Gå offline med appen Player FM !
Podcasts der er værd at lytte til
SPONSORERET


1 Navigating Career Pivots and Grit with Milo’s Avni Patel Thompson 26:18
Dell's Sarah Evans and Lisa Bradley and Ensuring Secure Open Source Software at the Enterprise Level
Manage episode 442917636 series 3564832
In this episode, CRob sits down with Sarah Evans, security research technologist at Dell and Lisa Bradley, senior director of product and application security at Dell. They dig into the challenges of implementing secure open software at a complex enterprise.
Sarah sits on the OpenSSF Technical Advisory Council and at Dell’s she has been instrumental in cybersecurity innovation, conducting research within the global CTO R&D organization. Her career spans pivotal roles, including being an enterprise security architect and engaging in Identity and Access Management and IT at prestigious organizations like Wells Fargo and the U.S. Air Force.
Dr. Lisa Bradley is a distinguished cybersecurity expert and visionary leader. She has earned her reputation as a trailblazer in the field of security and vulnerability management. In her current role, she oversees Dell's Product Security Incident Response Team (PSIRT), Bug Bounty Program, SBOM initiative, Dependency Management, and Security Champion and Training Programs.
- 02:38 How Dell is managing its ingestion and productization of open source software
- 04:54 The complex task of managing open source software for a company the size of Dell
- 06:34 The importance of executive support when implementing security initiatives
- 10:40 Lisa and Sarah answer CRob’s rapid-fire questions
- 12:40 Lisa and Sarah’s advice to aspiring developers and security professionals
- 14:12 Lisa and Sarah’s call to action
Episode links:
26 episoder
Dell's Sarah Evans and Lisa Bradley and Ensuring Secure Open Source Software at the Enterprise Level
Manage episode 442917636 series 3564832
In this episode, CRob sits down with Sarah Evans, security research technologist at Dell and Lisa Bradley, senior director of product and application security at Dell. They dig into the challenges of implementing secure open software at a complex enterprise.
Sarah sits on the OpenSSF Technical Advisory Council and at Dell’s she has been instrumental in cybersecurity innovation, conducting research within the global CTO R&D organization. Her career spans pivotal roles, including being an enterprise security architect and engaging in Identity and Access Management and IT at prestigious organizations like Wells Fargo and the U.S. Air Force.
Dr. Lisa Bradley is a distinguished cybersecurity expert and visionary leader. She has earned her reputation as a trailblazer in the field of security and vulnerability management. In her current role, she oversees Dell's Product Security Incident Response Team (PSIRT), Bug Bounty Program, SBOM initiative, Dependency Management, and Security Champion and Training Programs.
- 02:38 How Dell is managing its ingestion and productization of open source software
- 04:54 The complex task of managing open source software for a company the size of Dell
- 06:34 The importance of executive support when implementing security initiatives
- 10:40 Lisa and Sarah answer CRob’s rapid-fire questions
- 12:40 Lisa and Sarah’s advice to aspiring developers and security professionals
- 14:12 Lisa and Sarah’s call to action
Episode links:
26 episoder
Todos os episódios
×
1 Empowering Security: Yesenia Yser on Open Source, AI, and Personal Branding 17:18


1 Kusari’s Michael Lieberman Talks GUAC, SLSA and Securing the Open Source Supply Chain 21:06

1 Sovereign Tech Agency’s Tara Tarakiyee and Funding Important Open Source Projects 16:47

1 Alpha-Omega’s Michael Winser and Catalyzing Sustainable Improvements in Open Source Security 27:15

1 Jack Cable of CISA and Zach Steindler of GitHub Dig Into Package Repository Security 23:44

1 Red Hat's Rodrigo Freire and the Impact of High-Profile Security Incidents 16:58

1 Canonical’s Stephanie Domas and Security Insight from a Self-Described “Tinkerer” 16:58

1 Intel’s Katherine Druckman and the Impact of Developer Relations 14:23

1 Dell's Sarah Evans and Lisa Bradley and Ensuring Secure Open Source Software at the Enterprise Level 16:24


1 CoSAI, OpenSSF and the Interesting Intersection of Secure AI and Open Source 22:47

1 GitHub’s Mike Hanley and Transforming the “Dept. of No” Into the "Dept. of Yes, And…” 22:43

1 CISA's Aeva Black and the Public Sector View of Open Source Security 12:13

1 Google’s Andrew Pollock and Addressing Open Source Vulnerabilities 12:16

1 Rust Foundation’s Bec Rumbul and Succeeding as a “Non-Techie” in a Tech-Heavy Industry 18:28

1 Sonatype’s Brian Fox and the Perplexing Phenomenon of Downloading Known Vulnerabilities 22:24

1 Arun Gupta and Giving Back to Security Communities 22:02

1 Stacklok's Adolfo García Veytia Digs Into SBOMs and VEX 18:11

1 A Man Called CRob: Introducing the Newest Co-host of What’s in the SOSS? 20:03

1 OpenAI’s Matt Knight and Exploring the Intersection of AI and Open Source Security 14:58

1 Eric Brewer and the Future of Open Source Security 16:09

1 Mark Russinovich and AI’s Impact on Software Engineering and Open Source Software Security 17:29

1 Christoph Kern and the Challenge of Keeping Google Secure 20:50

1 Vincent Danen and the Art of Vulnerability Management 18:36

Velkommen til Player FM!
Player FM is scanning the web for high-quality podcasts for you to enjoy right now. It's the best podcast app and works on Android, iPhone, and the web. Signup to sync subscriptions across devices.