How Applause Does Open Source Compliance and Security the Developer's Way

Logo
Presented by

Rob Mason, CTO, Applause | Kevin Wang, CEO, FOSSA

About this talk

Applause is the world leader in testing and digital quality. They partner with the world’s greatest brands — such as Google, Microsoft, and PayPal — to ensure that their digital assets and experiences are of the highest quality and work as intended. Like a number of successful engineering leaders, Applause CTO Rob Mason has encouraged his team to use open source software to improve efficiency and product quality. But, Rob and Applause have taken a different, far more developer-friendly approach than many organizations to the necessary (yet often painful) areas of product compliance and security. With the right mix of policies, collaboration, and automation, Applause has built successful compliance and security programs that don’t take significant engineering resources or require developers to change their preferred workflows. Join Rob in the upcoming webinar "How Applause Does Open Source Compliance and Security the Developer's Way" to learn more about Applause’s developer-first approach to managing OSS license compliance and security — and the importance of tools like FOSSA in making this possible. We’ll discuss: -How Applause structured its OSS license compliance and vulnerability management programs to be as developer-friendly as possible -Best practices for collaboration: engineering-legal (on license compliance) and engineering-security (on vulnerability management) -How and where Applause uses scanning technologies to manage OSS license compliance and security -How Applause has benefited from automating OSS license compliance and vulnerability management with FOSSA
Related topics:

More from this channel

Upcoming talks (1)
On-demand talks (58)
Subscribers (6167)
Up to 90% of any piece of software is from open source, creating countless dependencies and areas of risk to manage. FOSSA is the most reliable automated policy engine for vulnerability management, license compliance, and code quality across the open source stack. With FOSSA, engineering, security, and legal teams all get complete and continuous risk mitigation for the entire software supply chain, integrated into each of their existing workflows.