<img height="1" width="1" style="display:none" src="https://www.facebook.com/tr?id=1919858758278392&amp;ev=PageView&amp;noscript=1">

Patrick Dwyer

Patrick Dwyer

OWASP

Session Name: WTF is in your software?

As we increase our usage of 3rd party components, managing software supply chain risks is increasingly important. But how do you realistically achieve this at the speed of DevOps? This session will cover: (1) standard practices for managing risk from 3rd party components, (2) open source build tools to catalogue your 3rd party components, (3) open source tooling available to manage your software component inventory, and (4) automated approaches for identifying, responding too, and managing risks from 3rd party components at scale. 

 

 

Speaker Bio: 

Patrick is the Dev Lead for a Government Organization and a member of the CycloneDX SBOM Specification Core Working Group.