Authority to Operate (ATO) is a process that certifies a system to operate for a certain period of time by evaluating the risk of the system's security controls. ATO is based on the National Institute of Standards and Technology’s Risk Management Framework (NIST 800-37). In this podcast, Shane Ficorilli and Hasan Yasar, both with the Carnegie Mellon University Software Engineering Institute, discuss continuous ATO, including challenges, the role of DevSecOps, and cultural issues that organizations must address.
10 Types of Application Security Testing Tools and How to Use Them
Using Test Suites for Static Analysis Alert Classifiers
Blockchain at CMU and Beyond
Leading in the Age of Artificial Intelligence
Deep Learning in Depth: The Future of Deep Learning
Deep Learning in Depth: Adversarial Machine Learning
System Architecture Virtual Integration: ROI on Early Discovery of Defects
Deep Learning in Depth: The Importance of Diverse Perspectives
A Technical Strategy for Cybersecurity
Best Practices for Security in Cloud Computing
Risks, Threats, and Vulnerabilities in Moving to the Cloud
Deep Learning in Depth: IARPA's Functional Map of the World Challenge
Deep Learning in Depth: Deep Learning versus Machine Learning
How to Be a Network Traffic Analyst
Workplace Violence and Insider Threat
Why Does Software Cost So Much?
Cybersecurity Engineering & Software Assurance: Opportunities & Risks
Software Sustainment and Product Lines
Best Practices in Cyber Intelligence
Deep Learning in Depth: The Good, the Bad, and the Future
Create your
podcast in
minutes
It is Free