APR 01, 2019 | US
Make It Count
Politico Morning Cybersecurity, March 27, 2019
By Tim Starks
Coordinated vulnerability programs are worthless if companies don’t provide enough personnel and resources to monitor and address bug reports, the software trade group BSA said in a white paper published Tuesday. Any company setting up a CVD program should “develop governance structures to assign personnel with clear lines of responsibility, establish a risk-based mechanism for prioritizing the remediation of vulnerabilities, and provide clear guidance about how and when to disclose vulnerability information to external stakeholders,” the group said.
Original Posting: https://www.politico.com/newsletters/morning-cybersecurity/2019/03/27/gps-rollover-and-security-559592
SOBRE A BSA
A BSA | The Software Alliance (www.bsa.org) é a principal defensora do setor global de software perante governos e no mercado internacional. Seus membros estão entre as empresas mais inovadoras do mundo, criando soluções de software que estimulam a economia e melhoram a vida moderna.
Com sede em Washington, DC e operações em mais de 30 países, a BSA promove programas de conformidade que promovem o uso legal de software e defendem políticas públicas que promovem a inovação tecnológica e o crescimento da economia digital.