In a revealing interview with Cassie Crossley, Vice President of Supply Chain Security at Schneider Electric, the podcast delves into the intricate world of software supply chain security. Crossley, a seasoned cybersecurity technology executive, shares her journey from coding to leading in the cybersecurity space and discusses her latest book, "Software Supply Chain Security: Securing the End-to-End Supply Chain for Software, Firmware, and Hardware."
Key Highlights:
Cassie Crossley's Background: With a rich history in IT, product development, and cybersecurity, Crossley brings a wealth of knowledge to Schneider Electric. Her new book aims to shed light on the complexities of software supply chain security, targeting not just cybersecurity professionals but also legal and procurement teams.
The Essence of Software Supply Chain Security: Crossley highlights the evolving landscape of software supply chain security, stressing its hybrid nature that encompasses traditional supply chain security and secure development practices.
The Writing Journey: Writing the book was a profound journey for Crossley, involving extensive research and personal time investment. She emphasizes the book's comprehensive approach, with over 200 footnotes guiding readers to further information.
Supply Chain Security Challenges: The podcast discusses the challenges and responsibilities associated with supply chain security, including the need for thorough due diligence and the complexities of managing a vast network of global suppliers.
The Role of Open Source: Crossley addresses the double-edged sword of open source software, advocating for a balanced approach to leveraging its benefits while mitigating risks.
The Importance of SBOMs: Software Bill of Materials (SBOMs) are highlighted as a critical tool for transparency, allowing organizations to better understand and manage risks associated with software components.
The Future of SBOM Standards: The discussion touches on the debate surrounding SBOM standards, with Crossley suggesting that the industry may never fully converge on a single standard due to the dynamic nature of technology and the diverse needs of organizations.
The podcast concludes with insights into the ongoing challenges of monitoring and updating SBOMs, emphasizing the importance of continuous vigilance and the difficulty of keeping pace with the ever-changing software landscape.
This interview provides a comprehensive overview of the critical role of software supply chain security in today's digital world, offering valuable insights for professionals across the cybersecurity spectrum.
Connect with Cassie: https://www.linkedin.com/in/cassiecrossley/
Apply now to be a featured partner on the show: https://www.cyberhubpodcast.com/contact
******
Listen here: https://linktr.ee/cyberhubpodcast
******
Website: https://www.cyberhubpodcast.com
Youtube: https://www.youtube.com/c/TheCyberHubPodcast
Rumble: https://rumble.com/c/c-1353861
Facebook: https://www.facebook.com/CyberHubpodcast/
Linkedin: https://www.linkedin.com/company/cyberhubpodcast/
Twitter: https://twitter.com/cyberhubpodcast
Instagram: https://www.instagram.com/cyberhubpodcast
Thank you for watching and Please Don't forget to Like this video and Subscribe to my Channel!
The Hub of the Infosec Community.
Our mission is to provide substantive and quality content that’s more than headlines or sales pitches. We want to be a valuable source to assist those cybersecurity practitioners in their mission to keep their organizations secure.
Share this post