Uploaded image for project: 'OpenShift Workloads'
  1. OpenShift Workloads
  2. WRKLDS-1034

02- [OSSO 1.3.0] Product Security Onboarding

XMLWordPrintable

    • Icon: Task Task
    • Resolution: Done
    • Icon: Major Major
    • None
    • None

      Where to Start: Establish a relationship with the ProdSec Security Architect assigned to the program to complete RH-SDL requirements. If you do not have a Security Architect, request one by submitting form: https://url.corp.redhat.com/start-sdl

      Introduction:
      Red Hat is a trusted open source software vendor chosen as part of our customers’ supply chain. This trust has to be earned and demonstrated through the secure development and incident response for our products and services, telling a compelling story that our customers and partners can verify. The Red Hat Secure Development Lifecycle (RH-SDL) implementation plan provides clear and actionable tasks and workflows to implement security controls, that Red Hat Engineering adopts during the lifecycle of an offering to improve its security posture.
      The scope of the RH-SDL includes all products, managed and online services, operators, and other code that is:
      Released or operated by Red Hat
      Supported by Red Hat
      Offered to customers

      Complete RH-SDL requirement by ProdSec: https://docs.google.com/document/d/1QMrM5ac2sbecmy7lYHA8S6p8L8ivVwHlgdcspy-Z4VE/edit#heading=h.66y4kqbj468a

      Responsible: Product Management/Engineering/Program Management
      Consulted: Product Security

              rhn-support-rsidhart Ramona Sidharta
              rhn-support-rsidhart Ramona Sidharta
              Catalina Sagan
              Votes:
              0 Vote for this issue
              Watchers:
              1 Start watching this issue

                Created:
                Updated:
                Resolved: