White paper: Addressing the hidden cost of embedding open source software
Provided by 
Revenera2020-11-19T04:32:00
“…modern DevOps teams are now more predisposed to seek out OSS solutions to help them more rapidly deliver value to their end users,” says Jim Mercer, Research Director, DevOps and DevSecOps with IDC.*
This increase requires a more demanding need for Software Composition Analysis to detect security and license compliance issues.
*IDC Analyst Brief, Sponsored by Revenera, “Addressing the Hidden Cost of Embedding Open Source Software,” #US46977220, November 2020
Sponsored white paper
Our white papers are prepared by our sponsors and are free to view.
How to download
You need to register for this site and agree to the sponsor’s conditions to be granted access.
Related articles
-
WebcastAug 7 | No Longer Optional: The Future of AI in TPRM
Don’t miss this opportunity to prepare your organization for the future of TPRM and stay ahead with AI as your second-in-command.
-
ArticleCrypto firms brace for tighter UK oversight as FCA plots integration with financial markets
Trying to put rules in place to oversee an industry that has grown largely outside of regulation is not without serious challenges. But the UK’s Financial Conduct Authority’s (FCA) latest consultation aims to attract industry views about how some key aspects of crypto trading should be regulated ahead of planned ...
-
ArticleSeven years in, GDPR faces growing challenges from AI and ‘consent or pay’ models
Europe’s pioneering data protection legislation turned seven years old in May, but the compliance and enforcement difficulties that have dogged the rules since they came into force look set to present both companies and data regulators with fresh headaches for some time to come.
More from Thought Leadership
-
ResourceWhite paper: Constructing a Cohesive Cybersecurity Foundation
The individual requirements for your security and risk operations are increasingly complex—and interconnected. Yet despite this increased interconnectivity, many organizations still manage their security operations (SecOps) and integrated risk management (IRM) functions in silos.
-
ResourceWhite paper: Top 5 Mobile Compliance Best Practices
The message from the regulators is clear - having an off-channel policy for mobile communications is not good enough.
-
ResourceWhite paper: SEC doubles down on cyber risk management accountability
To help investors gain a better understanding of cyber risk, the US Securities and Exchange Commission (SEC) has created sweeping new rules—forcing companies to take a more proactive approach to cybersecurity.