Infrastructure as Code / Programmable Infrastructure , Next-Generation Technologies & Secure Development , Video

Contrast CEO on Why It's Tough to Guard Open-Source Software

Alan Naumann on Contrast's Push to Probe Open-Source Code Right From the Repository
Alan Naumann, chairman, president and CEO, Contrast Security (Image: Contrast Security)

Organizations must grapple with software development happening at a faster pace than ever as well as an exponential increase in attacks on the software layer.

See Also: Building Better Security Operations Centers With AI/ML

Contrast Security has developed new technology to secure code that's deployed quickly to the cloud during development, security testing, runtime and operations, says Chairman, President and CEO Alan Naumann. Clients specifically want to spot potential issues earlier in the development cycle, and Contrast has responded by examining open-source code in the repository to ensure it is secure, he says (see: DevSecOps: How to Change Old Behaviors).

"The extensive use of open source means that one key fits thousands of locks," Naumann says. "I think the industry has woken up and realized, 'Boy, software security is more important than we thought. We better make sure we protect our software supply chain and our internal software development process.'"

In this video interview with Information Security Media Group, Naumann also discusses:

Prior to joining Contrast in 2016, Naumann spent four years as the CEO at 41st Parameter, until its acquisition by Experian. He also served as the CEO of CoWare for eight years, until its acquisition by Synopsys. Naumann has more than 25 years of technology management experience in the cybersecurity, e-commerce and computer industries. Before joining CoWare, he served as an executive at Calico Commerce, Cadence Design Systems and Hewlett-Packard. Naumann currently serves on the Advisory Board for Innovation, Creativity, and Entrepreneurial Studies at Wake Forest University.


About the Author

Michael Novinson

Michael Novinson

Managing Editor, Business, ISMG

Novinson is responsible for covering the vendor and technology landscape. Prior to joining ISMG, he spent four and a half years covering all the major cybersecurity vendors at CRN, with a focus on their programs and offerings for IT service providers. He was recognized for his breaking news coverage of the August 2019 coordinated ransomware attack against local governments in Texas as well as for his continued reporting around the SolarWinds hack in late 2020 and early 2021.




Around the Network

Our website uses cookies. Cookies enable us to provide the best experience possible and help us understand how visitors use our website. By browsing paymentsecurity.io, you agree to our use of cookies.