<img height="1" width="1" style="display:none" src="https://www.facebook.com/tr?id=705633339897683&amp;ev=PageView&amp;noscript=1">


Tidelift CEO Donald Fischer discusses how organizations can comply with mandatory government cybersecurity requirements impacting open source

The updates from the government regarding open source cybersecurity have been coming fast over the past several months and it can be hard to know ...
Caitlin Bixby
by Caitlin Bixby
on September 20, 2023

Tidelift CEO and co-founder Donald Fischer talks cybersecurity requirements for organizations selling software to the U.S. government

By Caitlin Bixby on August 31, 2023
In response to an increase in cybersecurity attacks, from the SolarWinds hack on proprietary software to the Log4Shell incident on the open source ...

Tidelift at RSA 2023

By Kristina Kaldenbach on April 19, 2023
We are excited to be a first-time sponsor of the RSA conference in San Francisco this year! RSA brings together cybersecurity leaders and peers to ...

Tidelift at SecureWorld NYC 2022

By Kristina Kaldenbach on October 12, 2022
We are excited to be sponsoring SecureWorld New York City on October 13! SecureWorld connects, informs, and develops leaders in cybersecurity through ...

Tidelift at CISO Forum 2022

By Kristina Kaldenbach on September 12, 2022
Tidelift is excited to be sponsoring our first SecurityWeek event, CISO Forum! This is a virtual event taking place Sept. 13-14. CISO Forum is ...

New NSA, CISA, ODNI best practices for securing the open source software supply chain

By Donald Fischer on September 6, 2022
Last week, in a response to the ever-growing list of software supply chain attacks (SolarWinds and Log4Shell specifically), the U.S. National ...

Tidelift completes SOC 2 Type 2 examination

By Jeremy Katz on August 16, 2022
Security reigns supreme here at Tidelift. Because we are in the business of helping your organization ensure its supply chain is secure and ...

Tidelift’s take on the U.S. Cyber Safety Review Board Report on Log4Shell vulnerability

By Donald Fischer on July 15, 2022
Yesterday, the U.S. Department of Homeland Security released the first report from the recently created Cyber Safety Review Board (CSRB), reviewing ...

Deadline alert: OMB cybersecurity list of "critical software" due by Oct. 9

By Amy Hays on October 7, 2021
Back in May, the U.S. White House released cybersecurity executive order 14028, an attempt by the government to use its buying power to prevent high ...

Why coordinated security vulnerability disclosure policies are important

By Jeremy Katz on January 21, 2020
We believe that working with maintainers to create coordinated security vulnerability policies is important. Why? Here’s one story to illustrate.

Don't miss the latest from Tidelift

Filter by Topic