Hear Alex Barbato and John Kjell of the VMware Tanzu team discuss why it's important, but still challenging, to secure your software supply chain. Importantly, they focus on the process of building secure software rather than buying it, and explain how new offerings such as Tanzu Application Platform can help automate some of the tedium for developers, operators, and security teams. Learn more: VMware Tanzu (https://tanzu.vmware.com/) VMware Tanzu Labs (https://tanzu.vmware.com/labs) Tanzu Application Platform (https://tanzu.vmware.com/application-platform) Improve Your Cybersecurity with a Secure Software Development Supply Chain (https://tanzu.vmware.com/content/blog/improve-your-cybersecurity-secure-software-development-supply-chain) Implementing DevSecOps in a Federal Agency with VMware Tanzu (https://tanzu.vmware.com/content/blog/implementing-devsecops-federal-agency-vmware-tanzu) Modern Least Privilege and DevSecOps (https://octo.vmware.com/modern-least-privilege-and-devsecops/) What Is DevSecOps? (https://tanzu.vmware.com/devsecops) Secure Supply Chain, with Henri van den Bulk (https://www.tanzutalk.com/222) Follow everyone: VMware Tanzu (https://twitter.com/VMwareTanzu) VMware Tanzu Labs (https://twitter.com/VMwareTanzuLabs) Alex Barbato (https://twitter.com/alexbarbato) John Kjell (https://twitter.com/J0hnKjell) Danielle Burrow (https://twitter.com/dburrow11) Derrick Harris (https://twitter.com/derrickharris)
Related content in this Stream
To maintain robust security without compromising development velocity, we need to encourage better collaboration between security specialists and delivery teams.
Tanzu Labs partnered with a major branch of the Department of Defense to build an automated DevSecOps process using VMware Tanzu and several open source tools.
Vulnerability scanning, software bill of materials, image signing, and more embedded features make it even easier to secure software developers’ path to production.
How the U.S. Army improved its cybersecurity posture by integrating controllable input metrics, product management, and balanced teams into its software development organization.
Path-to-production analysis enables you to identify all the steps in the process, including the wait time and duration (cycle time) of each of them.
VMware Tanzu can help make your organization more secure today and prepare it for the anticipated National Institute of Standards and Technology (NIST) guidelines tomorrow.
For teams struggling to achieve true DevSecOps, VMware Tanzu Advanced enables leaps in capability by delivering container compliance and transparency on day one.
Security as Code (SaC) is the methodology of codifying security tests, scans, and policies. Security is implemented directly into the CI/CD pipeline to automatically and continuously detect security v
DevSecOps alert! Container security alert! Coté talks with Henri van den Bulk about the ideas of a “secure software supply chain.” When you’re building, running, and managing your own software, how