Tag Archives: trusted software alliance

Secure From the Start: Combining Open Source Policies, Practice & Tools


February 26, 2014 By
Derek Weeks
Securing from the Start

In short, open source security can’t be an after thought. Security isn’t only the responsibility of ‘security professionals’ but instead a shared responsibility for all parties involved in developing or managing an organization’s software supply chain. Better put in the FS-ISAC guidelines…

Continue reading...

AppSec / DevOps Survey: 63% Concerned with Open Source


February 5, 2014 By
Derek Weeks
Devops Appsec

A sneak peek at interim results from the “Developers and Application Security: Who is Responsible?” 2014 survey are in, and there’s still time for you to participate. Here’s a little something for you to think about. Once upon a time, we used to develop our own software. But these days, we are developing 90% of […]

Continue reading...