We’re excited to announce the agenda for the Tabletop Exercise (TTX) at Secure Open Source Software (SOSS) Community Day NA in now live which will take place on April 15, 2024 in Seattle, WA.
What to Expect
The TTX is a 90-minute interactive session during SOSS Community Day North America, open to all SOSS Community Day attendees as audience observers. The TTX will have two phases. The first phase will be the execution of a security incident scenario, with selected panelists going through the scenario and playing their respective peronas as an open source maintainer, a software and package registry operator, and open source software consumer. The second phase will be a postmortem discussion, where panelists and selected contributors will be asked to provide insights and suggestions on how things went, and how the process could be improved.
The panelists and contributors bring their expertise in open software security ranging from open source production, distribution, consumption, vulnerability management to incident response.
The exercise will be followed by a Q&A session where the audience will have the chance to pose questions to all participants (panelists and contributors).
Panelists
- Michael Lieberman – CTO, Kusari
- Ryan Ware – Director of Open Source Security, Intel Corporation
- Chris Robinson – Director of Security Communications, Intel
- Bryan Payne – Director, AWS Vulnerability Management, AWS
- Joel Marcey – Director of Technology, Rust Foundation
- Brian Fox – CTO, Sonatype
- Rao Lakkakula – Director, JPMorgan
- Sarah Evans – Senior Engineering Technologist, Dell Technologies
- Lelia Bray-Musso – Open Source Architect, Cisco
- Seth Larson – Security Developer-in-Residence, Python Software Foundation
- Eric Brewer – VP of Infrastructure & Google Fellow, Google
Contributors
- Aeva Black – Section Chief, Open Source Security, CISA
- Jack Cable – Senior Technical Advisor, CISA
- Sandy Radesky – Associate Director of Vulnerability Management, CISA
- Arnaud Le Hors – Senior Technical Staff Member – Open Technologies, IBM
- Chad Coleman – Software Engineer, Lockheed Martin
- Stephen Augustus – Head of Open Source, Cisco
- Jeff Mendoza – Software Engineer, Kusari
Attendees are welcome to raise questions during the session via Slido.
Through our TTX you will be able to:
- Learn security
- Have a TTX template/formula to adopt and customize to start running your own TTX and improve your incident response and overall security posture.
- See how current OpenSSF technologies may be helpful during a security incident
- Identify opportunities to enhance existing processes and technologies or develop new ones to support incident response
Register Now
Secure your spot for SOSS Community Day NA by registering now. Find venue details on the event website. Please make sure to book your hotel and travel arrangements promptly before the hotel room blocks close.
Sponsor SOSS Community Day NA
The deadline has been extended to sponsor SOSS Community Day North America! Sponsoring SOSS Community Day provides opportunities for connection and collaboration that you won’t want to miss. Reach out to us at sponsor@openssf.org to secure your sponsorship, inquire about specific details, or explore various options. More details on sponsorship are available on our event website.