Welcome to the Elephant in AppSec, the podcast to explore, challenge, and boldly face the AppSec Elephants in the room. Today, we’re excited to have an amazing guest, Cassie Crossley, join us. Cassie is the Vice President, Supply Chain Security in the global Cybersecurity & Product Security Office at Schneider Electric. Starting from a development background, she moved through different roles like technical support, technical documentation, and software development project management. She led compliance, policy, and governance and gradually transitioned into her high-level Product security role. Cassie is also the author of the Software Supply Chain security book that has received praise from multiple industry thought leaders. You can buy it here: https://www.amazon.com/Software-Suppl... Cassie’s goal is to make a difference in the cyber community. That’s why she is also a frequent speaker on various supply chain security topics and a workshop trainer. In this episode, we asked Cassie whether it’s realistic to have a secure software supply chain, why you need to be very careful about what gets committed into code because of backdoors, how her people-person skills made her switch from development to security, and how it feels to be a celebrity! Dive right in!