12:30 PM - 1:00 PM (PST)
Securing Software with a Zero Trust Mindset
The concept of Zero Trust has been broadly covered when it comes to user identities, devices, and network security, but is there a role that secure software practices should be playing as part of the Zero Trust story? With the extensiveness of digital identities, interconnectedness of critical systems, and the increased pervasiveness of malware, ransomware, and supply chain attacks, building software with an “always verify” mindset should be a priority. This talk will cover software supply chain attacks and the integration of framework concepts to embed “zero trust” into software and software engineering processes.