SlideShare a Scribd company logo

WhiteSource and FINOS: Empowering Financial Institutions to use Open Source With Confidence

DevOps.com
DevOps.com

The days when financial institutions relied solemnly on proprietary code are over. Today, even the largest financial services firms have realized the benefits of using open source technology to build powerful, innovative applications at a reduced time-to-market. However, the financial services industry faces strict regulatory requirements that present it with a unique set of challenges, especially when it comes to open source usage (both consumption and contribution). FINOS is a non-profit organization whose purpose is to accelerate collaboration and innovation in financial services through the adoption of open source software, standards and best practices. Together with WhiteSource, they are able to provide a safe environment for developers to use open source components freely and fearlessly. Join FINOS and WhiteSource as they discuss: The challenges of open source usage The state of open source vulnerabilities management How FINOS uses WhiteSource to ensure the security and IP compliance of FINOS-produced open source software

1 of 36
Download to read offline
1 Empowering Financial Institutions to Use Open Source With Confidence James McLeod Jeff Crum Director of Community Senior Director of Product Marketing FINOS WhiteSource
finos.orgFintech Open Source Foundation Financial services future will be open source and real time.” Chris Skinner (The Finanser) Photo & Quote: BBVA 2017 “
finos.orgFintech Open Source Foundation Commits by financial institutions355,508 Repos from financial institutions44,996 24,751 Committers from industry Source:
finos.orgFintech Open Source Foundation OSS VALUE (Why?) OSS CHALLENGES (How?) DECISION MAKERS ENABLEMENT LINE OF BUSINESS ENABLEMENT WHY OPEN SOURCE? Business Value of OSS Engagement WHAT TO OPEN SOURCE? Identity “Value Line”, OSS Commercialization Tactics LEGAL Contribution Policy, CLAs, License CULTURAL Cultural, Community RoE TECHNICAL OSS Supply Chain DevOps Workflow Open Source in Regulated Industries Is Not Easy Member Success initiative Open Source Readiness Program Open Developer Platform World-Class OSS legal and Technical Experts HOW CAN FINOS HELP?
finos.orgFintech Open Source Foundation Traditional Solution Oriented Business Models 5 PRODUCTION DISTRIBUTION MARKETING CONSUMER In traditional business models Value creation Is linear and one-way
finos.orgFintech Open Source Foundation A Linear Delivery Path with Increased Cycle Times Development Integration Test Quality Testing Security Testing UAT & Route to Live TESTS FAIL TESTS FAIL TESTS FAIL TESTS FAIL ▪ Waterfall follows a linear delivery path ▪ Failure Results in Delay and Long Cycle Times
finos.orgFintech Open Source Foundation Platforms Thrive in an Open ecosystem 7 In Platform business models Value creation is two-way and continuous Logos are © and (™) of their respective owners PLATFORM ECOSYSTEM
finos.orgFintech Open Source Foundation DevOps Equals Agile, Automation and Culture https://marketplace-cdn.atlassian.com/s/public/devops-hero-1-87966cfbc9c5713ae047551c7b22985c.png
finos.orgFintech Open Source Foundation Need Proof? Open = Disruptive innovation Google Opens specs for Map Reduce 2004 BIG DATA Amazon launches AWS based on Xen, Linux, Dynamo 2006 CLOUD First release of MongoDB 2007 NOSQL Satoshi releases 0.1 of Bitcoin 2008 BLOCKCHAIN Facebook contributes Cassandra to Apache 2009 NOSQL Yahoo contributes Hadoop to Apache 2011 BIG DATA Node.js joins the Linux Foundation 2015 MODERN DEV Google open sources TensorFlow 2016 MACHINE LEARNING
10 So how can you shift left security successfully?
How left can you go? 11 Shifting left the right tools Who owns it? 1 2 3
12 1How left can you go?
13 When is the optimal point to integrate security checks into the SDLC? PLAN CODE BUILD MAINT.DEPLOY
14 Detecting Issues as Early as Possible Has Multiple Benefits Coding $80/Defect Build $240/Defect QA & Security $960/Defect Production $7,600/Defect The cost of fixing security and quality issues is rising significantly, as the development cycle advances.
15 66% of companies have already implemented application testing during or even pre-build stage In what stage of the SDLC do you spend most of your time implementing security measures?
16 In what stage of the SDLC do you spend most of your time implementing security measures, by open source usage? The higher usage for open source, the more likely that developers would implement application security tools
17 2Who owns it?
If the goal is to integrate security pre-build, then who should own application security in the organization? of the respondents stated that the ownership over AppSec lies in the software development side 72% 20% 28% 23% 29%
19 Research shows organizations of all sizes are shifting their operational security to software development teams Who owns security in your organization, by company size?
20 Companies are investing in secure coding training more than ever before of developers say that their company provides them with security training that helps them code better. 36%
21 3Shifting left with the right tools
22 Both teams need security tools, but in order to shift left security you need to empower your developers. What are the “right” tools? Governance solutions Developers tools Used by security teams and management to get full visibility and control over the security risks in their software Used by developers to remediate vulnerabilities
23 Each Have Different Requirements ▪ Visibility and control through automation ▪ Reports, prioritization and policy enforcement ▪ Information on issues and remediation support ▪ Integration with dev tools, real-time alerts and remediation insights GOAL FEATURES Governance solutions Developers tools
How left can you go? 24 Shifting left the right tools Who owns it? 1 2 3
finos.orgFintech Open Source Foundation Vision for a Fintech Open Developer Platform 25 METRICS & REPORTINGWEB CONFERENCINGMAILING LISTSWIKI SYMPHONY (ReST API) SYMPHONY (Extension API) FINTECH OPEN DATA High Productivity Turnkey Developer Experience SOFTWARE CONTRIBUTORS SOFTWARE CONSUMERS SYMPHONY (Integration webhooks) Biz & Legal Peace Of Mind - We Do The Hard Part! FINTECH OPEN APIS CLOUD OPEN APIS CODE HOSTING Github Travis CI CONTINUOUS INTEGRATION CONTINUOUS DELIVERY Openshift RELEASE PUBLISHING Maven central, NPM, NuGetWhitesource SECURITY, QUALITY, IP COMPLIANCE Atlassian Confluence Google Groups WebEx Hosted Platforms Development Infrastructure Collaboration Services Future partnerships and contributions Bitergia
finos.orgFintech Open Source Foundation 26 colineberhardt.github.io/cla-bot Pull Request Made to a FINOS GitHub Repository
finos.orgFintech Open Source Foundation 27 CLA Bot Gives Real Time Licensing Feedback
finos.orgFintech Open Source Foundation 28 Building and Testing Triggered by Pull Request
finos.orgFintech Open Source Foundation 29 DevSecOps with Automated Vulnerability Testing ▪ Build if tests pass ▪ Alert if tests fail
finos.orgFintech Open Source Foundation 30 Real Time Dependency Vulnerability Testing
finos.orgFintech Open Source Foundation 31 Vulnerability Reporting at File Dependency Level
finos.orgFintech Open Source Foundation 32 Merging and K8 Deployment at Tests Passed
finos.orgFintech Open Source Foundation 33 finos.org/odp/docs > Development Infrastructure > Code Validation Multi Language ODP Validation Tools Matrix
finos.orgFintech Open Source Foundation 34 Following the Open Source Compliance Pattern The functional components of an Open Source compliance toolchain produced by the Open Source Tooling group of the OpenChain Project
finos.orgFintech Open Source Foundation Community Open Ecosystem THE OPEN PLATFORM Openness Enables Thriving Ecosystems 35 Value Line NETWORK CONTENT APP Open Standards (Open API) PLATFORM VENDOR END USER / INTEGRATOR , Semi-Open Ecosystem, Lower CAC, Easy integration Reduced vendor lock-in, solutions reuse, influence via standards groups Finos.org Value is in the ecosystem, Platform is just an enabler Open Source Fully Open Ecosystem, Focus on Core IP, cheaper Go-to-Market, broad talent pool, Community input / contributions No vendor lock-in, influence via contribution, lower overall software TCO, talent acquisition and retention, security by many eyeballs Open Standards ensure high longevity for open source software Open Source enables faster standard adoption and iterations
finos.orgFintech Open Source Foundation Q&A

Recommended

Contemperory issues in_it report
Contemperory issues in_it reportContemperory issues in_it report
Contemperory issues in_it report
NidhiArora113
 
A Peek Into GE's Open Innovation Approach
A Peek Into GE's Open Innovation ApproachA Peek Into GE's Open Innovation Approach
A Peek Into GE's Open Innovation Approach
BigHeads Network
 
The next generation tech disruptors 2019
The next generation tech disruptors 2019The next generation tech disruptors 2019
The next generation tech disruptors 2019
Insights success media and technology pvt ltd
 
Accenture: Der Weg zur Social Enterprise – Best Practices für CIOs
Accenture: Der Weg zur Social Enterprise – Best Practices für CIOsAccenture: Der Weg zur Social Enterprise – Best Practices für CIOs
Accenture: Der Weg zur Social Enterprise – Best Practices für CIOs
Salesforce Deutschland
 
Technology Trends 2021 | Tech Vision | Accenture
Technology Trends 2021 | Tech Vision | AccentureTechnology Trends 2021 | Tech Vision | Accenture
Technology Trends 2021 | Tech Vision | Accenture
accenture
 
In 7 Innovation Leaders
In 7 Innovation LeadersIn 7 Innovation Leaders
In 7 Innovation Leaders
Various Projects
 
It's learning. Just not as we know it.
It's learning. Just not as we know it.It's learning. Just not as we know it.
It's learning. Just not as we know it.
accenture
 
Collaborative Manufacturing and its Current State_Final
Collaborative Manufacturing and its Current State_FinalCollaborative Manufacturing and its Current State_Final
Collaborative Manufacturing and its Current State_Final
Jong Ha Lee
 

Recommended

Contemperory issues in_it report
Contemperory issues in_it reportContemperory issues in_it report
Contemperory issues in_it report
NidhiArora113
 
A Peek Into GE's Open Innovation Approach
A Peek Into GE's Open Innovation ApproachA Peek Into GE's Open Innovation Approach
A Peek Into GE's Open Innovation Approach
BigHeads Network
 
The next generation tech disruptors 2019
The next generation tech disruptors 2019The next generation tech disruptors 2019
The next generation tech disruptors 2019
Insights success media and technology pvt ltd
 
Accenture: Der Weg zur Social Enterprise – Best Practices für CIOs
Accenture: Der Weg zur Social Enterprise – Best Practices für CIOsAccenture: Der Weg zur Social Enterprise – Best Practices für CIOs
Accenture: Der Weg zur Social Enterprise – Best Practices für CIOs
Salesforce Deutschland
 
Technology Trends 2021 | Tech Vision | Accenture
Technology Trends 2021 | Tech Vision | AccentureTechnology Trends 2021 | Tech Vision | Accenture
Technology Trends 2021 | Tech Vision | Accenture
accenture
 
In 7 Innovation Leaders
In 7 Innovation LeadersIn 7 Innovation Leaders
In 7 Innovation Leaders
Various Projects
 
It's learning. Just not as we know it.
It's learning. Just not as we know it.It's learning. Just not as we know it.
It's learning. Just not as we know it.
accenture
 
Collaborative Manufacturing and its Current State_Final
Collaborative Manufacturing and its Current State_FinalCollaborative Manufacturing and its Current State_Final
Collaborative Manufacturing and its Current State_Final
Jong Ha Lee
 
Alan advantage - company profile
Alan advantage - company profileAlan advantage - company profile
Alan advantage - company profile
Alan Advantage
 
Challengeup_White Paper_Flyer
Challengeup_White Paper_FlyerChallengeup_White Paper_Flyer
Challengeup_White Paper_Flyer
Ewelina Pyda
 
Innovation Project on Creativity, Technology and Entrepreneurship
Innovation Project on Creativity, Technology and EntrepreneurshipInnovation Project on Creativity, Technology and Entrepreneurship
Innovation Project on Creativity, Technology and Entrepreneurship
PriyankaJagwani1
 
Using Open Innovation and Open Talent to Find Needed Technologies and Skills ...
Using Open Innovation and Open Talent to Find Needed Technologies and Skills ...Using Open Innovation and Open Talent to Find Needed Technologies and Skills ...
Using Open Innovation and Open Talent to Find Needed Technologies and Skills ...
Steve Rader
 
Innovation Today and Tomorrow 21 May 2014
Innovation Today and Tomorrow 21 May 2014Innovation Today and Tomorrow 21 May 2014
Innovation Today and Tomorrow 21 May 2014
Tim Jones
 
ieCrowd Pesentation
ieCrowd PesentationieCrowd Pesentation
ieCrowd Pesentation
AK_Crowdfunder
 
Achieving Impact with Open Source Software
Achieving Impact with Open Source SoftwareAchieving Impact with Open Source Software
Achieving Impact with Open Source Software
Roberto Di Cosmo
 
Accenture Corporate Citizenship Report 2018
Accenture Corporate Citizenship Report 2018Accenture Corporate Citizenship Report 2018
Accenture Corporate Citizenship Report 2018
Accenture Italia
 
Analytics trends deloitte
Analytics trends deloitteAnalytics trends deloitte
Analytics trends deloitte
Mani Kansal
 
Cognizant Sustainability Report
Cognizant Sustainability ReportCognizant Sustainability Report
Cognizant Sustainability Report
Cognizant
 
Using Open Innovation and Open Talent to Find Needed Technologies and Skills ...
Using Open Innovation and Open Talent to Find Needed Technologies and Skills ...Using Open Innovation and Open Talent to Find Needed Technologies and Skills ...
Using Open Innovation and Open Talent to Find Needed Technologies and Skills ...
Steve Rader
 
Manufacturing Forum 2016
Manufacturing Forum 2016Manufacturing Forum 2016
Manufacturing Forum 2016
Hewlett Packard Enterprise Business Value Exchange
 
To Accelerate IT Innovation, Think like a Rocket Scientist
To Accelerate IT Innovation, Think like a Rocket ScientistTo Accelerate IT Innovation, Think like a Rocket Scientist
To Accelerate IT Innovation, Think like a Rocket Scientist
Hewlett Packard Enterprise Business Value Exchange
 
Open Source
Open Source Open Source
Open Source
Liron Zighelnic
 
Unleashing Competitiveness on the Cloud Continuum | Accenture
Unleashing Competitiveness on the Cloud Continuum | AccentureUnleashing Competitiveness on the Cloud Continuum | Accenture
Unleashing Competitiveness on the Cloud Continuum | Accenture
accenture
 
BridgeCommunity Overview 2018
BridgeCommunity Overview 2018 BridgeCommunity Overview 2018
BridgeCommunity Overview 2018
Tricia Whitlock
 
Open Innovation Networks - Crowd Sourcing and Internal Expert Networks at Sie...
Open Innovation Networks - Crowd Sourcing and Internal Expert Networks at Sie...Open Innovation Networks - Crowd Sourcing and Internal Expert Networks at Sie...
Open Innovation Networks - Crowd Sourcing and Internal Expert Networks at Sie...
Michael Heiss
 
Nasscom
NasscomNasscom
Nasscom
Rodixon94
 
To study the consumer behavior for purchasing mobile handsets
To study the consumer behavior for purchasing mobile handsetsTo study the consumer behavior for purchasing mobile handsets
To study the consumer behavior for purchasing mobile handsets
Enamul Islam
 
Cleantech bg presentation Know_HowEvent - 28th Feb.2012
Cleantech bg presentation Know_HowEvent - 28th Feb.2012Cleantech bg presentation Know_HowEvent - 28th Feb.2012
Cleantech bg presentation Know_HowEvent - 28th Feb.2012
Mariyana Hamanova
 
Software Security Assurance for Devops
Software Security Assurance for DevopsSoftware Security Assurance for Devops
Software Security Assurance for Devops
Jerika Phelps
 
Software Security Assurance for DevOps
Software Security Assurance for DevOpsSoftware Security Assurance for DevOps
Software Security Assurance for DevOps
Black Duck by Synopsys
 

More Related Content

What's hot

Alan advantage - company profile
Alan advantage - company profileAlan advantage - company profile
Alan advantage - company profile
Alan Advantage
 
Challengeup_White Paper_Flyer
Challengeup_White Paper_FlyerChallengeup_White Paper_Flyer
Challengeup_White Paper_Flyer
Ewelina Pyda
 
Innovation Project on Creativity, Technology and Entrepreneurship
Innovation Project on Creativity, Technology and EntrepreneurshipInnovation Project on Creativity, Technology and Entrepreneurship
Innovation Project on Creativity, Technology and Entrepreneurship
PriyankaJagwani1
 
Using Open Innovation and Open Talent to Find Needed Technologies and Skills ...
Using Open Innovation and Open Talent to Find Needed Technologies and Skills ...Using Open Innovation and Open Talent to Find Needed Technologies and Skills ...
Using Open Innovation and Open Talent to Find Needed Technologies and Skills ...
Steve Rader
 
Innovation Today and Tomorrow 21 May 2014
Innovation Today and Tomorrow 21 May 2014Innovation Today and Tomorrow 21 May 2014
Innovation Today and Tomorrow 21 May 2014
Tim Jones
 
ieCrowd Pesentation
ieCrowd PesentationieCrowd Pesentation
ieCrowd Pesentation
AK_Crowdfunder
 
Achieving Impact with Open Source Software
Achieving Impact with Open Source SoftwareAchieving Impact with Open Source Software
Achieving Impact with Open Source Software
Roberto Di Cosmo
 
Accenture Corporate Citizenship Report 2018
Accenture Corporate Citizenship Report 2018Accenture Corporate Citizenship Report 2018
Accenture Corporate Citizenship Report 2018
Accenture Italia
 
Analytics trends deloitte
Analytics trends deloitteAnalytics trends deloitte
Analytics trends deloitte
Mani Kansal
 
Cognizant Sustainability Report
Cognizant Sustainability ReportCognizant Sustainability Report
Cognizant Sustainability Report
Cognizant
 
Using Open Innovation and Open Talent to Find Needed Technologies and Skills ...
Using Open Innovation and Open Talent to Find Needed Technologies and Skills ...Using Open Innovation and Open Talent to Find Needed Technologies and Skills ...
Using Open Innovation and Open Talent to Find Needed Technologies and Skills ...
Steve Rader
 
Manufacturing Forum 2016
Manufacturing Forum 2016Manufacturing Forum 2016
Manufacturing Forum 2016
Hewlett Packard Enterprise Business Value Exchange
 
To Accelerate IT Innovation, Think like a Rocket Scientist
To Accelerate IT Innovation, Think like a Rocket ScientistTo Accelerate IT Innovation, Think like a Rocket Scientist
To Accelerate IT Innovation, Think like a Rocket Scientist
Hewlett Packard Enterprise Business Value Exchange
 
Open Source
Open Source Open Source
Open Source
Liron Zighelnic
 
Unleashing Competitiveness on the Cloud Continuum | Accenture
Unleashing Competitiveness on the Cloud Continuum | AccentureUnleashing Competitiveness on the Cloud Continuum | Accenture
Unleashing Competitiveness on the Cloud Continuum | Accenture
accenture
 
BridgeCommunity Overview 2018
BridgeCommunity Overview 2018 BridgeCommunity Overview 2018
BridgeCommunity Overview 2018
Tricia Whitlock
 
Open Innovation Networks - Crowd Sourcing and Internal Expert Networks at Sie...
Open Innovation Networks - Crowd Sourcing and Internal Expert Networks at Sie...Open Innovation Networks - Crowd Sourcing and Internal Expert Networks at Sie...
Open Innovation Networks - Crowd Sourcing and Internal Expert Networks at Sie...
Michael Heiss
 
Nasscom
NasscomNasscom
Nasscom
Rodixon94
 
To study the consumer behavior for purchasing mobile handsets
To study the consumer behavior for purchasing mobile handsetsTo study the consumer behavior for purchasing mobile handsets
To study the consumer behavior for purchasing mobile handsets
Enamul Islam
 
Cleantech bg presentation Know_HowEvent - 28th Feb.2012
Cleantech bg presentation Know_HowEvent - 28th Feb.2012Cleantech bg presentation Know_HowEvent - 28th Feb.2012
Cleantech bg presentation Know_HowEvent - 28th Feb.2012
Mariyana Hamanova
 

What's hot (20)

Alan advantage - company profile
Alan advantage - company profileAlan advantage - company profile
Alan advantage - company profile
 
Challengeup_White Paper_Flyer
Challengeup_White Paper_FlyerChallengeup_White Paper_Flyer
Challengeup_White Paper_Flyer
 
Innovation Project on Creativity, Technology and Entrepreneurship
Innovation Project on Creativity, Technology and EntrepreneurshipInnovation Project on Creativity, Technology and Entrepreneurship
Innovation Project on Creativity, Technology and Entrepreneurship
 
Using Open Innovation and Open Talent to Find Needed Technologies and Skills ...
Using Open Innovation and Open Talent to Find Needed Technologies and Skills ...Using Open Innovation and Open Talent to Find Needed Technologies and Skills ...
Using Open Innovation and Open Talent to Find Needed Technologies and Skills ...
 
Innovation Today and Tomorrow 21 May 2014
Innovation Today and Tomorrow 21 May 2014Innovation Today and Tomorrow 21 May 2014
Innovation Today and Tomorrow 21 May 2014
 
ieCrowd Pesentation
ieCrowd PesentationieCrowd Pesentation
ieCrowd Pesentation
 
Achieving Impact with Open Source Software
Achieving Impact with Open Source SoftwareAchieving Impact with Open Source Software
Achieving Impact with Open Source Software
 
Accenture Corporate Citizenship Report 2018
Accenture Corporate Citizenship Report 2018Accenture Corporate Citizenship Report 2018
Accenture Corporate Citizenship Report 2018
 
Analytics trends deloitte
Analytics trends deloitteAnalytics trends deloitte
Analytics trends deloitte
 
Cognizant Sustainability Report
Cognizant Sustainability ReportCognizant Sustainability Report
Cognizant Sustainability Report
 
Using Open Innovation and Open Talent to Find Needed Technologies and Skills ...
Using Open Innovation and Open Talent to Find Needed Technologies and Skills ...Using Open Innovation and Open Talent to Find Needed Technologies and Skills ...
Using Open Innovation and Open Talent to Find Needed Technologies and Skills ...
 
Manufacturing Forum 2016
Manufacturing Forum 2016Manufacturing Forum 2016
Manufacturing Forum 2016
 
To Accelerate IT Innovation, Think like a Rocket Scientist
To Accelerate IT Innovation, Think like a Rocket ScientistTo Accelerate IT Innovation, Think like a Rocket Scientist
To Accelerate IT Innovation, Think like a Rocket Scientist
 
Open Source
Open Source Open Source
Open Source
 
Unleashing Competitiveness on the Cloud Continuum | Accenture
Unleashing Competitiveness on the Cloud Continuum | AccentureUnleashing Competitiveness on the Cloud Continuum | Accenture
Unleashing Competitiveness on the Cloud Continuum | Accenture
 
BridgeCommunity Overview 2018
BridgeCommunity Overview 2018 BridgeCommunity Overview 2018
BridgeCommunity Overview 2018
 
Open Innovation Networks - Crowd Sourcing and Internal Expert Networks at Sie...
Open Innovation Networks - Crowd Sourcing and Internal Expert Networks at Sie...Open Innovation Networks - Crowd Sourcing and Internal Expert Networks at Sie...
Open Innovation Networks - Crowd Sourcing and Internal Expert Networks at Sie...
 
Nasscom
NasscomNasscom
Nasscom
 
To study the consumer behavior for purchasing mobile handsets
To study the consumer behavior for purchasing mobile handsetsTo study the consumer behavior for purchasing mobile handsets
To study the consumer behavior for purchasing mobile handsets
 
Cleantech bg presentation Know_HowEvent - 28th Feb.2012
Cleantech bg presentation Know_HowEvent - 28th Feb.2012Cleantech bg presentation Know_HowEvent - 28th Feb.2012
Cleantech bg presentation Know_HowEvent - 28th Feb.2012
 

Similar to WhiteSource and FINOS: Empowering Financial Institutions to use Open Source With Confidence

Software Security Assurance for Devops
Software Security Assurance for DevopsSoftware Security Assurance for Devops
Software Security Assurance for Devops
Jerika Phelps
 
Software Security Assurance for DevOps
Software Security Assurance for DevOpsSoftware Security Assurance for DevOps
Software Security Assurance for DevOps
Black Duck by Synopsys
 
[WSO2 Summit Brazil 2018] The API-driven World
[WSO2 Summit Brazil 2018] The API-driven World[WSO2 Summit Brazil 2018] The API-driven World
[WSO2 Summit Brazil 2018] The API-driven World
WSO2
 
201704 - An Introduction to the Symphony Software Foundation
201704 - An Introduction to the Symphony Software Foundation201704 - An Introduction to the Symphony Software Foundation
201704 - An Introduction to the Symphony Software Foundation
Symphony Software Foundation
 
You Can’t Live Without Open Source - Results from the Open Source 360 Survey
You Can’t Live Without Open Source - Results from the Open Source 360 SurveyYou Can’t Live Without Open Source - Results from the Open Source 360 Survey
You Can’t Live Without Open Source - Results from the Open Source 360 Survey
Black Duck by Synopsys
 
Soluciones de Código Abierto - Perspectivas, Resultados y Soluciones de Valor
Soluciones de Código Abierto - Perspectivas, Resultados y Soluciones de ValorSoluciones de Código Abierto - Perspectivas, Resultados y Soluciones de Valor
Soluciones de Código Abierto - Perspectivas, Resultados y Soluciones de Valor
WSO2
 
Apidays New York 2024 - Accelerating FinTech Innovation by Vasa Krishnan, Fin...
Apidays New York 2024 - Accelerating FinTech Innovation by Vasa Krishnan, Fin...Apidays New York 2024 - Accelerating FinTech Innovation by Vasa Krishnan, Fin...
Apidays New York 2024 - Accelerating FinTech Innovation by Vasa Krishnan, Fin...
apidays
 
Rise of the Open Source Program Office for LinuxCon 2016
Rise of the Open Source Program Office for LinuxCon 2016Rise of the Open Source Program Office for LinuxCon 2016
Rise of the Open Source Program Office for LinuxCon 2016
Gil Yehuda
 
2014 Liferay Roadshow Ambientia Finland
2014 Liferay Roadshow Ambientia Finland2014 Liferay Roadshow Ambientia Finland
2014 Liferay Roadshow Ambientia Finland
Ruud Kluivers
 
Era of APIs: Why do we need an API Strategy
Era of APIs: Why do we need an API StrategyEra of APIs: Why do we need an API Strategy
Era of APIs: Why do we need an API Strategy
Bala Iyer
 
Bridging the Security Testing Gap in Your CI/CD Pipeline
Bridging the Security Testing Gap in Your CI/CD PipelineBridging the Security Testing Gap in Your CI/CD Pipeline
Bridging the Security Testing Gap in Your CI/CD Pipeline
DevOps.com
 
Building Sustainable Ecosystems: The Economics of Collaboration
Building Sustainable Ecosystems: The Economics of CollaborationBuilding Sustainable Ecosystems: The Economics of Collaboration
Building Sustainable Ecosystems: The Economics of Collaboration
WSO2
 
Cisco & Open Source
Cisco & Open SourceCisco & Open Source
Cisco & Open Source
Lauren Cooney
 
The state of the art of agile
The state of the art of agileThe state of the art of agile
The state of the art of agile
AgileKoreaConference Alliance
 
BUDDY White Paper
BUDDY White PaperBUDDY White Paper
BUDDY White Paper
Achmad Surya Afandy
 
DevOps: A Culture Transformation, More than Technology
DevOps: A Culture Transformation, More than TechnologyDevOps: A Culture Transformation, More than Technology
DevOps: A Culture Transformation, More than Technology
CA Technologies
 
Open Source Insight: OWASP Top 10, Red Hat OpenShift News, & Gmail Phishing Scam
Open Source Insight: OWASP Top 10, Red Hat OpenShift News, & Gmail Phishing ScamOpen Source Insight: OWASP Top 10, Red Hat OpenShift News, & Gmail Phishing Scam
Open Source Insight: OWASP Top 10, Red Hat OpenShift News, & Gmail Phishing Scam
Black Duck by Synopsys
 
201808 - An introduction to FINOS, the Fintech Open Source Foundation
201808 - An introduction to FINOS, the Fintech Open Source Foundation201808 - An introduction to FINOS, the Fintech Open Source Foundation
201808 - An introduction to FINOS, the Fintech Open Source Foundation
FINOS
 
Building DevOps in the enterprise: Transforming challenges into organizationa...
Building DevOps in the enterprise: Transforming challenges into organizationa...Building DevOps in the enterprise: Transforming challenges into organizationa...
Building DevOps in the enterprise: Transforming challenges into organizationa...
Jonah Kowall
 
OSS has taken over the enterprise: The top five OSS trends of 2015
OSS has taken over the enterprise: The top five OSS trends of 2015OSS has taken over the enterprise: The top five OSS trends of 2015
OSS has taken over the enterprise: The top five OSS trends of 2015
Rogue Wave Software
 

Similar to WhiteSource and FINOS: Empowering Financial Institutions to use Open Source With Confidence (20)

Software Security Assurance for Devops
Software Security Assurance for DevopsSoftware Security Assurance for Devops
Software Security Assurance for Devops
 
Software Security Assurance for DevOps
Software Security Assurance for DevOpsSoftware Security Assurance for DevOps
Software Security Assurance for DevOps
 
[WSO2 Summit Brazil 2018] The API-driven World
[WSO2 Summit Brazil 2018] The API-driven World[WSO2 Summit Brazil 2018] The API-driven World
[WSO2 Summit Brazil 2018] The API-driven World
 
201704 - An Introduction to the Symphony Software Foundation
201704 - An Introduction to the Symphony Software Foundation201704 - An Introduction to the Symphony Software Foundation
201704 - An Introduction to the Symphony Software Foundation
 
You Can’t Live Without Open Source - Results from the Open Source 360 Survey
You Can’t Live Without Open Source - Results from the Open Source 360 SurveyYou Can’t Live Without Open Source - Results from the Open Source 360 Survey
You Can’t Live Without Open Source - Results from the Open Source 360 Survey
 
Soluciones de Código Abierto - Perspectivas, Resultados y Soluciones de Valor
Soluciones de Código Abierto - Perspectivas, Resultados y Soluciones de ValorSoluciones de Código Abierto - Perspectivas, Resultados y Soluciones de Valor
Soluciones de Código Abierto - Perspectivas, Resultados y Soluciones de Valor
 
Apidays New York 2024 - Accelerating FinTech Innovation by Vasa Krishnan, Fin...
Apidays New York 2024 - Accelerating FinTech Innovation by Vasa Krishnan, Fin...Apidays New York 2024 - Accelerating FinTech Innovation by Vasa Krishnan, Fin...
Apidays New York 2024 - Accelerating FinTech Innovation by Vasa Krishnan, Fin...
 
Rise of the Open Source Program Office for LinuxCon 2016
Rise of the Open Source Program Office for LinuxCon 2016Rise of the Open Source Program Office for LinuxCon 2016
Rise of the Open Source Program Office for LinuxCon 2016
 
2014 Liferay Roadshow Ambientia Finland
2014 Liferay Roadshow Ambientia Finland2014 Liferay Roadshow Ambientia Finland
2014 Liferay Roadshow Ambientia Finland
 
Era of APIs: Why do we need an API Strategy
Era of APIs: Why do we need an API StrategyEra of APIs: Why do we need an API Strategy
Era of APIs: Why do we need an API Strategy
 
Bridging the Security Testing Gap in Your CI/CD Pipeline
Bridging the Security Testing Gap in Your CI/CD PipelineBridging the Security Testing Gap in Your CI/CD Pipeline
Bridging the Security Testing Gap in Your CI/CD Pipeline
 
Building Sustainable Ecosystems: The Economics of Collaboration
Building Sustainable Ecosystems: The Economics of CollaborationBuilding Sustainable Ecosystems: The Economics of Collaboration
Building Sustainable Ecosystems: The Economics of Collaboration
 
Cisco & Open Source
Cisco & Open SourceCisco & Open Source
Cisco & Open Source
 
The state of the art of agile
The state of the art of agileThe state of the art of agile
The state of the art of agile
 
BUDDY White Paper
BUDDY White PaperBUDDY White Paper
BUDDY White Paper
 
DevOps: A Culture Transformation, More than Technology
DevOps: A Culture Transformation, More than TechnologyDevOps: A Culture Transformation, More than Technology
DevOps: A Culture Transformation, More than Technology
 
Open Source Insight: OWASP Top 10, Red Hat OpenShift News, & Gmail Phishing Scam
Open Source Insight: OWASP Top 10, Red Hat OpenShift News, & Gmail Phishing ScamOpen Source Insight: OWASP Top 10, Red Hat OpenShift News, & Gmail Phishing Scam
Open Source Insight: OWASP Top 10, Red Hat OpenShift News, & Gmail Phishing Scam
 
201808 - An introduction to FINOS, the Fintech Open Source Foundation
201808 - An introduction to FINOS, the Fintech Open Source Foundation201808 - An introduction to FINOS, the Fintech Open Source Foundation
201808 - An introduction to FINOS, the Fintech Open Source Foundation
 
Building DevOps in the enterprise: Transforming challenges into organizationa...
Building DevOps in the enterprise: Transforming challenges into organizationa...Building DevOps in the enterprise: Transforming challenges into organizationa...
Building DevOps in the enterprise: Transforming challenges into organizationa...
 
OSS has taken over the enterprise: The top five OSS trends of 2015
OSS has taken over the enterprise: The top five OSS trends of 2015OSS has taken over the enterprise: The top five OSS trends of 2015
OSS has taken over the enterprise: The top five OSS trends of 2015
 

More from DevOps.com

Modernizing on IBM Z Made Easier With Open Source Software
Modernizing on IBM Z Made Easier With Open Source SoftwareModernizing on IBM Z Made Easier With Open Source Software
Modernizing on IBM Z Made Easier With Open Source Software
DevOps.com
 
Comparing Microsoft SQL Server 2019 Performance Across Various Kubernetes Pla...
Comparing Microsoft SQL Server 2019 Performance Across Various Kubernetes Pla...Comparing Microsoft SQL Server 2019 Performance Across Various Kubernetes Pla...
Comparing Microsoft SQL Server 2019 Performance Across Various Kubernetes Pla...
DevOps.com
 
Comparing Microsoft SQL Server 2019 Performance Across Various Kubernetes Pla...
Comparing Microsoft SQL Server 2019 Performance Across Various Kubernetes Pla...Comparing Microsoft SQL Server 2019 Performance Across Various Kubernetes Pla...
Comparing Microsoft SQL Server 2019 Performance Across Various Kubernetes Pla...
DevOps.com
 
Next Generation Vulnerability Assessment Using Datadog and Snyk
Next Generation Vulnerability Assessment Using Datadog and SnykNext Generation Vulnerability Assessment Using Datadog and Snyk
Next Generation Vulnerability Assessment Using Datadog and Snyk
DevOps.com
 
Vulnerability Discovery in the Cloud
Vulnerability Discovery in the CloudVulnerability Discovery in the Cloud
Vulnerability Discovery in the Cloud
DevOps.com
 
2021 Open Source Governance: Top Ten Trends and Predictions
2021 Open Source Governance: Top Ten Trends and Predictions2021 Open Source Governance: Top Ten Trends and Predictions
2021 Open Source Governance: Top Ten Trends and Predictions
DevOps.com
 
A New Year’s Ransomware Resolution
A New Year’s Ransomware ResolutionA New Year’s Ransomware Resolution
A New Year’s Ransomware Resolution
DevOps.com
 
Getting Started with Runtime Security on Azure Kubernetes Service (AKS)
Getting Started with Runtime Security on Azure Kubernetes Service (AKS)Getting Started with Runtime Security on Azure Kubernetes Service (AKS)
Getting Started with Runtime Security on Azure Kubernetes Service (AKS)
DevOps.com
 
Don't Panic! Effective Incident Response
Don't Panic! Effective Incident ResponseDon't Panic! Effective Incident Response
Don't Panic! Effective Incident Response
DevOps.com
 
Creating a Culture of Chaos: Chaos Engineering Is Not Just Tools, It's Culture
Creating a Culture of Chaos: Chaos Engineering Is Not Just Tools, It's CultureCreating a Culture of Chaos: Chaos Engineering Is Not Just Tools, It's Culture
Creating a Culture of Chaos: Chaos Engineering Is Not Just Tools, It's Culture
DevOps.com
 
Role Based Access Controls (RBAC) for SSH and Kubernetes Access with Teleport
Role Based Access Controls (RBAC) for SSH and Kubernetes Access with TeleportRole Based Access Controls (RBAC) for SSH and Kubernetes Access with Teleport
Role Based Access Controls (RBAC) for SSH and Kubernetes Access with Teleport
DevOps.com
 
Monitoring Serverless Applications with Datadog
Monitoring Serverless Applications with DatadogMonitoring Serverless Applications with Datadog
Monitoring Serverless Applications with Datadog
DevOps.com
 
Deliver your App Anywhere … Publicly or Privately
Deliver your App Anywhere … Publicly or PrivatelyDeliver your App Anywhere … Publicly or Privately
Deliver your App Anywhere … Publicly or Privately
DevOps.com
 
Securing medical apps in the age of covid final
Securing medical apps in the age of covid finalSecuring medical apps in the age of covid final
Securing medical apps in the age of covid final
DevOps.com
 
How to Build a Healthy On-Call Culture
How to Build a Healthy On-Call CultureHow to Build a Healthy On-Call Culture
How to Build a Healthy On-Call Culture
DevOps.com
 
The Evolving Role of the Developer in 2021
The Evolving Role of the Developer in 2021The Evolving Role of the Developer in 2021
The Evolving Role of the Developer in 2021
DevOps.com
 
Service Mesh: Two Big Words But Do You Need It?
Service Mesh: Two Big Words But Do You Need It?Service Mesh: Two Big Words But Do You Need It?
Service Mesh: Two Big Words But Do You Need It?
DevOps.com
 
Secure Data Sharing in OpenShift Environments
Secure Data Sharing in OpenShift EnvironmentsSecure Data Sharing in OpenShift Environments
Secure Data Sharing in OpenShift Environments
DevOps.com
 
How to Govern Identities and Access in Cloud Infrastructure: AppsFlyer Case S...
How to Govern Identities and Access in Cloud Infrastructure: AppsFlyer Case S...How to Govern Identities and Access in Cloud Infrastructure: AppsFlyer Case S...
How to Govern Identities and Access in Cloud Infrastructure: AppsFlyer Case S...
DevOps.com
 
Elevate Your Enterprise Python and R AI, ML Software Strategy with Anaconda T...
Elevate Your Enterprise Python and R AI, ML Software Strategy with Anaconda T...Elevate Your Enterprise Python and R AI, ML Software Strategy with Anaconda T...
Elevate Your Enterprise Python and R AI, ML Software Strategy with Anaconda T...
DevOps.com
 

More from DevOps.com (20)

Modernizing on IBM Z Made Easier With Open Source Software
Modernizing on IBM Z Made Easier With Open Source SoftwareModernizing on IBM Z Made Easier With Open Source Software
Modernizing on IBM Z Made Easier With Open Source Software
 
Comparing Microsoft SQL Server 2019 Performance Across Various Kubernetes Pla...
Comparing Microsoft SQL Server 2019 Performance Across Various Kubernetes Pla...Comparing Microsoft SQL Server 2019 Performance Across Various Kubernetes Pla...
Comparing Microsoft SQL Server 2019 Performance Across Various Kubernetes Pla...
 
Comparing Microsoft SQL Server 2019 Performance Across Various Kubernetes Pla...
Comparing Microsoft SQL Server 2019 Performance Across Various Kubernetes Pla...Comparing Microsoft SQL Server 2019 Performance Across Various Kubernetes Pla...
Comparing Microsoft SQL Server 2019 Performance Across Various Kubernetes Pla...
 
Next Generation Vulnerability Assessment Using Datadog and Snyk
Next Generation Vulnerability Assessment Using Datadog and SnykNext Generation Vulnerability Assessment Using Datadog and Snyk
Next Generation Vulnerability Assessment Using Datadog and Snyk
 
Vulnerability Discovery in the Cloud
Vulnerability Discovery in the CloudVulnerability Discovery in the Cloud
Vulnerability Discovery in the Cloud
 
2021 Open Source Governance: Top Ten Trends and Predictions
2021 Open Source Governance: Top Ten Trends and Predictions2021 Open Source Governance: Top Ten Trends and Predictions
2021 Open Source Governance: Top Ten Trends and Predictions
 
A New Year’s Ransomware Resolution
A New Year’s Ransomware ResolutionA New Year’s Ransomware Resolution
A New Year’s Ransomware Resolution
 
Getting Started with Runtime Security on Azure Kubernetes Service (AKS)
Getting Started with Runtime Security on Azure Kubernetes Service (AKS)Getting Started with Runtime Security on Azure Kubernetes Service (AKS)
Getting Started with Runtime Security on Azure Kubernetes Service (AKS)
 
Don't Panic! Effective Incident Response
Don't Panic! Effective Incident ResponseDon't Panic! Effective Incident Response
Don't Panic! Effective Incident Response
 
Creating a Culture of Chaos: Chaos Engineering Is Not Just Tools, It's Culture
Creating a Culture of Chaos: Chaos Engineering Is Not Just Tools, It's CultureCreating a Culture of Chaos: Chaos Engineering Is Not Just Tools, It's Culture
Creating a Culture of Chaos: Chaos Engineering Is Not Just Tools, It's Culture
 
Role Based Access Controls (RBAC) for SSH and Kubernetes Access with Teleport
Role Based Access Controls (RBAC) for SSH and Kubernetes Access with TeleportRole Based Access Controls (RBAC) for SSH and Kubernetes Access with Teleport
Role Based Access Controls (RBAC) for SSH and Kubernetes Access with Teleport
 
Monitoring Serverless Applications with Datadog
Monitoring Serverless Applications with DatadogMonitoring Serverless Applications with Datadog
Monitoring Serverless Applications with Datadog
 
Deliver your App Anywhere … Publicly or Privately
Deliver your App Anywhere … Publicly or PrivatelyDeliver your App Anywhere … Publicly or Privately
Deliver your App Anywhere … Publicly or Privately
 
Securing medical apps in the age of covid final
Securing medical apps in the age of covid finalSecuring medical apps in the age of covid final
Securing medical apps in the age of covid final
 
How to Build a Healthy On-Call Culture
How to Build a Healthy On-Call CultureHow to Build a Healthy On-Call Culture
How to Build a Healthy On-Call Culture
 
The Evolving Role of the Developer in 2021
The Evolving Role of the Developer in 2021The Evolving Role of the Developer in 2021
The Evolving Role of the Developer in 2021
 
Service Mesh: Two Big Words But Do You Need It?
Service Mesh: Two Big Words But Do You Need It?Service Mesh: Two Big Words But Do You Need It?
Service Mesh: Two Big Words But Do You Need It?
 
Secure Data Sharing in OpenShift Environments
Secure Data Sharing in OpenShift EnvironmentsSecure Data Sharing in OpenShift Environments
Secure Data Sharing in OpenShift Environments
 
How to Govern Identities and Access in Cloud Infrastructure: AppsFlyer Case S...
How to Govern Identities and Access in Cloud Infrastructure: AppsFlyer Case S...How to Govern Identities and Access in Cloud Infrastructure: AppsFlyer Case S...
How to Govern Identities and Access in Cloud Infrastructure: AppsFlyer Case S...
 
Elevate Your Enterprise Python and R AI, ML Software Strategy with Anaconda T...
Elevate Your Enterprise Python and R AI, ML Software Strategy with Anaconda T...Elevate Your Enterprise Python and R AI, ML Software Strategy with Anaconda T...
Elevate Your Enterprise Python and R AI, ML Software Strategy with Anaconda T...
 

Recently uploaded

A Comprehensive Guide to DeFi Development Services in 2024
A Comprehensive Guide to DeFi Development Services in 2024A Comprehensive Guide to DeFi Development Services in 2024
A Comprehensive Guide to DeFi Development Services in 2024
Intelisync
 
How to Interpret Trends in the Kalyan Rajdhani Mix Chart.pdf
How to Interpret Trends in the Kalyan Rajdhani Mix Chart.pdfHow to Interpret Trends in the Kalyan Rajdhani Mix Chart.pdf
How to Interpret Trends in the Kalyan Rajdhani Mix Chart.pdf
Chart Kalyan
 
System Design Case Study: Building a Scalable E-Commerce Platform - Hiike
System Design Case Study: Building a Scalable E-Commerce Platform - HiikeSystem Design Case Study: Building a Scalable E-Commerce Platform - Hiike
System Design Case Study: Building a Scalable E-Commerce Platform - Hiike
Hiike
 
Presentation of the OECD Artificial Intelligence Review of Germany
Presentation of the OECD Artificial Intelligence Review of GermanyPresentation of the OECD Artificial Intelligence Review of Germany
Presentation of the OECD Artificial Intelligence Review of Germany
innovationoecd
 
Driving Business Innovation: Latest Generative AI Advancements & Success Story
Driving Business Innovation: Latest Generative AI Advancements & Success StoryDriving Business Innovation: Latest Generative AI Advancements & Success Story
Driving Business Innovation: Latest Generative AI Advancements & Success Story
Safe Software
 
UI5 Controls simplified - UI5con2024 presentation
UI5 Controls simplified - UI5con2024 presentationUI5 Controls simplified - UI5con2024 presentation
UI5 Controls simplified - UI5con2024 presentation
Wouter Lemaire
 
AWS Cloud Cost Optimization Presentation.pptx
AWS Cloud Cost Optimization Presentation.pptxAWS Cloud Cost Optimization Presentation.pptx
AWS Cloud Cost Optimization Presentation.pptx
HarisZaheer8
 
Ocean lotus Threat actors project by John Sitima 2024 (1).pptx
Ocean lotus Threat actors project by John Sitima 2024 (1).pptxOcean lotus Threat actors project by John Sitima 2024 (1).pptx
Ocean lotus Threat actors project by John Sitima 2024 (1).pptx
SitimaJohn
 
Taking AI to the Next Level in Manufacturing.pdf
Taking AI to the Next Level in Manufacturing.pdfTaking AI to the Next Level in Manufacturing.pdf
Taking AI to the Next Level in Manufacturing.pdf
ssuserfac0301
 
Your One-Stop Shop for Python Success: Top 10 US Python Development Providers
Your One-Stop Shop for Python Success: Top 10 US Python Development ProvidersYour One-Stop Shop for Python Success: Top 10 US Python Development Providers
Your One-Stop Shop for Python Success: Top 10 US Python Development Providers
akankshawande
 
HCL Notes and Domino License Cost Reduction in the World of DLAU
HCL Notes and Domino License Cost Reduction in the World of DLAUHCL Notes and Domino License Cost Reduction in the World of DLAU
HCL Notes and Domino License Cost Reduction in the World of DLAU
panagenda
 
HCL Notes und Domino Lizenzkostenreduzierung in der Welt von DLAU
HCL Notes und Domino Lizenzkostenreduzierung in der Welt von DLAUHCL Notes und Domino Lizenzkostenreduzierung in der Welt von DLAU
HCL Notes und Domino Lizenzkostenreduzierung in der Welt von DLAU
panagenda
 
leewayhertz.com-AI in predictive maintenance Use cases technologies benefits ...
leewayhertz.com-AI in predictive maintenance Use cases technologies benefits ...leewayhertz.com-AI in predictive maintenance Use cases technologies benefits ...
leewayhertz.com-AI in predictive maintenance Use cases technologies benefits ...
alexjohnson7307
 
WeTestAthens: Postman's AI & Automation Techniques
WeTestAthens: Postman's AI & Automation TechniquesWeTestAthens: Postman's AI & Automation Techniques
WeTestAthens: Postman's AI & Automation Techniques
Postman
 
June Patch Tuesday
June Patch TuesdayJune Patch Tuesday
June Patch Tuesday
Ivanti
 
Let's Integrate MuleSoft RPA, COMPOSER, APM with AWS IDP along with Slack
Let's Integrate MuleSoft RPA, COMPOSER, APM with AWS IDP along with SlackLet's Integrate MuleSoft RPA, COMPOSER, APM with AWS IDP along with Slack
Let's Integrate MuleSoft RPA, COMPOSER, APM with AWS IDP along with Slack
shyamraj55
 
Introduction of Cybersecurity with OSS at Code Europe 2024
Introduction of Cybersecurity with OSS at Code Europe 2024Introduction of Cybersecurity with OSS at Code Europe 2024
Introduction of Cybersecurity with OSS at Code Europe 2024
Hiroshi SHIBATA
 
Columbus Data & Analytics Wednesdays - June 2024
Columbus Data & Analytics Wednesdays - June 2024Columbus Data & Analytics Wednesdays - June 2024
Columbus Data & Analytics Wednesdays - June 2024
Jason Packer
 
5th LF Energy Power Grid Model Meet-up Slides
5th LF Energy Power Grid Model Meet-up Slides5th LF Energy Power Grid Model Meet-up Slides
5th LF Energy Power Grid Model Meet-up Slides
DanBrown980551
 
Deep Dive: AI-Powered Marketing to Get More Leads and Customers with HyperGro...
Deep Dive: AI-Powered Marketing to Get More Leads and Customers with HyperGro...Deep Dive: AI-Powered Marketing to Get More Leads and Customers with HyperGro...
Deep Dive: AI-Powered Marketing to Get More Leads and Customers with HyperGro...
saastr
 

Recently uploaded (20)

A Comprehensive Guide to DeFi Development Services in 2024
A Comprehensive Guide to DeFi Development Services in 2024A Comprehensive Guide to DeFi Development Services in 2024
A Comprehensive Guide to DeFi Development Services in 2024
 
How to Interpret Trends in the Kalyan Rajdhani Mix Chart.pdf
How to Interpret Trends in the Kalyan Rajdhani Mix Chart.pdfHow to Interpret Trends in the Kalyan Rajdhani Mix Chart.pdf
How to Interpret Trends in the Kalyan Rajdhani Mix Chart.pdf
 
System Design Case Study: Building a Scalable E-Commerce Platform - Hiike
System Design Case Study: Building a Scalable E-Commerce Platform - HiikeSystem Design Case Study: Building a Scalable E-Commerce Platform - Hiike
System Design Case Study: Building a Scalable E-Commerce Platform - Hiike
 
Presentation of the OECD Artificial Intelligence Review of Germany
Presentation of the OECD Artificial Intelligence Review of GermanyPresentation of the OECD Artificial Intelligence Review of Germany
Presentation of the OECD Artificial Intelligence Review of Germany
 
Driving Business Innovation: Latest Generative AI Advancements & Success Story
Driving Business Innovation: Latest Generative AI Advancements & Success StoryDriving Business Innovation: Latest Generative AI Advancements & Success Story
Driving Business Innovation: Latest Generative AI Advancements & Success Story
 
UI5 Controls simplified - UI5con2024 presentation
UI5 Controls simplified - UI5con2024 presentationUI5 Controls simplified - UI5con2024 presentation
UI5 Controls simplified - UI5con2024 presentation
 
AWS Cloud Cost Optimization Presentation.pptx
AWS Cloud Cost Optimization Presentation.pptxAWS Cloud Cost Optimization Presentation.pptx
AWS Cloud Cost Optimization Presentation.pptx
 
Ocean lotus Threat actors project by John Sitima 2024 (1).pptx
Ocean lotus Threat actors project by John Sitima 2024 (1).pptxOcean lotus Threat actors project by John Sitima 2024 (1).pptx
Ocean lotus Threat actors project by John Sitima 2024 (1).pptx
 
Taking AI to the Next Level in Manufacturing.pdf
Taking AI to the Next Level in Manufacturing.pdfTaking AI to the Next Level in Manufacturing.pdf
Taking AI to the Next Level in Manufacturing.pdf
 
Your One-Stop Shop for Python Success: Top 10 US Python Development Providers
Your One-Stop Shop for Python Success: Top 10 US Python Development ProvidersYour One-Stop Shop for Python Success: Top 10 US Python Development Providers
Your One-Stop Shop for Python Success: Top 10 US Python Development Providers
 
HCL Notes and Domino License Cost Reduction in the World of DLAU
HCL Notes and Domino License Cost Reduction in the World of DLAUHCL Notes and Domino License Cost Reduction in the World of DLAU
HCL Notes and Domino License Cost Reduction in the World of DLAU
 
HCL Notes und Domino Lizenzkostenreduzierung in der Welt von DLAU
HCL Notes und Domino Lizenzkostenreduzierung in der Welt von DLAUHCL Notes und Domino Lizenzkostenreduzierung in der Welt von DLAU
HCL Notes und Domino Lizenzkostenreduzierung in der Welt von DLAU
 
leewayhertz.com-AI in predictive maintenance Use cases technologies benefits ...
leewayhertz.com-AI in predictive maintenance Use cases technologies benefits ...leewayhertz.com-AI in predictive maintenance Use cases technologies benefits ...
leewayhertz.com-AI in predictive maintenance Use cases technologies benefits ...
 
WeTestAthens: Postman's AI & Automation Techniques
WeTestAthens: Postman's AI & Automation TechniquesWeTestAthens: Postman's AI & Automation Techniques
WeTestAthens: Postman's AI & Automation Techniques
 
June Patch Tuesday
June Patch TuesdayJune Patch Tuesday
June Patch Tuesday
 
Let's Integrate MuleSoft RPA, COMPOSER, APM with AWS IDP along with Slack
Let's Integrate MuleSoft RPA, COMPOSER, APM with AWS IDP along with SlackLet's Integrate MuleSoft RPA, COMPOSER, APM with AWS IDP along with Slack
Let's Integrate MuleSoft RPA, COMPOSER, APM with AWS IDP along with Slack
 
Introduction of Cybersecurity with OSS at Code Europe 2024
Introduction of Cybersecurity with OSS at Code Europe 2024Introduction of Cybersecurity with OSS at Code Europe 2024
Introduction of Cybersecurity with OSS at Code Europe 2024
 
Columbus Data & Analytics Wednesdays - June 2024
Columbus Data & Analytics Wednesdays - June 2024Columbus Data & Analytics Wednesdays - June 2024
Columbus Data & Analytics Wednesdays - June 2024
 
5th LF Energy Power Grid Model Meet-up Slides
5th LF Energy Power Grid Model Meet-up Slides5th LF Energy Power Grid Model Meet-up Slides
5th LF Energy Power Grid Model Meet-up Slides
 
Deep Dive: AI-Powered Marketing to Get More Leads and Customers with HyperGro...
Deep Dive: AI-Powered Marketing to Get More Leads and Customers with HyperGro...Deep Dive: AI-Powered Marketing to Get More Leads and Customers with HyperGro...
Deep Dive: AI-Powered Marketing to Get More Leads and Customers with HyperGro...
 

WhiteSource and FINOS: Empowering Financial Institutions to use Open Source With Confidence

  • 1. 1 Empowering Financial Institutions to Use Open Source With Confidence James McLeod Jeff Crum Director of Community Senior Director of Product Marketing FINOS WhiteSource
  • 2. finos.orgFintech Open Source Foundation Financial services future will be open source and real time.” Chris Skinner (The Finanser) Photo & Quote: BBVA 2017 “
  • 3. finos.orgFintech Open Source Foundation Commits by financial institutions355,508 Repos from financial institutions44,996 24,751 Committers from industry Source:
  • 4. finos.orgFintech Open Source Foundation OSS VALUE (Why?) OSS CHALLENGES (How?) DECISION MAKERS ENABLEMENT LINE OF BUSINESS ENABLEMENT WHY OPEN SOURCE? Business Value of OSS Engagement WHAT TO OPEN SOURCE? Identity “Value Line”, OSS Commercialization Tactics LEGAL Contribution Policy, CLAs, License CULTURAL Cultural, Community RoE TECHNICAL OSS Supply Chain DevOps Workflow Open Source in Regulated Industries Is Not Easy Member Success initiative Open Source Readiness Program Open Developer Platform World-Class OSS legal and Technical Experts HOW CAN FINOS HELP?
  • 5. finos.orgFintech Open Source Foundation Traditional Solution Oriented Business Models 5 PRODUCTION DISTRIBUTION MARKETING CONSUMER In traditional business models Value creation Is linear and one-way
  • 6. finos.orgFintech Open Source Foundation A Linear Delivery Path with Increased Cycle Times Development Integration Test Quality Testing Security Testing UAT & Route to Live TESTS FAIL TESTS FAIL TESTS FAIL TESTS FAIL ▪ Waterfall follows a linear delivery path ▪ Failure Results in Delay and Long Cycle Times
  • 7. finos.orgFintech Open Source Foundation Platforms Thrive in an Open ecosystem 7 In Platform business models Value creation is two-way and continuous Logos are © and (™) of their respective owners PLATFORM ECOSYSTEM
  • 8. finos.orgFintech Open Source Foundation DevOps Equals Agile, Automation and Culture https://marketplace-cdn.atlassian.com/s/public/devops-hero-1-87966cfbc9c5713ae047551c7b22985c.png
  • 9. finos.orgFintech Open Source Foundation Need Proof? Open = Disruptive innovation Google Opens specs for Map Reduce 2004 BIG DATA Amazon launches AWS based on Xen, Linux, Dynamo 2006 CLOUD First release of MongoDB 2007 NOSQL Satoshi releases 0.1 of Bitcoin 2008 BLOCKCHAIN Facebook contributes Cassandra to Apache 2009 NOSQL Yahoo contributes Hadoop to Apache 2011 BIG DATA Node.js joins the Linux Foundation 2015 MODERN DEV Google open sources TensorFlow 2016 MACHINE LEARNING
  • 10. 10 So how can you shift left security successfully?
  • 11. How left can you go? 11 Shifting left the right tools Who owns it? 1 2 3
  • 13. 13 When is the optimal point to integrate security checks into the SDLC? PLAN CODE BUILD MAINT.DEPLOY
  • 14. 14 Detecting Issues as Early as Possible Has Multiple Benefits Coding $80/Defect Build $240/Defect QA & Security $960/Defect Production $7,600/Defect The cost of fixing security and quality issues is rising significantly, as the development cycle advances.
  • 15. 15 66% of companies have already implemented application testing during or even pre-build stage In what stage of the SDLC do you spend most of your time implementing security measures?
  • 16. 16 In what stage of the SDLC do you spend most of your time implementing security measures, by open source usage? The higher usage for open source, the more likely that developers would implement application security tools
  • 18. If the goal is to integrate security pre-build, then who should own application security in the organization? of the respondents stated that the ownership over AppSec lies in the software development side 72% 20% 28% 23% 29%
  • 19. 19 Research shows organizations of all sizes are shifting their operational security to software development teams Who owns security in your organization, by company size?
  • 20. 20 Companies are investing in secure coding training more than ever before of developers say that their company provides them with security training that helps them code better. 36%
  • 22. 22 Both teams need security tools, but in order to shift left security you need to empower your developers. What are the “right” tools? Governance solutions Developers tools Used by security teams and management to get full visibility and control over the security risks in their software Used by developers to remediate vulnerabilities
  • 23. 23 Each Have Different Requirements ▪ Visibility and control through automation ▪ Reports, prioritization and policy enforcement ▪ Information on issues and remediation support ▪ Integration with dev tools, real-time alerts and remediation insights GOAL FEATURES Governance solutions Developers tools
  • 24. How left can you go? 24 Shifting left the right tools Who owns it? 1 2 3
  • 25. finos.orgFintech Open Source Foundation Vision for a Fintech Open Developer Platform 25 METRICS & REPORTINGWEB CONFERENCINGMAILING LISTSWIKI SYMPHONY (ReST API) SYMPHONY (Extension API) FINTECH OPEN DATA High Productivity Turnkey Developer Experience SOFTWARE CONTRIBUTORS SOFTWARE CONSUMERS SYMPHONY (Integration webhooks) Biz & Legal Peace Of Mind - We Do The Hard Part! FINTECH OPEN APIS CLOUD OPEN APIS CODE HOSTING Github Travis CI CONTINUOUS INTEGRATION CONTINUOUS DELIVERY Openshift RELEASE PUBLISHING Maven central, NPM, NuGetWhitesource SECURITY, QUALITY, IP COMPLIANCE Atlassian Confluence Google Groups WebEx Hosted Platforms Development Infrastructure Collaboration Services Future partnerships and contributions Bitergia
  • 26. finos.orgFintech Open Source Foundation 26 colineberhardt.github.io/cla-bot Pull Request Made to a FINOS GitHub Repository
  • 27. finos.orgFintech Open Source Foundation 27 CLA Bot Gives Real Time Licensing Feedback
  • 28. finos.orgFintech Open Source Foundation 28 Building and Testing Triggered by Pull Request
  • 29. finos.orgFintech Open Source Foundation 29 DevSecOps with Automated Vulnerability Testing ▪ Build if tests pass ▪ Alert if tests fail
  • 30. finos.orgFintech Open Source Foundation 30 Real Time Dependency Vulnerability Testing
  • 31. finos.orgFintech Open Source Foundation 31 Vulnerability Reporting at File Dependency Level
  • 32. finos.orgFintech Open Source Foundation 32 Merging and K8 Deployment at Tests Passed
  • 33. finos.orgFintech Open Source Foundation 33 finos.org/odp/docs > Development Infrastructure > Code Validation Multi Language ODP Validation Tools Matrix
  • 34. finos.orgFintech Open Source Foundation 34 Following the Open Source Compliance Pattern The functional components of an Open Source compliance toolchain produced by the Open Source Tooling group of the OpenChain Project
  • 35. finos.orgFintech Open Source Foundation Community Open Ecosystem THE OPEN PLATFORM Openness Enables Thriving Ecosystems 35 Value Line NETWORK CONTENT APP Open Standards (Open API) PLATFORM VENDOR END USER / INTEGRATOR , Semi-Open Ecosystem, Lower CAC, Easy integration Reduced vendor lock-in, solutions reuse, influence via standards groups Finos.org Value is in the ecosystem, Platform is just an enabler Open Source Fully Open Ecosystem, Focus on Core IP, cheaper Go-to-Market, broad talent pool, Community input / contributions No vendor lock-in, influence via contribution, lower overall software TCO, talent acquisition and retention, security by many eyeballs Open Standards ensure high longevity for open source software Open Source enables faster standard adoption and iterations