Brian Fox, SVP & CTO, Sonatype
If you’re application development team is using open source software components, as most all teams do today, then you need to be keeping an eye on the risks posed by adversaries inserting malicious code into shared development resources. Like flaws hidden in a subcomponent of a huge piece of machinery, they present risks that can have a profound impact to the security of your enterprise. Brian Fox, SVP & CTO of Sonatype and CSO’s Bob Bragdon discuss these risks and how application development and security teams can work together to mitigate them.