Securing the Supply Chain… for Software With Brian Fox, Co-Founder, SVP and CTO

If companies don't truly know the elements in their products, then they are set up for trouble. According to Brian Fox, Co-Founder, SVP and CTO of Sonatype, without this knowledge they won’t know how to address issues or if bad actors have infiltrated their products with disruptive parts. Brian advises that all aspects in the supply chain for software must be identified and secured just like any physical product. 

Tune in to learn:

• How does Sonatype help companies make better supply chain decisions for their software? (01:56)
• How did Sonatype evolve to focus on supply chain security for software? (05:57)
• How did Sonatype help address the Log4j vulnerability?? (15:32)
• How does Fox describe bad actors using what he calls “malicious components”? (23:25)
• Can automation inadvertently amplify attacks? (29:05)
• How to move fast yet deal with bad actors? (33:38)

IT Visionaries is brought to you by The Salesforce Platform. If you love the thought leadership on this podcast, Salesforce has even more meaty IT thoughts to chew on. Take your company to the next level with in-depth research and trends right in your inbox. Subscribe to a newsletter tailored to your role at Salesforce.com/newsletter.

Mission.org is a media studio producing content for world-class clients. Learn more at mission.org.