Sonatype Unveils Full-Spectrum Software Supply Chain Management | Press Release

Read the Report

Test your software supply chain knowledge...

SSC_Question_1@3x
SSC_Answer_1@3x
SSC_Question_2@3x
SSC_Answer_2@3x
SSC_Question_3@3x
SSC_Answer_3@3x

For the second year in a row, Sonatype’s open source and security research team collaborated with Gene Kim and Dr. Stephen Magill to examine how high performance DevSecOps teams prioritize productivity and security practices to achieve better business outcomes.

The findings are clear: accelerating development improves security outcomes, high performers have happier developers, and next-generation adversary threats are shifting cybersecurity investments earlier in the SDLC.

The SolarWinds software supply chain attack makes these findings especially pertinent to understanding how to mitigate risk while still developing great software. Learn how empowering development teams with the right tools can break down silos and benefit development, security, and operations teams.

Headshot_Hexagon_GeneKim@2x

Gene Kim,
IT Revolution

Headshot_Hexagon_StephenMagill@2x

Stephen Magill,
MuseDev

Derek-Weeks-Son@2x

Derek Weeks,
Sonatype

How do high performers reduce software supply chain risk, increase productivity, and elevate employee satisfaction?
Read more in Chapter 4 of this year's report.

FIGURE 4D Comparing Cluster Centroids@2x

 

Sonatype Envelope

Ready to Try Nexus Products?

Sonatype, A Better Way to Build

Get Nexus
Twitter LinkedIn Facebook YouTube GitHub
Products
Free Tools
Solutions
Resources
Company
SON_logo_white@2x copy trimmed

Sonatype Headquarters - 8161 Maple Lawn Blvd #250, Fulton, MD 20759

Tysons Office - 8281 Greensboro Drive – Suite 630, McLean, VA 22102

Australia Office - 60 Martin Place Level 1, Sydney, NSW 2000, Australia

London Office -168 Shoreditch High Street, E1 6HU London

Copyright © 2008-present, Sonatype Inc. All rights reserved. Includes the third-party code listed here. Sonatype and Sonatype Nexus are trademarks of Sonatype, Inc. Apache Maven and Maven are trademarks of the Apache Software Foundation. M2Eclipse is a trademark of the Eclipse Foundation. All other trademarks are the property of their respective owners.

Terms of Service    Privacy Policy    Event Terms and Conditions