Name: Supply Chain Security for OpenSource Projects - it's time to prepare!
Start: 2022-11-15T18:30:00+01:00
End: 2022-11-15T20:30:00+01:00
Location: Dynatrace SLU, Lab Barcelona

Hi *JUGgers*!

Here we are again with another great session 😉!

We would like to invite you to join us in our next talk thanks to [Sven Ruppert](https://twitter.com/SvenRuppert), Developer Advocate at JFrog:

1. **Supply Chain Security for OpenSource Projects - it's time to prepare!**

Here you have the agenda for the event:

* 18:30h Welcome!
18:40h Talk
19:40h Q&A
19:45h Networking (with refreshments, snacks)
20:30h Farewell

Of course, we would like to thank [Dynatrace](https://engineering.dynatrace.com/labs/barcelona-lab/), because they offered us their offices, snacks and refreshments to make the event as comfortable as possible.

We are sure you will enjoy them, see you next 15th 😉 !

===
**IMPORTANT!**
Security:

* Access control: The security team requires an attendees list, make sure you register for the event with your full name. Registration will close 24h before the event.
* You’ll be asked to provide your name and ID (DNI, NIE, etc.) to access the building.

===

**The talk:**
Attacks on the open-source value chain (OS supply chain) are becoming more sophisticated, and we, as software developers, are becoming the focus of these attacks. So what are the essential first steps, and what should you focus on in the beginning? This, of course, raises the question of suitable methods and tools. At the same time, the company's strategic orientation must be included in this security strategy.
In the recent past, we have also learned that attacks such as the "Solarwinds Hack" are increasingly targeting individual infrastructure elements of software development, such as the classic CI/CD pipeline.
We deal with the following questions:
First, what potential threats are there in general?
Second, what are classic attack points in software development from the source code to binary?
Third, what free tools are there, and where should they be used?
Finally, how can I arm myself against the challenges of cyber attacks today?

**The speaker**
[Sven](https://sessionize.com/sven-ruppert/) spent almost 20 years as a consultant worldwide in automotive, aerospace, insurance, banking, UN and WorldBank before joining JFrog as a developer advocate. Sven has been giving lectures at international conferences and regularly publishing online and in classic magazines and books for nearly ten years. As a developer advocate for JFrog, Sven deals with DevSecOps, cybersecurity and cyberdefense, and traditional developer topics such as Core Java/Kotlin, mutation, and distributed unit testing.

===
Media collaborator: [Apium Hub](https://apiumhub.com/)

Nacho Cougil

Anyul Led Rivas

Barcelona JUG

Technology

Cloud Computing

Test Driven Development

Software Architecture

Programming Languages

Computer Programming

Software Development

Java

Web Technology

Open Source

Java Virtual Machine

Functional Programming

Kotlin

Software Engineering

JVM Languages

Full name ( required to enter the building )

Supply Chain Security for OpenSource Projects - it's time to prepare!

Cloud Security

Information Security

Dynatrace SLU, Lab Barcelona

Medidas de seguridad de la COVID-19

El anfitrión del evento establece las anteriores medidas de seguridad para este evento. Meetup no es responsable de garantizar, ni de verificar de forma independiente, que se sigan estas precauciones.

Comparte este evento

Supply Chain Security for OpenSource Projects - it's time to prepare!

Detalles

Medidas de seguridad de la COVID-19