Episode 67

Episode 67 - Cassie Crossley - Author of "Software Supply Chain Security"

In this episode of the Cyber Inspiration Podcast, our host, Evgeniy Kharam, delves into a captivating conversation with Cassie Crossley, an industry expert and author in the cybersecurity space. Cassie shares her journey of writing a groundbreaking book, "Software Supply Chain Security", that sheds light on the often overlooked realm of software supply chain security.

Here's a glimpse into the key points discussed:

  1. Introduction to Cassie and Her Book: Cassie, who has been immersed in cybersecurity for over 14 years, shares her motivation behind writing her book. Focused on bridging the gap in understanding product security and software supply chain security, Cassie's book delves into critical aspects that many overlook.
  2. The Journey of Writing the Book: Cassie narrates her journey from recognizing the need for comprehensive documentation in her interactions with suppliers to the realization that she needed to write a book. Collaborating with a community called the Purple Book, Cassie initially contributed a chapter on software supply chain security, which eventually evolved into a full-fledged book published by O'Reilly Media.
  3. Challenges and Triumphs: From grappling with imposter syndrome to overcoming the daunting task of writing, Cassie discusses the highs and lows of the writing process. Despite the challenges, her dedication to filling the gap in cybersecurity literature kept her motivated.
  4. Target Audience and Content: Cassie shares insights into her target audience, which includes both developers and C-suite executives. Her book serves as a comprehensive guide for anyone involved in software development or procurement, providing actionable insights and raising awareness about the importance of secure development practices.
  5. Writing Process: Cassie reveals her writing process, such as recording sections and transcribing them to overcome writer's block. She emphasizes the importance of collaboration, technical reviewers, and developmental editors in refining the content.
  6. Future Endeavors: While reflecting on her writing journey, Cassie hints at potential future projects, including a book aimed at board-level executives to enhance their understanding of cybersecurity risks, particularly in the realm of software supply chain security.
  7. Expectations for the Book: Cassie discusses the potential for an audio version of her book and the challenges associated with translation into other languages. Despite the hurdles, she remains hopeful that her book will reach a broader audience and make a meaningful impact in the cybersecurity community.

Join us in exploring Cassie's insightful journey and the invaluable lessons she shares in her groundbreaking book on software supply chain security. Stay tuned for more inspiring conversations on the Cyber Inspiration Podcast.

Note: The book discussed in this episode is available for purchase HERE

About the Podcast

Show artwork for Cyber Inspiration
Cyber Inspiration
Cyber Inspiration

About your host

Profile picture for Evgeniy Kharam

Evgeniy Kharam

Evgeniy has the opportunity to spend more than 40,000 hours working in cybersecurity,
providing pre and post-sales support in various technologies and later as an architect and principal consultant.
Evgeniy is very passionate about technology, vendors, and architecture. He brings a lot of knowledge about VAR, MSSP, and technical pre-sales. He believes in connected infrastructure that there is a significant need for vendor consolidation and the ability for security control to integrate and share information.
Evgeniy is proficient in speaking on most cyber security technical domains, which include: Endpoint Security, Network Security, SIEM/SOC/SOAR, SASE/SEE, VMS, and many more.
In 2020, Evgeniy co-hosted a Security Architecture Podcast. The podcast format focuses on architecture and vendor integration into the customer environment
In 2022 he founded the Cyber Inspiration podcast; the podcast explored the minds of CTOs and CEOs when they started their cyber security company!
Personal: Evgeniy has four kids, a daughter, a son, and twins (boy and girl) . Twins are a great way to learn to multitask, and nothing scares me anymore :)(besides snakes)
Hobbies: Photography, podcasting, public speaking, snowboarding, whitewater canoeing, SUP, mountain biking, motorcycles, breathing techniques, and gadgets