White paper: Addressing the hidden cost of embedding open source software
Provided by 
Revenera2020-11-19T04:32:00
“…modern DevOps teams are now more predisposed to seek out OSS solutions to help them more rapidly deliver value to their end users,” says Jim Mercer, Research Director, DevOps and DevSecOps with IDC.*
This increase requires a more demanding need for Software Composition Analysis to detect security and license compliance issues.
*IDC Analyst Brief, Sponsored by Revenera, “Addressing the Hidden Cost of Embedding Open Source Software,” #US46977220, November 2020
Sponsored white paper
Our white papers are prepared by our sponsors and are free to view.
How to download
You need to register for this site and agree to the sponsor’s conditions to be granted access.
Related articles
-
ArticleGavin Proudley, SVP Risk & Compliance at Dow Jones, on compliance challenges from divergent rules and geopolitics
Diverging global rules, sanctions, and tariffs being “weaponized,” and more have made compliance complex even before the U.S. strikes on Iran. We asked Gavin Proudley, SVP Risk & Compliance at Dow Jones, what this means for compliance managers and how they can stay ahead of shifting geopolitics and tighter ...
-
ArticleMAS’s agentic AI playbook offers a governance lesson for every regulated industry
Singapore’s new AI risk handbook is more than a financial services toolkit. It is an early blueprint for how compliance, legal, and business leaders should govern agentic AI before the technology outruns their controls.
-
OpinionTechnoethics: The corporate responsibility gap leaders can’t ignore
As AI adoption accelerates, organizations are quietly deprioritizing the very safeguards that keep them compliant — creating governance blind spots, regulatory exposure, and stakeholder trust gaps that compound faster than most leaders realize. Compliance teams don’t have to wait for the consequences to hit: implement the following concrete steps to ...
More from Thought Leadership
-
ResourceWhite paper: How Typological Regulations are Redefining Corporate Compliance
This report quantifies, analyzes, and visualizes the impact of typological regulations on compliance so that teams can more efficiently and effectively protect against non-obvious sources of regulatory risk.
-
ResourceWhite paper: Constructing a Cohesive Cybersecurity Foundation
The individual requirements for your security and risk operations are increasingly complex—and interconnected. Yet despite this increased interconnectivity, many organizations still manage their security operations (SecOps) and integrated risk management (IRM) functions in silos.
-
ResourceWhite paper: Top 5 Mobile Compliance Best Practices
The message from the regulators is clear - having an off-channel policy for mobile communications is not good enough.