Software Integrity Blog
[Webinars] Open source in M&A due diligence, cloud application security
Learn why an open source security review is key in M&A due diligence, and about the impact of cloud environments on application security considerations.
Why Lawyers Should Care About Open Source Security in M&A Due Diligence
As part of the M&A due diligence process, lawyers seek to understand the license compliance risks that come with the use of open source. But what about open source security vulnerabilities that could be lurking in the code being acquired? Minimizing risk and exposure is the name of the game.
Join this live webinar to learn why an open source security review should be part of every due diligence transaction. We’ll cover:
- How the audit landscape has shifted to include security
- The types of security vulnerabilities that can keep you up at night
- How a security audit can minimize risk
Don’t miss this informative webinar. Register today.
What: Why Lawyers Should Care About Open Source Security in M&A Due Diligence
When: Available on demand
Who: Matt Jacobs, Synopsys; Jacob Ewers, Synopsys
Landscape of Application Security for Cloud-Based Apps
Large enterprises moving to the cloud do so in a phased manner. Consequently, at least for a while, they have a mix of on-premises and cloud environments (and very often, multiple cloud environments). These environments, combined with the many ways you can move an application to the cloud, create new considerations for application security:
- Rehost (lift and shift): threat landscape increased because of network exposure
- Replatform (lift and reshape): new attack vectors via buckets, databases, message queues
- Repurchase (drop and shop): third-party data exposure, noisy neighbor attacks, data retention
- Rearchitect (rewriting and decoupling apps): serverless, container based, container orchestration
What: Landscape of Application Security for Cloud-Based Apps
When: Available on demand
Who: Ashwath Krishna Reddy, Managing Consultant & Sandesh Mysore Anand, Managing Consultant at Synopsys
More by this author
- Agile, CI/CD & DevOps
- Application Security
- Automotive Cyber Security
- Cloud Security
- Container Security
- Data Breach Security
- Developer Enablement
- Featured
- Financial Cyber Security
- Fuzz Testing
- Healthcare Security & Privacy
- Interactive Application Security Testing (IAST)
- IoT Security
- Medical Device Security
- Mergers & Acquisitions
- Mobile App Security
- News & Announcements
- Open Source Security
- Security Standards and Compliance
- Security Training & Awareness
- Software Architecture & Design
- Software Compliance, Quality & Standards
- Software Composition Analysis (SCA)
- Software Security Program
- Software Security Research
- Static Analysis (SAST)
- Web Application Security
- Webinars