In the News
Incentives for Improving Software Security: Product Liability and Alternatives
Lawfare
How ISACs might factor into software assurance
APNIC
Software liability is still vexing some stakeholders as NTIA transparency effort advances
Inside Cybersecurity
Meet Steve Lipner: New ISPAB chairman points to British IoT baselines as a good example
Inside Cybersecurity
Securing Software in the Digital Age: BSA Software Security Framework
Adobe Blog
Staffing the Software Security Team: Who You Gonna Call?
DARKReading
SD Times news digest: Revamped Codefresh adds streamline tool, SAFECode gets several new members, CloudBees joins Automotive Grade Linux, Talend announces advancements to Data Fabric
SD Times
BSA releases framework for secure software
ComputerWeekly
Accenture, Splunk and UTC join SAFECode, Veracode rejoins the organization
HELPNETSECURITY
Cloud Security Alliance Publishes New Paper, The Six Pillars of DevSecOps: Automation
Cloud Security Alliance
ZoomInfo Renews TRUSTe Enterprise Privacy Certification and Joins Security Sharing Nonprofit SAFECode
Business Wire
Agencies Shouldn’t ‘Just Trust’ Software Vendors’ Security Assurances, IG Warns
Nextgov
A blueprint for cyber supply chain risk management
Security
The importance of a policy-driven threat modeling approach
TechTarget
Can Regulatory Mandates Secure Software Development?
DevOps.com
Nonprofits Form Cyber Coalition
Info Security
New ‘Nonprofit Cyber’ Coalition Aims to Amplify Good Cybersecurity Advice
American Security Today
The 6 Pillars of DevSecOps: Pillar One-Collective Responsibility
DevOps.com
Continued investments in supply chain security in support of the cybersecurity Executive Order
Microsoft
What’s hot at #RSAC? Here’s our picks for the big show
Security Boulevard
Software supply chain security fixes gain prominence at RSA
CSO
Software supply chain security fixes gain prominence at RSA 2022
Reseller News
How to grow a secure software culture from the inside out
Dell Technologies
How DevSecOps Empowers Citizen Developers
Dark Reading
White House Calls for ‘Attestations’ of Secure Practices from Third-Party Software Providers
ATDMAG
Agencies Shouldn’t ‘Just Trust’ Software Vendors’ Security Assurances, IG Warns
FocusTechnica
Registration is required
Secure Software Development in an Agile Environment
By Gurock
Quick Hits
By Federal Computer Week
Steve Lipner Appointed Chair of NIST Information Security and Privacy Advisory Board
By Dark Reading
Software products aren’t cookies
By Steve Lipner, Contributor, CSO
Press Releases
SAFECode Expands Membership Structure
Associate Membership in SAFECode Now Open to Organizations with a Commitment to Software Assurance
SAFECode Launches Software Security Training Program
FOR IMMEDIATE RELEASE SAFECode Launches Software Security Training Program New Program Provides Free Online Security Engineering Courses Based on Internal Training Materials Used by SAFECode Members Program will Help Address [...]
CA Technologies Joins SAFECode
FOR IMMEDIATE RELEASE CA Technologies Joins SAFECode Global Provider of Information Technology Management Solutions Becomes Newest Member of Industry-led Software Security Effort Wakefield, Mass. – May 1, 2013 – [...]
SAFECode Names Howard Schmidt Executive Director
FOR IMMEDIATE RELEASE SAFECode Names Howard Schmidt Executive Director Former White House Cybersecurity Advisor Brings More than 40 Years of International Security Expertise to Leadership of Software Security Industry Group [...]
Intel® Joins SAFECode
FOR IMMEDIATE RELEASE Intel® Joins SAFECode World Leader in Computing Innovation Latest Member to Commit to Industry-led Software Security Effort Wakefield, Mass. – October 29, 2012 – The Software Assurance [...]
SAFECode Releases Software Security Guidance for Agile Practitioners
FOR IMMEDIATE RELEASE SAFECode Releases Software Security Guidance for Agile Practitioners New Paper Presents Security Flaws and Secure Development Practices in an Actionable Format for Agile Software Development Wakefield, [...]
Media Contact
Carol Fusaro
Virtual Inc.
[email protected]