<img height="1" width="1" style="display:none" src="https://www.facebook.com/tr?id=705633339897683&amp;ev=PageView&amp;noscript=1">

Featured

Tidelift at CISO Forum 2022

Tidelift is excited to be sponsoring our first SecurityWeek event, CISO Forum! This is a virtual event taking place Sept. 13-14. CISO Forum is ...
Kristina Kaldenbach
by Kristina Kaldenbach
on September 12, 2022

New NSA, CISA, ODNI best practices for securing the open source software supply chain

By Donald Fischer on September 6, 2022
Last week, in a response to the ever-growing list of software supply chain attacks (SolarWinds and Log4Shell specifically), the U.S. National ...

Tidelift completes SOC 2 Type 2 examination

By Jeremy Katz on August 16, 2022
Security reigns supreme here at Tidelift. Because we are in the business of helping your organization ensure its supply chain is secure and ...

Tidelift’s take on the U.S. Cyber Safety Review Board Report on Log4Shell vulnerability

By Donald Fischer on July 15, 2022
Yesterday, the U.S. Department of Homeland Security released the first report from the recently created Cyber Safety Review Board (CSRB), reviewing ...

Deadline alert: OMB cybersecurity list of "critical software" due by Oct. 9

By Amy Hays on October 7, 2021
Back in May, the U.S. White House released cybersecurity executive order 14028, an attempt by the government to use its buying power to prevent high ...

Why coordinated security vulnerability disclosure policies are important

By Jeremy Katz on January 21, 2020
We believe that working with maintainers to create coordinated security vulnerability policies is important. Why? Here’s one story to illustrate.

Don't miss the latest from Tidelift

Filter by Topic

See All