Securing Open Source to Boost Developer Community ExperienceNahas Mohammed, Regional Sales Director of GitHub India, Shares Security Practices
Software life cycle management has always been part of the development team, but organizations are now looking to extend the process beyond the development team to manage the entire supply chain, says Nahas Mohammed, regional sales director at GitHub India.
"Our principle is to basically expand the life cycle management to also include the software supply chain," Mohammed says. "That's how we build confidence in the developers to say that, in addition to ensuring that there is security around the code, that you will be ensuring that the code that you consume from open source is also managed well."
GitHub has built a framework that helps developers build custom search queries to scan their code, which might require them to meet compliance standards that developers or their organization aligns with. Developers can actually use the framework to build their own custom queries.
In this video interview with Information Security Media Group at ISMG's Cybersecurity Summit held in Mumbai, Mohammed discusses:
- How GitHub is building confidence in the software development life cycle to address security concerns;
- How to establish responsible security practices in the open-source ecosystem;
- GitHub's vision for 2023 and plans for the developer community.
Mohammed has spent more than 20 years in the IT industry, spanning customer, consulting and vendor points of view. Before joining GitHub, he worked for Microsoft, Aditi Technologies and other firms. He has performed roles across multiple business divisions, including product sales and product marketing, with profit-and-loss responsibility, working with multicultural peers and C-Level executives across geolocations. His specialties include executive relationship management, business development, solutions sales, technical account management, direct product sales, technical evangelism, project delivery management and driving strategic marketing initiatives.