CISA's Aeva Black and the Public Sector View of Open Source Security

27/08/2024 12 min

Listen "CISA's Aeva Black and the Public Sector View of Open Source Security"

Episode Synopsis

In this episode, Omkhar Arasaratnam visits with Aeva Black, who currently serves as the Section Chief for Open Source Security at CISA, and is an open source hacker and international public speaker with 25 years of experience building open source software projects at large technology companies. She previously led open source security strategy within the Microsoft Azure Office of the CTO, and served on the OpenSSF Technical Advisory Committee, the OpenStack Technical Committee, and the Kubernetes Code of Conduct Committee. In her spare time, Aeva enjoys riding motorcycles up and down the west coast.01:37- Aeva describes a day in the life at CISA02:38 - Details on the use of open source in the public sector04:27 - Why open source needs corporate investment to maintain security06:20 - Aeva shares what their second year at CISA looks like07:58 - Aeva answers Omkhar’s rapid-fire questions09:28 - Advice for people entering the world of security10:16 - Certs are nice to have, but they aren’t everything10:42 - Aeva’s call to action for listenersEpisode links:Aeva Black on LinkedInCISA Open Source Security RoadmapGet involved with the OpenSSF community

More episodes of the podcast What's in the SOSS? An OpenSSF Podcast

2025 Year End Wrap Up: Celebrating 5 Years of Open Source Security Impact! 30/12/2025

Teaching the Next Generation: Software Supply Chain Security in Academia with Justin Cappos 16/12/2025

Securing the Future: AI, Open Source, and Collaboration with Jay White (Microsoft) 02/12/2025

SBOM Chaos and Software Sovereignty: The Hidden Challenges Facing Open Source with Stephanie Domas (Canonical) 19/11/2025

A Deep Dive into the Open Source Project Security (OSPS) Baseline 04/11/2025

Building Trust in Open Source: Seth Larson's Journey from Maintainer to Security Leader 21/10/2025

New Education Course: Secure AI/ML-Driven Software Development (LFEL1012) with David A. Wheeler 16/10/2025

The Remediation Revolution: How AI Agents Are Transforming Open Source Security with John Amaral of Root.io 07/10/2025

From Manager to Open Source Security Pioneer: Kate Stewart's Journey Through SBOM, Safety, and the Zephyr Project 23/09/2025

Racing Against Quantum: The Urgent Migration to Post-Quantum Cryptography with KeyFactor's Crypto Experts 09/09/2025

Ver todos los episodios

ZARZA We are Zarza, the prestigious firm behind major projects in information technology.

CISA's Aeva Black and the Public Sector View of Open Source Security

Listen "CISA's Aeva Black and the Public Sector View of Open Source Security"

Episode Synopsis

More episodes of the podcast What's in the SOSS? An OpenSSF Podcast

Preparing for a Hacker Threat

Internet as human right and its scope

Bandwidth: Broadband or Narrowband?

Personnel recruitment via Web

Deep web or Invisible Internet

Subdomains, a glance with the experts!

Free Internet, a prediction in Nostradamus style

Educational Technology: From traditional to digital

Localhost, there’s no place like 127.0.0.1

Googling with breathtaking tricks you ignore

Gray Hat Hacking, those with ambiguous ethics…

Internet Predators on the prowl

Dot COM: The Internet’s dominant TLD