The World’s First Software Supply Chain Management Platform makes it easy for Security.
The importance of understanding GDPR compliance in GDPR cyber security cannot be overstated. With the increasing prevalence and sophistication of digital threats, it is essential that organizations...
As businesses increasingly rely on third-party vendors to complete their operations, they must remain vigilant in understanding the potential risks associated with those partnerships. Third party...
The Security Supply Chain is playing a crucial role in digital security compliance. This article will explore how the supply chain helps with CFR Part 11 which was created to help companies protect...
The HIPAA Privacy Rule is a federal law that protects the privacy of health information and establishes standards for business practices. Signed in 2001, it covers all forms of protected health data...
Can you imagine a world without software? No, neither can I. The same goes for many other technology-based products, such as cell phones. Software is everywhere and it’s critical to businesses of...
What is vendor risk management? Vendor risk management is a process that helps businesses manage the risks associated with their vendors. Vendor risk management involves understanding and managing...
What is open source security? Open source security is a term used to describe the process of protecting your organization's data and network from attack by using open-source software. Open source...
Why do organizations need a software Bill of Materials? A Software Bill of Materials (SBoM) is a document that lists all of the software components and their versions that are used in the...
What is application risk assessment? Application risk assessment is the process of evaluating and understanding the security risks associated with an application. This metric is used to help...
Understanding Risk is a complicated subject. In the world of Information Technology, the FAIR framework is well accepted. However there are some areas of operational risk that are simple to...
There we go - Anirban is at it again! What now? Saturday Night Live (SNL) has a great skit based on a character played by veteran artist- Tom Hanks. I call this the "David S Pumpkins" (DSP) series....
In this article, we will provide a breakdown of the NIST guidance for defending against software supply chain attacks. A software supply chain attack occurs when a cyber threat actor infiltrates a...
Ever since the coronavirus pandemic began, people have been talking about how businesses have been moving online more and more. However, this development only accelerated and brought attention to a...
The ENISA report aims at mapping and studying the supply chain attacks that were discovered from January 2020 to early July 2021. Based on the trends and patterns observed, software supply chain...
The NIST 800-128 SSDF documentation describes a set of fundamental, sound practices for secure software development called the Secure Software Development Framework (SSDF). Organizations should...
Software development is akin to building a beautiful work of art. It requires focus, expertise, and talent. The software development process needs to be nurtured with the right support, but is it?...
In this session for Securing the Digital Supply Chain, we talk to two very well-known investors from Silicon Valley - Mahendra Ramsinghani (Secure Octane) and Cherian Mathew (Firebolt VC). We learn...
Enabling Sales Teams To Close Deals Faster by Demonstrating Attestation for Secure Data Tracking, Security and Management With 3rd Parties The team at Riscosity has been helping enterprises,...
If there is a seismic shift happening at a breakneck pace, the financial industry is feeling it. Oh yes, new banking products, new ways to use blockchain, ledgers, crypto banking - the number of new...
In this episode of Securing the Digital Supply Chain Anirban Banerjee , CEO, and co-founder of Riscosity talks to Atif Yusuf and Ravi Gunturi, two well-known security leaders in the San Francisco...
Riscosity, a software security startup, setting up its base in the San Francisco Bay Area announced today that it was launching publicly available services for enterprise and small to medium...
It's been over 20 years now since we as security professionals have been including SDKs in the software code that our development teams have been writing. In fact, looking at the ACM paper from the...
Software development is not slowing down and neither are the demands for new features. In order to keep up with the needs of the market and competitive pressure, Software Engineers have become adept...
Subscribe to our newsletter to learn more about design, our blog and other things we like to share.