Capital One joins the Open Supply Safety Basis (OpenSSF) as a premier member affirming its dedication to strengthening the open supply software program provide chain.
Capital One joins the OpenSSF Governing Board in control of main the group and offering strategic path.
“We’re joyful to welcome Capital One to the Open Supply Safety Basis,” says Brian Behlendorf, Normal Supervisor of OpenSSF. “As a extremely regulated firm that has invested in know-how, Capital One has expertise constructing the governance construction, trendy structure and collaborative tradition that’s vital for well-managed open supply software program supply. By becoming a member of the OpenSSF, Capital One is demonstrating a critical dedication to safe open supply software program that advantages our total ecosystem.”
As one of many nation’s main digital banks, know-how is central to Capital One’s enterprise technique and the way worth is delivered to greater than 100 million prospects. The corporate started a know-how transformation over a decade in the past, which included an open source-first declaration in 2015. A contemporary structure within the cloud is permitting Capital One to make the most of the world’s improvements and speed up supply by committing to a collaborative software-building method among the many open supply neighborhood.
“At present among the most ground-breaking digital experiences created for patrons are based mostly on open supply software program. As an organization that broadly adopts this know-how, Capital One is extremely proud to affix the OpenSSF and the world’s know-how leaders as we collaborate to strengthen the software program safety provide chain,” mentioned Chris Nims, EVP of Cloud & Productiveness Engineering at Capital One. “As a highly-regulated firm, we’re seasoned in managing compliance and governance and advocate for standardization, automation and collaboration. We stay up for working collectively to establish options that advance the OpenOSSF mission and provides again to the open supply neighborhood.”
Earlier this yr, the OpenSSF unveiled a 10-point plan on the Open Supply Safety Summit hosted at the side of the White Home in Might. The plan feeds into 10 totally different workstreams, like discovering methods to cut back patching response occasions for open supply software program, creating new metrics to trace code and parts, shifting the {industry} away from non-memory protected programming languages that make it troublesome to search out and repair vulnerabilities, establishing a framework for incident response groups that may be deployed throughout the open supply neighborhood and conducting annual third-party critiques of the highest 200 most important open supply safety parts. Extra just lately, the OpenSSF hosted a City Corridor particularly for open supply software program maintainers, contributors, software program builders, and open supply software program customers who know safety is necessary, however haven’t made the leap to affix an OpenSSF Working Group or Mission but. On Tuesday, September thirteenth, they are going to be internet hosting an OpenSSF Day EU on the Open Supply Summit Europe in Dublin, Eire and on-line.
Capital One joins different OpenSSF premier members 1Password, AWS, Atlassian, Cisco, Citi, Coinbase, Dell Applied sciences, Ericsson, Constancy, GitHub, Google, Huawei, Intel, IBM, JFrog, JPMorgan Chase, Meta, Microsoft, Morgan Stanley, Oracle, Pink Hat, Snyk, Sonatype, VMware, and Wipro.