Key takeaways from the latest DoD Enterprise DevSecOps Fundamentals update

Key takeaways from the latest DoD Enterprise DevSecOps Fundamentals update

As the cybersecurity landscape changes and threats evolve, the Department of Defense (DoD) has updated its Enterprise DevSecOps Fundamentals to align development practices with security imperatives further. This is part of a ...
Gain visibility and traceability of your software supply chain with SBOMs with new Gartner® report

Gain visibility and traceability of your software supply chain with SBOMs with new Gartner® report

When you better understand the complexities of your software, you take a foundational step toward enhancing security and managing risks in your software supply chain ...
Securing your software supply chain with CISA's new SBOM guidance

Securing your software supply chain with CISA’s new SBOM guidance

With new and increasing cyber threats abound, navigating global software regulations and staying informed and compliant can seem like an unending task. To help mitigate risks within the software applications organizations use ...
ADDO session: The state of SBOM, what's coming in standards and regulations

ADDO session: The state of SBOM, what’s coming in standards and regulations

In 2021, the Log4j vulnerability catalyzed the industry to take action to boost the security of open source components. The development community is leading this movement, but governments are also taking notice ...
Simplifying SBOM compliance with Sonatype under India's cybersecurity framework

Simplifying SBOM compliance with Sonatype under India’s cybersecurity framework

The Indian Securities and Exchange Board (SEBI) recently took a significant step to enhance software security by incorporating software bill of materials (SBOM) mandates under its Cybersecurity and Cyber Resilience Framework (CSCRF) ...
SBOM-a-Rama Fall 2024: Sonatype's top 5 takeaways

SBOM-a-Rama Fall 2024: Sonatype’s top 5 takeaways

This month's SBOM-a-Rama Fall 2024 event, hosted by the Cybersecurity and Infrastructure Security Agency (CISA), marked a milestone in the ongoing evolution of software bill of materials (SBOM) adoption ...
A proactive defense: Utilize SBOMs and continuous monitoring

A proactive defense: Utilize SBOMs and continuous monitoring

Navigating the complexities of software supply chain security demands proactive measures to identify and manage vulnerabilities and compliance issues effectively ...
Summer compliance webinar series: Understanding DORA compliance

Summer compliance webinar series: Understanding DORA compliance

In the third part of our Summer of Software Regulations & Compliance webinar series, the Digital Operations Resilience Act (DORA) took center stage with Ilkka Turunen, Field CTO at Sonatype joining Friso ...
Preventing an SBOM F-bomb: Streamline compliance in your software supply chain

Preventing an SBOM F-bomb: Streamline compliance in your software supply chain

Amidst increasing regulations and compliance requirements, organizations now must focus more on securing their software supply chains to meet evolving cybersecurity standards ...
Navigating new regulations and the role of SBOMs in software security

Navigating new regulations and the role of SBOMs in software security

Recently in our webinar series with Amazon Web Services (AWS) and Fortify by OpenText™, our third installment, "The Power of SBOMs: Regulations Looming," brought the panel together to discuss the evolving role ...