Interlynk

?? OwnersBox Selects Interlynk to Strengthen PCI DSS Compliance ?? OwnersBox, a leading fantasy sports and gaming innovator, has chosen Interlynk to enhance its compliance with PCI DSS4 (Payment Card Industry Data Security Standard) and improve security through the total product lifecycle. By leveraging Interlynk’s industry-leading Software Bill of Materials (SBOM) automation platform, OwnersBox is taking proactive steps to ensure robust security, regulatory adherence, and continuous risk management for its payment processing infrastructure. "At OwnersBox, the security of our users’ financial transactions is a top priority," said Brian Kipp, CEO at OwnersBox. "After reviewing many options, we found the Interlynk platform to be the most innovative and best suited for strengthening our compliance posture while ensuring that our payment ecosystem remains secure, transparent, and resilient against emerging cyber threats." About OwnersBox OwnersBox is a leading fantasy sports platform providing fans an engaging and dynamic experience. With innovative gameplay and a commitment to user security, OwnersBox redefines how Daily fantasy sports are played. OwnersBox has established itself as an emerging platform in the fantasy sports sector, delivering a dynamic and engaging experience for users. The company's innovative gameplay models, coupled with a robust commitment to user security, are redefining the daily fantasy sports landscape About Interlynk Interlynk is a leading provider of SBOM automation solutions, helping organizations manage software supply chain security, vulnerability management, and regulatory compliance. Its platform is trusted by businesses across various industries to enhance transparency and mitigate cyber risks. Thank you, Cosimo Commisso, for your insights, trust and for being an incredible partner. Press Release: https://lnkd.in/gP4h23qA

?? New Blog: sbommv in Action! ?? Our latest blog explores how to use sbommv to enable seamless SBOM transfers across platforms like GitHub Releases, S3, local folders, free and open-source OWASP Dependency-Track, security tools, and the Interlynk SBOM platform (including the free community edition). sbommv is part of Interlynk’s open-source toolset: ?? sbomqs – SBOM Compliance Analysis ?? sbomasm – SBOM In-line Editing & Merging ?? sbomgr – SBOM Contextual Search Interlynk is making SBOM management more efficient and automated. If you're dealing with SBOM distribution challenges, this blog is for you! ?? Read the full post: https://lnkd.in/gnk5H8mS ??? Try sbommv: https://lnkd.in/gybCRqEZ

"???????????? ???????????????? ?????? ?????????? ?????????? ???????? ??????" This blog highlights the challenges developers, SBOM community members, and security teams face when managing SBOMs manually across systems—and how to solve them. Let’s dive in! If you’ve faced this challenge, I’d love to hear your thoughts! OWASP? FoundationSPDX SBOM Interlynk

?? State Department Cybersecurity Business as Usual For Now ?? The Federal government will uphold Biden-era cybersecurity strategies, including its approach to protecting critical infrastructure and data, a senior State Department cybersecurity official stated on March 6 at an ATARC event. President Trump has retained Executive Order 14028, which mandates Federal agencies to adopt cloud services, monitor software supply chains, and transition to zero-trust security architectures to enhance long-term cybersecurity. Read More: https://lnkd.in/ggMY7f-g

?? Friday is SBOM Jobs Day! ?? Are you looking to advance your career in software supply chain security? Several leading companies hire professionals with SBOM expertise to help ensure product security and compliance with regulations like the US FDA, EU NIS2, EU DORA, US Executive Order 14028, EU Product Liability Directive (PLD), EU Cyber Resilience Act (CRA) and PCI DSS4.0. If you're passionate about securing open-source software and third-party components, these roles offer a fantastic opportunity to be at the forefront of innovation in SBOM automation and software security. Check out the open positions and take the next step in your career! ???? [Emerson] Product Security Architect, Marshalltown (IA) https://lnkd.in/gCjbjhHd [Emerson] Software Supply Chain Security Engineer, Shakopee (MN) https://lnkd.in/gBhRnnuD [Mirion] Product Cybersecurity Manager, Atlanta (GA), Remote https://lnkd.in/gRPF5XgT [Clarity]?Senior Principal Platform Engineer (Lead), Herndon (VA) https://lnkd.in/gdWNMJdq Good luck, and reach out to Interlynk if you need help getting started: https://lnkd.in/gikYTtSY

??? Interlynk v3.1.1 release makes it simpler, faster, and secure ??? ?? Component Support Management continues to strengthen with ? Bulk Update Support Status to save time in large SBOMs ?? CSV Export with Support Details, including support level for parts ?? Source Code Integrations now include BitBucket and resilience with GitHub ?? Bitbucket Integration with support for webhooks ?? Enhanced Repository Connections - Improved GitHub handling ?? User Management ?? User CSV Export - Export user information as CSV ?? Improved Invitation Flow - Updats to user invitations flow ?? Organization User Pagination - Added user list pagination ?? SBOM Enhancements ? ?? Comparison Layout Improvements - Clearer visualization of differences ??? Drag and Drop Upload - Full-screen SBOM drag and drop support ?? Auto-Archive for Ready Status - Automatic archiving feature when new SBOM has been processed ??? Vulnerability Management ?? Affected Products View - View products in the Global Vulnerability View ?? Expanded View Improvements - Improvements to expanded components ? Performance Optimizations ?? Improved Memory Management - Sluggish performance squished ?? Enhanced Database Connections - Improve reliability of database operations ?? Bug Fixes Eight bugs squashed ?? System Monitoring Enhancements ?? Enhanced Logging - Better system logging capabilities ?? Email Security - Updated email validation for better security ?? Monitoring Enhancements - Improved error monitoring and handling Read our official release notes here - https://lnkd.in/gV2F8mCr

?? UK DSIT report on Open Source security underscores SBOM ?? UK's Department for Science, Innovation and Technology (DSIT) has released a report on open-source best practices and supply chain risk management. The comprehensive report finds several weaknesses in the current practices for open-source consumption and makes four recommendations, including organization-wide adoption of SBOM: ??? Establish an internal OSS policy to manage the adoption of OSS components. ??? Create a Software Bill of Materials (SBOM) to track OSS components and their dependencies. ??? Continuously monitor the organisation’s software supply chain using a software composition analysis (SCA) tool to identify vulnerabilities and licensing issues. ??? Promote active engagement with the OSS community to attract new talent, level the competitive playing field, foster innovation, improve reputation, and ensure high-quality OSS components and a sustainable OSS ecosystem. Learn More: https://lnkd.in/gSAaAtHf

?? SBOM Compliance in NIS2, DORA, PCI DSS4, and CRA ?? The EU is tightening cybersecurity regulations, and SBOM plays a crucial role in meeting compliance across different frameworks: ?? NIS2 – Expands cybersecurity mandates for critical sectors, emphasizing supply chain security. ?? DORA – Strengthens resilience in the financial sector, requiring transparency in third-party software risks. ?? CRA – Directly impacts software and hardware vendors by enforcing secure development and vulnerability management. ??? PCI DSS4 – Required for safe handling of credit card payment processing. For organizations managing software supply chain risks, SBOM is becoming essential for compliance. Which regulation affects your organization the most? Learn more: https://lnkd.in/gD2X5ssY

?? Singapore considers SBOM for Medical Device Best Practices ?? Singapore's Medical Devices Cluster (MDC) has released a draft of the Best Practices Guide for Medical Device Cybersecurity for stakeholders' consultation. This draft - now in stakeholder review until May 12th - provides best practice recommendations and considerations to all medical device manufacturers and healthcare providers on general cybersecurity principles to ensure medical devices are secure throughout the Total Product Life Cycle (TPLC). The draft embraces key FDA recommendations, including: ?? Total Product Life Cycle (TPLC) Framework ?? Use of SBOM for compliance and incident response ?? End-of-life / End-of-service management ?? Transparency and communication Learn more: https://lnkd.in/e3fPT4PV

?? Friday is SBOM Jobs Day! ?? Are you looking to advance your career in software supply chain security? Several leading companies hire professionals with SBOM expertise to help ensure product security and compliance with regulations like the US FDA, EU NIS2, EU DORA, US Executive Order 14028, EU Product Liability Directive (PLD), EU Cyber Resilience Act (CRA) and PCI DSS4.0. If you're passionate about securing open-source software and third-party components, these roles offer a fantastic opportunity to be at the forefront of innovation in SBOM automation and software security. Check out the open positions and take the next step in your career! ???? [VistaEquityPartners] Associate Cybersecurity Engineer, Austin (TX) https://lnkd.in/gMNF3DJw [Credence Management Corporation]?Sr. DevSecOps Engineer, McLean (VA) https://lnkd.in/gC6ztydu [MUFG] Senior DevSecOps Engineer, Vice President, Tempe (AZ), Jersey City (NJ), Tempa (FL) https://lnkd.in/gE_ZBR7s [Johnson & Johnson]?Technical Fellow, Product Security - Remote US https://lnkd.in/g2j6qrkZ Good luck, and reach out to Interlynk if you need help getting started: https://lnkd.in/gikYTtSY