Webinar On-Demand | Video

The Good and Bad of NIST's Secure Software Development Framework

Join Matt Howard, EVP at Sonatype, and industry experts Steve Springett, Chair, Cyclone DX, and Mike Wilkes, CISO, SecurityScorecard as they discuss the recently released NIST Secure Software Development Framework (SSDF).

The Good and Bad of NIST's Secure Software Development Framework

Listen to Matt Howard, EVP at Sonatype, and industry experts Steve Springett, Chair, Cyclone DX, and Mike Wilkes, CISO, SecurityScorecard as they discuss:

The new framework
Why a holistic approach to SSDF needs to be taken
Why a reductionist approach to focusing just on software developers is not going to be as strong as recognizing the context for how those vulnerabilities in software occur

Matt Howard

EVP | Sonatype

Steve Springett

Chair | Cyclone DX

Mike Wilkes

CISO | SecurityScorecard

The Good and Bad of NIST's Secure Software Development Framework

The Good and Bad of NIST's Secure Software Development Framework

Related Resources

Rust in the Enterprise: Best Practices and Security Considerations

Building a security-minded development team: DevSecOps tools and SDLC best practices

Rust Rising: The Journey and Current Landscape

Subscribe for all the latest software security news and events