Reflecting on AI and a Special Announcement
Feb 14, 2024 - 00:09:11
Radio and PodcastLive Radio & PodcastsTechnology
Securing the Software Supply Chain with Chip Childers, VP Security at VMware and Jim Mercer, VP DevSecOps at IDC
Incidents like the Log4j incident and new governmental regulations have forced tech leaders to examine the security of their software supply chain. Understanding the complexities of this is challenging; how can CIOs dete...
About This Episode
Securing the Software Supply Chain with Chip Childers, VP Security at VMware and Jim Mercer, VP DevSecOps at IDC is an episode from CIO Exchange Podcast by VMware. Incidents like the Log4j incident and new governmental regulations have forc...
Podcast
This episode belongs to CIO Exchange Podcast.
Listen Online
Use the player on this page to stream the episode online.
Episode Details
Published Oct 25, 2023, 00:44:57 long, audio available.
Related Episodes
Continue listening to more episodes from CIO Exchange Podcast.
Moving Fast, Securely with Laura Bell Main, CEO of SafeStack
Jan 17, 2024 - 00:35:28
Advice to CIOs from a VC Investor with Yon Hardisty, Founder of HealthTek Incorporated
Jan 3, 2024 - 00:33:13
The Sustainable Data Center and the “AI Gold Rush” with Missy Young, CIO of Switch
Nov 29, 2023 - 00:28:54
Speaking with AI: A Real-Time Conversation with Pi, a Personal AI Assistant
Oct 4, 2023 - 00:17:54
Questions About This Episode
What is Securing the Software Supply Chain with Chip Childers, VP Security at VMware and Jim Mercer, VP DevSecOps at IDC about?
Incidents like the Log4j incident and new governmental regulations have forced tech leaders to examine the security of their software supply chain. Understanding the complexities of this is challenging; how can CIOs determine their exposure and prioritize their vulnerabilities? In this conversation, Yadin sits down with Chip Childers, VP Security, Compliance, Open-Source & Privacy Engineering & Chief Open Source Officer at VMware and Jim Mercer, Research Vice President - DevOps & DevSecOps at IDC, to discuss the software supply chain and how CIOs should think about it, in depth. They look at how we became so reliant on the open-source community and the impact of generative AI. Key Quotes: “When you talk about the idea of having to have development resources to do patching, it's those transitive dependencies, honestly, that you may not be able to patch because you're relying on other people's work. That's why understanding this complexity really matters.” - Chip “I don't think a lot of organizations realize how dependent they are on this open source community as we've started to kind of grow out, develop applications and rely so heavily on open source.”- Jim --------- Timestamps: (01:15) Why are we concerned about the software supply chain? (05:25) Building complex systems on top of other complex systems (08:15) Realizations from the Log4j incident (11:22) Resulting shifts from new compliance and regulations (16:21) Creative chaos in the software industry (18:48) Reliance on the open-source community (19:23) How can you identify where code is coming from? (20:17) Prioritizing vulnerabilities (23:08) The snowball effect in the supply chain (25:00) How do you understand your exposure? (33:15) The impact of generative AI (37:27) Where should CIOs start heading into board level conversations? -------- Links: Chip Childers on LinkedIn Jim Mercer on LinkedIn CIO Exchange on Twitter Yadin Porter de León on Twitter [
Where can I listen to Securing the Software Supply Chain with Chip Childers, VP Security at VMware and Jim Mercer, VP DevSecOps at IDC?
You can listen to Securing the Software Supply Chain with Chip Childers, VP Security at VMware and Jim Mercer, VP DevSecOps at IDC online on Radio and Podcast. Open the player on this page to stream the available audio.
Which podcast is Securing the Software Supply Chain with Chip Childers, VP Security at VMware and Jim Mercer, VP DevSecOps at IDC from?
Securing the Software Supply Chain with Chip Childers, VP Security at VMware and Jim Mercer, VP DevSecOps at IDC is an episode from CIO Exchange Podcast by VMware.
How long is this episode?
This episode is 00:44:57 long.
When was this episode published?
This episode was published on Oct 25, 2023.
Can I save Securing the Software Supply Chain with Chip Childers, VP Security at VMware and Jim Mercer, VP DevSecOps at IDC for later?
Yes. Use the heart button on the episode page to add it to your favorite episodes list.
Are there related episodes from CIO Exchange Podcast?
Yes. This page shows related episodes from CIO Exchange Podcast when more episodes are available from the podcast feed.
Quick Answers About This Episode
Where can I listen to Securing the Software Supply Chain with Chip Childers, VP Security at VMware and Jim Mercer, VP DevSecOps at IDC?
You can listen to Securing the Software Supply Chain with Chip Childers, VP Security at VMware and Jim Mercer, VP DevSecOps at IDC on this page when the episode audio is available from the podcast feed.
Which podcast is this episode from?
Securing the Software Supply Chain with Chip Childers, VP Security at VMware and Jim Mercer, VP DevSecOps at IDC is from CIO Exchange Podcast by VMware.
What are the episode details?
Published Oct 25, 2023 and 00:44:57 long