search

finos / devops-automation

Provide a continuous compliance and assurance approach to DevOps that mutually benefits banks, auditors and regulators whilst accelerating DevOps adoption in engineering and fintech IT departments.
http://devops.finos.org
Apache License 2.0
56 stars 17 forks source link

NatWest Group Hosted - FINOS DevOps SIG - Open Source Supply Chain Security Roundtable #203

Open mcleo-d opened 1 month ago

mcleo-d commented 1 month ago

NatWest Group is running an Open Source Supply Chain Security “FINOS Members + Limited Guests, Chatham House Rule” roundtable, to celebrate OSFF London, on behalf of the FINOS DevOps Automation SIG.

The roundtable is fully virtual, with 10 places available at NatWest, London for those wanting to join us in the room (registration in the comments below).

During the meeting we should explore [WIP please feedback in the comments]

  1. Aligning the RT to the DevOps Automation “Open Source Supply Chain Security” Working Group.
  2. Safe ingress of Open Source materials / dependencies into a banking engineering scenario.
  3. Safe storage and continuous monitoring of internal Open Source registries and Route to Live.
  4. Automation tools on repos and IDEs (DevSecOps + shift left).
  5. OpenSSF and FS-ISAC training, alignment and standardisation.

We look forward to celebrating OSFF London with you, on behalf of NatWest Group!

James.

msagi commented 1 month ago

+1 happy to join, in the room! 🚀

aaronsearle commented 2 weeks ago

+1 Would also be happy to join the room.

mcleo-d commented 2 weeks ago

+1 Would also be happy to join the room.

Thanks @aaronsearle - I have messaged you over LinkedIn for details.

techno-wizardry commented 1 week ago

+1 I'm a bit late to this, but if there is still availability, I'd love to come along.