About SolarWind’s Build System
The system conducts software builds in parallel, assuming a breach position to eliminate implicit trust in applications and services, and employing ephemeral operations to eliminate dependencies. The system also utilizes automated tools for regular vulnerability scanning throughout the development process and generates a software bill of materials (SBOMs) providing a full picture of all components used in the build process, according to the company.Tim Brown, Chief Information Security Officer and VP, Security, SolarWinds, commented:"The SSDF guidelines will be an important step in strengthening our nation's overall cybersecurity posture. At SolarWinds, we've implemented our Secure by Design initiative with the goal of becoming a leader in enterprise software security. This has included aligning our software development processes with NIST’s Secure Software Development Framework and CISA’s Enduring Security Framework as outlined by the National Cybersecurity Strategy."