Training

3rd Party Risk Management , Governance & Risk Management , Zero Trust

OnDemand | Third Party Risk: Lessons on Log4j

Presented by Sonatype     60 minutes    
OnDemand | Third Party Risk: Lessons on Log4j

Studying software engineering practices from 100,000 production applications and 4,000,000 open source component migrations, Sonatype uncovered eye-opening behaviors in modern software development, including a surprising trend that nearly 70% of dependency management decisions are suboptimal.

Understanding these migration paths, helps make sense of part of the panic that ensued when a zero-day vulnerability was disclosed in the world’s most widely adopted logging framework, Log4j. If you weren't automating software supply management and weren't paying attention to your dependencies, you were left incredibly vulnerable.

Along with studying production applications, as the stewards of Maven Central, Sonatype teams have monitored download data, ensuring the world has reliable information on the latest Log4shell trends.

In this talk, we will share insights from 2021 software supply chain research along with lessons learned from Log4j to break down how to change your software supply management practices for a more secure SDLC.

Webinar Registration

This webinar is available OnDemand.

View Now


Around the Network

Safeguarding Critical OT and IoT Gear Used in Healthcare
Safeguarding Critical OT and IoT Gear Used in Healthcare
Properly Vetting AI Before It's Deployed in Healthcare
Properly Vetting AI Before It's Deployed in Healthcare
Medical Device Cyberthreat Modeling: Top Considerations
Medical Device Cyberthreat Modeling: Top Considerations
Evolving Threats Facing Robotic and Other Medical Gear
Evolving Threats Facing Robotic and Other Medical Gear
Identity Security and How to Reduce Risk During M&A
Identity Security and How to Reduce Risk During M&A
Protecting Medical Devices Against Future Cyberthreats
Protecting Medical Devices Against Future Cyberthreats
How the NIST CSF 2.0 Can Help Healthcare Sector Firms
How the NIST CSF 2.0 Can Help Healthcare Sector Firms
Transforming a Cyber Program in the Aftermath of an Attack
Transforming a Cyber Program in the Aftermath of an Attack
How 'Security by Default' Boosts Health Sector Cybersecurity
How 'Security by Default' Boosts Health Sector Cybersecurity
Is It Generative AI's Fault, or Do We Blame Human Beings?
Is It Generative AI's Fault, or Do We Blame Human Beings?

Our website uses cookies. Cookies enable us to provide the best experience possible and help us understand how visitors use our website. By browsing careersinfosecurity.asia, you agree to our use of cookies.