and third-party software are often leveraged during application development to boost productivity and provide supporting infrastructure - but convenience comes with risks. Security and risk management leaders must proactively control open-source in order to manage risk more effectively. 
 
Gartner recently launched their Technology Insights Report for Software Composition Analysis so that enterprises can still innovate quickly but learn how to manage the risk. In this session we cover the key findings of the report, and talk about the conclusions and recommendations.
 
KEY DISCUSSION POINTS:
  • Understand why a regularly updated software bill of materials will soon be a non-negotiable requirement for at least half of enterprise software buyers.
  • Gain insight into why attackers are targeting open-source repositories with malware to infect organisations earlier in the software build.
  • DevSecOps 2020 Survey. Over 5000 developers gave input into annual DevSecOps survey. In this sesson we also cover key findings on security and software tooling which is a base for robust SCA. You will also learn how you compare to your peers and how to ensure you have minimal risk.

Webinar hosts

Nick Coombs
Vice President, Sonatype

Nick has almost thirty years of technology experience with companies such as Hewlett-Packard, Veritas, Dell and F5. He is passionate about helping companies mitigate the risk of using open source libraries in their applications.

 

Tobias Thorslund
Nordics Director, Sonatype

Tobias is an avid believer that security practices should not interrupt the DevOps pipeline; instead it should aid in preventing costly rebuilds down the road. With over 15 years experience in the technology and software development industry, Tobias is a passionate advocate for helping organisations save time and mitigate risk efficiently.

 

This webinar is organized by value added distributor Nordicmind in cooperation with Sonatype, the global leader in DevSecOps automation. Nordicmind Privacy Policy