Software Integrity

Archive for the 'Vendor Risk Management' Category

 

Make a New Year’s Resolution to Get Serious About Software Security

Originally posted on SecurityWeek.  The beginning of any new year is a time for examination and setting new goals and objectives. Many of you understand that addressing the vulnerabilities in your software is something you can no longer ignore, and are ready to get serious about software security. Resolutions are nice, but if you are […]

Continue Reading...

Posted in Software Security Program Development, Vendor Risk Management | Comments Off on Make a New Year’s Resolution to Get Serious About Software Security

 

Getting to the Bottom of the Top 5 Vendor Risk Management Best Practices

“We cannot enter into alliances until we are acquainted with the designs of our neighbors.”  – Sun Tzu Opening this post with an Art of War quote may seem a bit cliché. At the same time, it really hits the nail on the head when discussing vendor risk management. After all, the best way to […]

Continue Reading...

Posted in Software Security Testing, Vendor Risk Management | Comments Off on Getting to the Bottom of the Top 5 Vendor Risk Management Best Practices

 

vBSIMM Leading the Way to Ensure Third-Party Software Quality

In reading publications recently released by FS-ISAC and SAFECode on vendor management and third-party risk, I am pleased that the industry is finally coming together. We seem to finally agree on the obvious need to assess the processes under which software is made and not a particular end result. If “penetrate and patch” had any […]

Continue Reading...

Posted in Maturity Model (BSIMM), Vendor Risk Management | Comments Off on vBSIMM Leading the Way to Ensure Third-Party Software Quality