When do you think we'll see more standards introduced for code signing?

Secure Code & Automation (DevSecOps)Risk ManagementSecurity Strategy & Roadmap

Within the next 6 months22%

Within the next 7-12 months63%

Within the next 1-2 years13%

I have no idea1%

lock icon

Please join or sign in to view more content.

149 PARTICIPANTS
1.5k views3 Comments
Sort By:
Oldest
Head of Cyber Security in Manufacturinga year ago
Aviation is quite strong on it, with the topics around: ED-202, ED-203, ED-204, Part-IS and a few more. 

With high probability in Europe with the introduction of Cyber Resiliency Act i hope too see further adoption of code signing.
CISO in Softwarea year ago
I would love to hear from the community on where/what forum they think these standards will appear or should reside in?
President and National Managing Principal in Softwarea year ago
I wish I really knew.  I feel like standards for assessing the certificate management side of Code Signing (i.e. WebTrust) have been around for sometime and are not used as much as they could be.  I'd be up for other standards, but the integrity of code has never been more important IMO.

Content you might like

What's a greater concern for returning to the office? Comment how you are prioritizing...

People & LeadershipStrategy & ArchitectureCloud+29 more

Human Factors (fears, mental health, physical spacing)85%

Technical / IT Factors (on-premise tools, pivoting back away from remote)14%

3.7k views3 Upvotes2 Comments

We are a large manufacturing company with over 17,000 associates, about half of whom have company-provided cell phones. We average two lost devices per week, which seems low, but executive management is concerned and wants to know if our numbers are typical compared to other companies. My questions are: 1. Do other companies also struggle with lost or stolen devices? 2. What is the average number of lost devices per week? 3. Are there repercussions for associates who lose devices due to carelessness or negligence?

Mobile Device Management (MDM)Mobile DevicesSecurity+2 more
VP of IT in Retail3 days ago
My previous organization implemented a strict one-strike policy for lost or damaged devices. While the first incident was considered an accident, repeat offenders were required to reimburse the company for the lost or damaged ...read more
82 views1 Comment

Any recommendations for a comprehensive GenAI learning platform?

EngineeringData & AnalyticsSecurity Strategy & Roadmap+4 more
IT Manager in Constructiona month ago
Hello,
the topic is so broad, what are you focused on?
Read More Comments
4.8k views2 Upvotes5 Comments

Do you have any dedicated resources for vulnerability patching?

Threat & Vulnerability ManagementSecurity Strategy & RoadmapTeam & Organizational Design

Yes - one person46%

Yes - multiple people46%

No7%

View Results
3.1k views

What cybersecurity topics do you think are critical for CIOs to be more involved in, even in orgs that have a CISO?

Relationship ManagementSecurity & GRCSecurity Strategy & Roadmap+1 more
Director of IT in Healthcare and Biotech9 days ago
Cybersecurity governance and risk management (setting up monitoring of emerging threats), data protection and privacy compliance (standardize on data protection across all channels), incident response and recovery planning ...read more
Read More Comments
1.3k views3 Comments