Artwork for podcast Cyber Inspiration
Episode 67 - Cassie Crossley - Author of "Software Supply Chain Security"
Episode 6711th April 2024 • Cyber Inspiration • Evgeniy Kharam and Security Architecture
00:00:00 00:21:52

Share Episode


In this episode of the Cyber Inspiration Podcast, our host, Evgeniy Kharam, delves into a captivating conversation with Cassie Crossley, an industry expert and author in the cybersecurity space. Cassie shares her journey of writing a groundbreaking book, "Software Supply Chain Security", that sheds light on the often overlooked realm of software supply chain security.

Here's a glimpse into the key points discussed:

  1. Introduction to Cassie and Her Book: Cassie, who has been immersed in cybersecurity for over 14 years, shares her motivation behind writing her book. Focused on bridging the gap in understanding product security and software supply chain security, Cassie's book delves into critical aspects that many overlook.
  2. The Journey of Writing the Book: Cassie narrates her journey from recognizing the need for comprehensive documentation in her interactions with suppliers to the realization that she needed to write a book. Collaborating with a community called the Purple Book, Cassie initially contributed a chapter on software supply chain security, which eventually evolved into a full-fledged book published by O'Reilly Media.
  3. Challenges and Triumphs: From grappling with imposter syndrome to overcoming the daunting task of writing, Cassie discusses the highs and lows of the writing process. Despite the challenges, her dedication to filling the gap in cybersecurity literature kept her motivated.
  4. Target Audience and Content: Cassie shares insights into her target audience, which includes both developers and C-suite executives. Her book serves as a comprehensive guide for anyone involved in software development or procurement, providing actionable insights and raising awareness about the importance of secure development practices.
  5. Writing Process: Cassie reveals her writing process, such as recording sections and transcribing them to overcome writer's block. She emphasizes the importance of collaboration, technical reviewers, and developmental editors in refining the content.
  6. Future Endeavors: While reflecting on her writing journey, Cassie hints at potential future projects, including a book aimed at board-level executives to enhance their understanding of cybersecurity risks, particularly in the realm of software supply chain security.
  7. Expectations for the Book: Cassie discusses the potential for an audio version of her book and the challenges associated with translation into other languages. Despite the hurdles, she remains hopeful that her book will reach a broader audience and make a meaningful impact in the cybersecurity community.

Join us in exploring Cassie's insightful journey and the invaluable lessons she shares in her groundbreaking book on software supply chain security. Stay tuned for more inspiring conversations on the Cyber Inspiration Podcast.

Note: The book discussed in this episode is available for purchase HERE




More from YouTube