Please join ISSA-KC Chapter members and other security professionals at Lidia's Restaurant, Kansas City.
Managing OSS Security Blind Spots - A collaborative approach
Summary:
Open-Source Software is no longer a term which needs
explanation. It is ubiquitous in most of the code bases and rightfully
so with its low cost, free to use, modify and distribution features.
With these features also comes inherent Security, Operational and
License risks. One of the biggest security blind spots in OSS is the
lack of centralized control over the development and distribution of
code. Recent attacks on popular OSS libraries such as Apache Struts,
Open SSL, log4j have highlighted the need for increased security
measures in OSS. To address these security concerns, organizations need
to take a proactive approach to OSS security. This involves establishing
security policies and procedures for selecting, evaluating, and
integrating OSS into their systems. It is equally important to monitor
and track OSS usage to ensure that any vulnerabilities are quickly
identified and addressed. The talk will take us through a real-world
example of an organization's OSS transformation journey, the real-world
challenges, and the path to success.
Speaker Bio:
Aditi Gupta is an exceptional leader in the field of
application security with over 12 years of experience in the technology
space. Her journey began as a software developer working on Mainframes,
she later pursued an MBA which led her to undertake consulting work,
traveling extensively through Asia and the Americas.
Over the last 6 years, Aditi has made significant strides in
her career. She has successfully built and managed Governance, Risk and
Compliance (GRC) programs, implemented the NIST Cybersecurity Framework
(CSF) for a financial services org, and leveraged DevSecOps principals
to build an application security program from scratch.
Currently, Aditi is serving as a leader in the consulting
org, where she is making a significant impact by assisting clients with
their various application security programs related to open-source
software (OSS) transformation, Cloud security, and scalable application
security review and testing solutions.
Aditi is also a passionate food and travel enthusiast, always
on the lookout for new adventures such as enjoying Jazz speakeasies
with her toddler.
Date:
Thursday, May 25th, 2023, from 11:30 PM to 1:30 PM
Agenda:
11:30 AM - 12:00 PM - Check-ins
12:00 PM - 1:00 PM - Meeting & Presentation
1:00 PM - 1:30 PM - Questions, Answers & Networking
Price:
$20.00 for ISSA Members.
$30.00 for Guests/Non-Members.
Sponsor