�ݺ�ߣshows by User: sspringett

�ݺ�ߣshows by User: sspringett / http://www.slideshare.net/images/logo.gif �ݺ�ߣshows by User: sspringett / Sat, 26 Jan 2019 19:58:50 GMT �ݺ�ߣShare feed for �ݺ�ߣshows by User: sspringett BOMs Away - Why everyone needs a BOM (AppSec Cali 2019) /slideshow/boms-away-why-everyone-needs-a-bom-appsec-cali-2019/129393507 bomsaway-whyeveryoneneedsabom-190126195850
The benefits of using third-party and open source components are often negated by the inherent risks that come with them. Systematically reducing risk while allowing the benefits to prevail can be challenging. Organizations often rely on methods of identification that provide instant gratification, but fall short on delivering a simple, coherent strategy for long-term risk identification and remediation. This deck covers current best practices, explores how they've evolved over time, and provides concrete examples which can put into practice with minimal effort. ]]>
The benefits of using third-party and open source components are often negated by the inherent risks that come with them. Systematically reducing risk while allowing the benefits to prevail can be challenging. Organizations often rely on methods of identification that provide instant gratification, but fall short on delivering a simple, coherent strategy for long-term risk identification and remediation. This deck covers current best practices, explores how they've evolved over time, and provides concrete examples which can put into practice with minimal effort. ]]> Sat, 26 Jan 2019 19:58:50 GMT /slideshow/boms-away-why-everyone-needs-a-bom-appsec-cali-2019/129393507 sspringett@slideshare.net(sspringett) BOMs Away - Why everyone needs a BOM (AppSec Cali 2019) sspringett The benefits of using third-party and open source components are often negated by the inherent risks that come with them. Systematically reducing risk while allowing the benefits to prevail can be challenging. Organizations often rely on methods of identification that provide instant gratification, but fall short on delivering a simple, coherent strategy for long-term risk identification and remediation. This deck covers current best practices, explores how they've evolved over time, and provides concrete examples which can put into practice with minimal effort. <img style="border:1px solid #C3E6D8;float:right;" alt="" src="https://cdn.slidesharecdn.com/ss_thumbnails/bomsaway-whyeveryoneneedsabom-190126195850-thumbnail.jpg?width=120&height=120&fit=bounds" /><br> The benefits of using third-party and open source components are often negated by the inherent risks that come with them. Systematically reducing risk while allowing the benefits to prevail can be challenging. Organizations often rely on methods of identification that provide instant gratification, but fall short on delivering a simple, coherent strategy for long-term risk identification and remediation. This deck covers current best practices, explores how they've evolved over time, and provides concrete examples which can put into practice with minimal effort.

BOMs Away - Why everyone needs a BOM (AppSec Cali 2019) from Steve Springett

]]> 585 2 https://cdn.slidesharecdn.com/ss_thumbnails/bomsaway-whyeveryoneneedsabom-190126195850-thumbnail.jpg?width=120&height=120&fit=bounds presentation Black http://activitystrea.ms/schema/1.0/post

http://activitystrea.ms/schema/1.0/posted

0 Dependency track v3.3 - What's New /slideshow/dependency-track-v33-whats-new/121078512 dependency-trackv3-181029153846
An overview of the features available in Dependency-Track v3.3.]]>
An overview of the features available in Dependency-Track v3.3.]]> Mon, 29 Oct 2018 15:38:46 GMT /slideshow/dependency-track-v33-whats-new/121078512 sspringett@slideshare.net(sspringett) Dependency track v3.3 - What's New sspringett An overview of the features available in Dependency-Track v3.3. <img style="border:1px solid #C3E6D8;float:right;" alt="" src="https://cdn.slidesharecdn.com/ss_thumbnails/dependency-trackv3-181029153846-thumbnail.jpg?width=120&height=120&fit=bounds" /><br> An overview of the features available in Dependency-Track v3.3.

Dependency track v3.3 - What's New from Steve Springett

]]> 293 1 https://cdn.slidesharecdn.com/ss_thumbnails/dependency-trackv3-181029153846-thumbnail.jpg?width=120&height=120&fit=bounds presentation Black http://activitystrea.ms/schema/1.0/post

http://activitystrea.ms/schema/1.0/posted

0 Dependency-Check Ecosystem - OWASP Summit 2017 /slideshow/dependencycheck-ecosystem-owasp-summit-2017/77015124 owaspsumit2017dependency-checkecosystem-170616194217
This is a presentation I gave at OWASP Summit 2017 talking about the Dependency-Check ecosystem, including Jenkins, SonarQube, and Dependency-Track. The presentation focused on the progress made over the course of the projects life, demos of currently unreleased features, and the future of the platform.]]>
This is a presentation I gave at OWASP Summit 2017 talking about the Dependency-Check ecosystem, including Jenkins, SonarQube, and Dependency-Track. The presentation focused on the progress made over the course of the projects life, demos of currently unreleased features, and the future of the platform.]]> Fri, 16 Jun 2017 19:42:17 GMT /slideshow/dependencycheck-ecosystem-owasp-summit-2017/77015124 sspringett@slideshare.net(sspringett) Dependency-Check Ecosystem - OWASP Summit 2017 sspringett This is a presentation I gave at OWASP Summit 2017 talking about the Dependency-Check ecosystem, including Jenkins, SonarQube, and Dependency-Track. The presentation focused on the progress made over the course of the projects life, demos of currently unreleased features, and the future of the platform. <img style="border:1px solid #C3E6D8;float:right;" alt="" src="https://cdn.slidesharecdn.com/ss_thumbnails/owaspsumit2017dependency-checkecosystem-170616194217-thumbnail.jpg?width=120&height=120&fit=bounds" /><br> This is a presentation I gave at OWASP Summit 2017 talking about the Dependency-Check ecosystem, including Jenkins, SonarQube, and Dependency-Track. The presentation focused on the progress made over the course of the projects life, demos of currently unreleased features, and the future of the platform.

Dependency-Check Ecosystem - OWASP Summit 2017 from Steve Springett

]]> 506 3 https://cdn.slidesharecdn.com/ss_thumbnails/owaspsumit2017dependency-checkecosystem-170616194217-thumbnail.jpg?width=120&height=120&fit=bounds presentation Black http://activitystrea.ms/schema/1.0/post

http://activitystrea.ms/schema/1.0/posted

0 https://cdn.slidesharecdn.com/profile-photo-sspringett-48x48.jpg?cb=1548532695 I'm a well-rounded software architect, engineer, development manager and application security engineer. Specialties: Enterprise video platforms, content management, streaming technologies and application security. about.me/stevespringett https://cdn.slidesharecdn.com/ss_thumbnails/bomsaway-whyeveryoneneedsabom-190126195850-thumbnail.jpg?width=320&height=320&fit=bounds slideshow/boms-away-why-everyone-needs-a-bom-appsec-cali-2019/129393507 BOMs Away - Why everyo... https://cdn.slidesharecdn.com/ss_thumbnails/dependency-trackv3-181029153846-thumbnail.jpg?width=320&height=320&fit=bounds slideshow/dependency-track-v33-whats-new/121078512 Dependency track v3.3 ... https://cdn.slidesharecdn.com/ss_thumbnails/owaspsumit2017dependency-checkecosystem-170616194217-thumbnail.jpg?width=320&height=320&fit=bounds slideshow/dependencycheck-ecosystem-owasp-summit-2017/77015124 Dependency-Check Ecosy...