For developer and AppSec teams alike, securing critical components of the software supply chain, including open source libraries, container images, cloud infrastructure, and developer tools, is increasingly essential. But more often, tracking dependencies to fixing vulnerabilities can still be siloed because common tools and processes to create unified alignment have not been established.
To effectively manage and mitigate supply chain risk a more complete, holistic approach is needed. Join technical experts from Snyk and ServiceNow for a webinar where they will discuss:
- Why it’s critical to establish a workflow bridging developer and AppSec teams,
- How to prioritize and action vulnerabilities quickly,
- And create automated workflows to ensure timely remediation.
Event Speakers
Steve educates teams on the strategy and specifics of developing secure software. He practices security at every stage of the development lifecycle by leading sessions on threat modeling, secure architecture and design, static/dynamic/component analysis, offensive research, and defensive programming techniques.
Jeremy Long is an accomplished security professional, serving as a Principal Security Engineer at ServiceNow. With a passion for security automation, he empowers developers by streamlining the secure development process and reducing the time it takes to identify and remediate potential threats. Jeremy’s deep understanding of static analysis, combined with his expertise in creating and customizing security tools, has enabled him to successfully integrate security into the software development life cycle (SDLC) and build pipelines. As the founder and project lead of the OWASP dependency-check project, Jeremy continues to demonstrate his commitment to advancing the field of security.
InfoSec content strategist, researcher, director, tech writer, blogger and community builder. Senior Vice President of Audience Content Strategy at CyberRisk Alliance.