Over 96% of systems have at least one Open Source Software (OSS) component. Most organizations don’t even understand where they are using OSS, as software packages can be nested +10 layers deep. Despite the massive influence of OSS, many Cybersecurity professionals lack a solid understanding of what OSS is, how to determine where their organization is using OSS, and most importantly, whether their OSS is secure. And with OSS sometimes changing hourly, solution vulnerabilities can rapidly change. Cybersecurity professionals need to separate the facts from fears and have a comprehensive understanding of the strengths and weaknesses of using OSS.

Learning Objectives:

• Understand how the history of Open Source Software (OSS), who REALLY contributes, and where the code is today
• Gain the knowledge and best practices necessary to understand how to discover and control the use of Open Source Software (OSS) within your enterprise
• Appreciate the real-world complexities regarding identifying and tracking the pedigree and associated risk of Open Source Software (OSS), and some of the emerging tools that support understanding the related cybersecurity risks