QUEST 2017 Conference Webinar – Cybersecurity Technical Risk Indicators: A Measure of Technical Debt with Joe Jarzombek
https://www.ispeech.org/text.to.speech
As cyber threats evolve and as software dependencies grow more complex, understanding and managing software throughout the lifecycle is more critical than ever. The Internet of Things (IoT) is contributing to a massive proliferation of a variety of types of software-reliant, connected devices throughout critical infrastructure sectors. With IoT increasingly dependent upon third-party software, software composition analysis and other forms of testing are needed to determine 'fitness for use' and trustworthiness in terms of quality, security, safety, and licensing. Application weakness and vulnerability management should leverage automated means for detecting threat indicators, weaknesses, vulnerabilities, and exploits. Using standards-based automation enables the exchange of information. Leveraging cybersecurity Technical Risk Indicators as a measure of technical debt can assist in software supply chain risk management efforts by providing a means to understand risk exposures attributable to exploitable software.
source
Gloss