Source: thenewstack.io
Effective Strategies for Open Source Supply Chain ManagementCategory: Software, Business, Data
It should be at the top of an IT leader’s list of priorities. In the case of Colonial Pipeline, the largest fuel supplier between Texas and New Jersey, it wasn’t the oil company’s core operational technology (OT) that was compromised but its IT systems.
The middle ground is an approach to managing open source that automates policy governance and streamlines processes for bringing in and approving open source components.
Next, the open source strategy lead will convene a small group to draft an open source vision and charter that reflects and complements the enterprise’s business goals.
You’ll want to establish an inventory of open source components in use (also commonly referred to as a software bill of materials, or SBOM) and ensure you have defined standards around security, maintenance, and licensing for those components.
The middle ground is an approach to managing open source that automates policy governance and streamlines processes for bringing in and approving open source components.
Next, the open source strategy lead will convene a small group to draft an open source vision and charter that reflects and complements the enterprise’s business goals.
You’ll want to establish an inventory of open source components in use (also commonly referred to as a software bill of materials, or SBOM) and ensure you have defined standards around security, maintenance, and licensing for those components.
Related Articles
Community Partners
DevOps Careers