ReversingGlass Key concepts in AppSec and Software Supply Chain Security Explained

Matt Rose ReversingLabs
Field CISO at ReversingLabs. Matt Rose has an extensive background in application security, object-oriented programming, multi-tier architecture design and implementation, and internet/intranet development. His areas of expertise include Application Security, SAST, DAST, IAST, SCA, DevSecOps, and Threat Modeling. Matt is an accomplished public speaker and has been quoted in 50+ AST industry media publications.

EPSS 3.0 + CVSS: Why Prioritizing Software Risk is Key

September 28, 2023

In this episode, Matt explains what the newest version of the Exploit Prediction Scoring System (EPSS) is, and how it compares to the Common Vulnerability Scoring System (CVSS) when it comes to minimizing alert fatigue — and prioritizing the highest-risk vulnerabilities. 

Watch Episode

Happy Birthday, ReversingGlass!

September 21, 2023

In this week’s episode, we’re celebrating ReversingGlass’s first trip around the sun! In honor of the show’s birthday, Matt is looking for feedback and ideas from viewers on what kinds of episodes he should make for ReversingGlass’s second year. If there’s a topic you want Matt to do a glassboard on, please email him at matthew.rose@reversinglabs.com

Watch Episode

How Software Supply Chains Go Wrong

September 7, 2023

In this episode, Matt compares his recent move into his new home to software production, making a strong point that no matter how great your team and efforts are, mistakes are still inevitable in the build and release process.

Watch Episode

CISA Secure by Design/Secure by Default is HARD

August 31, 2023
In this episode, Matt explains why CISA's Secure by Design, Secure by Default policy is great in concept, but is actually difficult to execute in the real-world. This is because the policy can really only be applied to new software that hasn't been released yet to the market.
Watch Episode

Trust in Your Software Must be Complete

August 24, 2023

In this episode of ReversingGlass, Matt makes the essential point that trust in your software supply chain is all or nothing. He explains that trusting anything less than 100% of the components in your software package will set your organization up for major risk. This is why trust in software supply chains needs to be complete, so that the risk of a software supply chain attack to your organization can be minimized. 

Watch Episode

Why the Time Is Now for SSCS

August 10, 2023

In this episode, Matt explains why organizations need to strengthen their software supply chain security efforts immediately, given the increase in both the speed and complexity of development environments. 

Watch Episode

Must-See at Black Hat 2023

July 27, 2023

In this episode of ReversingGlass, Matt tailors to all of the book worms out there by sharing some of his favorite authors and stories. But that’s not all of course… He also shares the cybersecurity and app sec authors that will be presenting at Black Hat USA Booth #3034. Plus: Attendees who register in advance will get a free, signed copy of the author’s book. Save your spot now. 

Watch Episode

Software Security: Why Trust Matters

July 20, 2023

In this episode of ReversingGlass, Matt explains how trust is foundational to software security. Software producers and consumers alike need to continually question whether or not the software they are making or buying is trustworthy. 

Watch Episode

Gear up for Black Hat USA 2023

July 6, 2023

In this episode, Matt gives an overview of what ReversingLabs has in store for the 26th Black Hat USA Conference at Mandalay Bay in Las Vegas. Be sure to visit ReversingLabs at booth 3034 to learn about our cutting-edge solutions, plus pick up some neat swag! 

Watch Episode

Subscribe

Sign up now to receive the latest weekly
news from ReversingLabs

Get Started
Request a DEMO

Learn more about how ReversingLabs can help your company reduce attack surface risks with deep software and file threat analysis to speed release and response. 

REQUEST A DEMO