search menu icon-carat-right cmu-wordmark

7 Steps to Engineer Security into Ongoing and Future Container Adoption Efforts

February 2021 Podcast
Tom Scanlon, Richard Laughlin

Thomas Scanlon and Richard Laughlin discuss seven steps that developers can take to engineer security into ongoing and future container adoption efforts.

“If you were to look at the entirety of your risk, most of your risk comes from configuration problems, using containers in the wrong way.”

Publisher:

Software Engineering Institute

Listen

Watch

Abstract

If organizations take more steps to address security-related activities now, they will be less likely to encounter security incidents in the future. When it comes to application containers, security is achieved through following and adopting a series of best practices and guidelines. In this SEI Podcast, Thomas Scanlon and Richard Laughlin discuss seven steps that developers can take to engineer security into ongoing and future container adoption efforts.

 

About the Speaker

Tom Scanlon

Tom Scanlon

Thomas Scanlon holds a doctoral degree in Information Systems and currently is a researcher in the SEI’s CERT Division. He has more than 10 years of industry experience with Fortune 500 companies. ...

Thomas Scanlon holds a doctoral degree in Information Systems and currently is a researcher in the SEI’s CERT Division. He has more than 10 years of industry experience with Fortune 500 companies. Scanlon currently specializes in applied research topics related to secure software engineering, such as authentication and authorization, secure software development, automated testing tools, cyber threat modeling, and the Risk Management Framework (RMF). During the past 2 years, he has worked directly with the Joint Federated Assurance Center (JFAC) within the Department of Defense on the prototyping and selection of software testing tools and developing guidelines for others on selecting appropriate software testing tools.

Read more