Tag: Regulation

Building and Applying A New Medical Device Framework With Phil Englert

Phil Englert was ahead of the curve in introducing cybersecurity into the medical device industry, building medical device cybersecurity programs from scratch several times during his career.  Today he is the Director of Medical Device Security at the Health Information Sharing and Analysis Center H-ISAC, helping establish connections within the medical device community, and well-versed […]

Flex the VEX Emoji

Flex the VEX: A Better Way to Secure Products

VEX reports have finally hit the mainstream and the excitement surrounding them has as much to do with automation as it does with vulnerability management.  To appreciate the full practicality of Vulnerability and Exploitability Exchange (VEX) reports, we need to go back to our old friend, the Software Bill of Material, endearingly known as ‘SBOM’. […]

Ronen Talks Strategy- SBOM 1

Making the most of SBOMs: A product security perspective

Part 1: Using SBOMs for enhanced visibility and control  The dynamic nature of software development exposes the software supply chain to countless sources of both known and unknown vulnerabilities. These can take multiple forms, from insecure open-source software to zero-day exploits.  The connected product software revolution’s growing reliance on open-source software increases the risk and […]

LTOOD: Thomas LaRock

Insights From a Nation State Software Supply Chain Attack With Thomas LaRock

Two years following one of the worst cyber-espionage attacks on the USA, we sat down with Thomas LaRock from SolarWinds to learn about how they managed the SUNBURST crisis and came away stronger Thomas LaRock is the Senior Technical Product Marketing Manager–or as they like to put it ‘Head Geek’–at SolarWinds. After many years as […]

PR- Version 2.22

Cybellum Transforms SBOM Management and Compliance Oversight

Advanced workflow, approval process and management dashboard enhance control, distribution and supervision, while reducing errors and streamlining the entire SBOM management process   Israel, Tel Aviv, January 26, 2023 – Cybellum, provider of the award-winning Product Security Platform for connected product and device manufacturers, announced today the release of version 2.22, providing enhanced SBOM management […]

LTOOD Joe Weiss

The Importance of Including Engineers in Industrial Product Security With Joe Weiss

From a nuclear meltdown to Y2K and 9/11, Joe Weiss paints a frightening picture of cyber vulnerabilities in things that can go BOOM in the night.  Joe Weiss is what you would call a trailblazer in the realm of critical infrastructure cybersecurity. During his 40+ years in industrial instrumentation controls and cybersecurity, he has set […]

Securing Custom OSS blog

Who’s Responsible for Securing Custom Open Source Software?

Is open source software, one of the great wonders of our time, setting us up for one of the great cybersecurity blunders of our time?  In an ongoing effort to develop more innovative technologies, companies are turning to open source libraries for inspiration to reliably bolstering capabilities using fewer resources. By taking only part of […]

LTOOD: Ronen Lago

How Ronen Lago Wins the Market with a Security-First Executive Approach

This blog is based on Ronen Lago’s interview on the Left to Our Own Devices Podcast. ————— Ronen Lago, former executive at Daimler, Lockheed Martin, Motorola, and others, relies on a top-down cybersecurity approach to boost quality and turn cybersecurity capabilities into revenue opportunities. Market analysis is at the core of how Ronen modernizes the […]

Management Dashboard Featured image

A New Management Center is Changing the Way Managers Strengthen Product Security

Manufacturing companies are huge enterprises with multiple business units and vast product lines. This means managing product cybersecurity and ensuring cyber compliance is nearly impossible. With such a big organization, how can managers quickly pinpoint the risks that will have the greatest impact? How can you know which team needs your immediate attention or which […]

Subscribe to our blog to stay updated