🎫 Join 📚Abdullah Garcia of J.P. Morgan for Exploring a Risk Approach to Software Supply Chain Security at our Open Source in Finance Forum on 26th June in #London 🔗 https://bit.ly/4dA6XBI Talk Abstract Throughout the presentation, I dive into software supply chain attacks and explain how they unfold incrementally. By understanding the latter, attendees will learn how to analyse their firms' internal processes for software ingestion, integration, and testing to account for Supplier Risk both during and after deployment. Attendees will also understand how the risk-based model can respond to software supply chain attacks even when they are not detected until later in the internal software supply chain, and gain critical insight into the kinds of changes needed in their organisations' internal processes and software tools to support this approach. 📆 OSFF Schedule: https://bit.ly/4dB4bwq Event presented by FINOS & The Linux Foundation #OSFF2024 #OSinFinance #opensource #fintech #financialservices #techevent #conference #opensourcecommunity
FINOS’ Post
More Relevant Posts
-
🎫 Join Luigi Gubello of Pitch for OpenSSF Security Insights: Empower Your GovOps at our Open Source in Finance Forum on 26th June in #London 🔗 https://bit.ly/3wwMvRQ Talk Abstract Discover the OpenSSF Security Insights specification, redefining open-source project security standards and compliance through automation and measurement. This specification provides a concise, machine-readable overview of project security, simplifying both human interpretation and automated processing. The specification helps security engineers and developers to have a project overview, standardizes attestation related to policies and licenses, and makes enables measurable information collection for open-source artifacts. This missing capability is essential for anyone creating software for highly regulated industries. Come explore the value of this open specification and the ecosystem that is quickly growing around it. 📆 OSFF Schedule: https://bit.ly/4agvQj7 Event presented by FINOS & The Linux Foundation #OSFF2024 #OSinFinance #opensource #fintech #financialservices #techevent #conference #opensourcecommunity
To view or add a comment, sign in
-
🚨 Major Data Breach Alert: Finastra's SFTP Compromised 🚨 Recently, Finastra, a leading financial tech company, discovered a significant data breach in their Secure File Transfer Platform
To view or add a comment, sign in
-
🎫 Join Justus Ortlepp of The Linux Foundation for Tazama Real-Time Open Source Software for Fraud Detection at our Open Source in Finance Forum on 26th June in #London 🔗 https://bit.ly/3xPODo9 Talk Abstract Tazama is a recently launched project in the Linux Foundation. Tazama offers open source real-time transaction monitoring software for fraud and money-laundering detection. Our presentation introduces the product and its origin story, from its ideation as one of the Bill & Melinda Gates Foundation's Level One principles, to its MVP launch in April 2022 and ultimately its integration into the Linux Foundation. We will provide an overview of our mission, specifically to enable financial inclusion by promoting trust in digital financial ecosystems. We will also provide insight into our adjacent work in establishing a standards body that will collect and publish standards for reporting, sharing and actioning information on Financial Crime. Finally we will present the product itself to give the audience an overview of the features, capabilities and context within their own ecosystems. 📆 OSFF Schedule: https://bit.ly/3JCOhU8 Event presented by FINOS & The Linux Foundation #OSFF2024 #OSinFinance #opensource #fintech #financialservices #techevent #conference #opensourcecommunity
To view or add a comment, sign in
-
*Trade & Capital Account Learning of the day :29* *Who should be contacted for technical issues on the portal?* *Technical issues like not receiving Login IDs, user credentials not working, etc. can be resolved by sending a request e-mail to [email protected] through registered e-mail ID.*
To view or add a comment, sign in
-
Protecting PII Data With JWT https://lnkd.in/dM76c_-w The Challenge JWT tokens are widely used for securing APIs through authentication and authorization. When an API request arrives, the resource server decodes and verifies the JWT token, typically validating the signature for authentication and checking claims or scopes for authorization. For example, the server might use claims in the token to decide if the user can access a particular endpoint. However, finer access control is often needed. For instance, when a request fetches a customer's bank account details, the server must ensure the user is accessing their own account, not someone else's.
To view or add a comment, sign in
-
🔒 Finastra's Major Data Breach: A Wake-Up Call for Financial Tech? Finastra, a leading financial technology firm, recently faced a serious data breach involving their Secure File Transfer Platform
To view or add a comment, sign in
-
How a Single Code Error Cost a Company $440 Million in 45 Minutes In 2012, Knight Capital Group lost $440 million in just 45 minutes due to a small code error. 🖥️ What happened? • During an update of their trading software, one server did not receive the new update. • Old code, unused for 8 years, was activated because of a configuration mistake. • The automated system began making erroneous trades, buying and selling stocks at incorrect prices. Why did this happen? • Insufficient testing: The new code wasn’t thoroughly tested. • Improper deployment: The update wasn’t applied to all servers. • Lack of safeguards: No systems were in place to detect and stop abnormal activity. Lessons learned: • Thorough testing before implementing changes. • Reliable software deployment processes. • Security systems capable of quickly responding to errors. #KnightCapital #CodeError #BusinessLessons #ITSecurity
To view or add a comment, sign in
-
Forgetting to handle potential disconnections can wreak havoc on your MQL5 trading bot's behavior. Disconnections from the trading server, while infrequent, can occur due to various reasons like internet outages, broker maintenance, or software issues. #AlgoTrading #MQL5
To view or add a comment, sign in
-
At SwiftCSV, every file goes through rigorous checks for accuracy. Our precision-driven results ensure your data is clean, balanced, and ready to use. Convert with confidence: https://lnkd.in/eUMwGQNS #DataAccuracy #DataConversions #CSVFiles #SwiftCSV
To view or add a comment, sign in
-
📱Tech Enhancement Updates!! Enjoy seamless workflows with our new 'Save As Template' in FIR, clear glidepath risk levels in #TDF Analyzer, and sorted funds in the #Fund Lookup. 💻 Gain more with enriched Advisor Reports, a smoother RPAG Login, and a streamlined #RFPExpress. Tune into our Tech Enhancement shorts on #YouTube to learn more about our updates! https://hubs.li/Q02qFwqn0
To view or add a comment, sign in
7,242 followers
📚Abdullah Garcia I wish I could be there to see you speak. I know it will be insightful and engaging. To all that are going, make sure to make time for this talk.