swannysec

@[email protected]
187 Followers
176 Following
12 Posts
Director of Security Strategy @github
https://swannysec.net
swannysecApr 24, 2024

🚀 Our effort to better secure the first link in the software supply chain - developers - through strong authentication was a three-year journey and I am thrilled to have worked with an amazing team to bring it to life. We made a ton of progress in 2023, but the work of securing developers never ends and there's more to come.

We believe it's vital that other organizations to join us in raising the bar! If you're curious about how we did it, stay tuned for more details soon. ❤️ 🔒

https://github.blog/2024-04-24-securing-millions-of-developers-through-2fa/

Securing millions of developers through 2FA

We’ve dramatically increased 2FA adoption on GitHub as part of our responsibility to make the software ecosystem more secure. Read on to learn how we secured millions of developers and why we’re urging more organizations to join us in these efforts.

The GitHub Blog
swannysecOct 31, 2023

If you're interested in learning more about how we're securing the software supply chain by bringing 2FA to millions of developers @github grab a free virtual pass and check out our panel at #GitHubUniverse.

I'll be joined by the amazing Hannah Gould, Hirsch Singhal, and Ben Vance, who will chat about our 2FA journey and share lessons for others who want to join us in raising the 2FA bar.

https://githubuniverse.com/?utm_source=social&utm_medium=social&utm_campaign=speaker

GitHub Universe

GitHub's global developer event is back. Join the world's fair of software.

GitHub Universe
swannysecAug 30, 2023

Talking 2FA at scale at GitHub as a means of protecting the software supply chain, starting with the developer. Thanks @michaelnovinson!

https://www.inforisktoday.com/role-2-factor-authentication-in-developer-security-a-22950

The Role of 2-Factor Authentication in Developer Security

In today's evolving digital landscape, application security is crucial. That’s why it is increasingly important to normalize the use of two-factor authentication

swannysecAug 13, 2023
John AppelAug 13, 2023
WOO (A Workshop of Our Own), an organization in Baltimore that provides lessons and a safe workspace for women and non-binary people in Baltimore, needs to move and is raising funds. Donations through 10 AM Monday up to $2750 are being matched! Can you chip in or signal boost? Thanks. #Woodworking
https://www.gofundme.com/f/woos-big-move-keep-a-workshop-of-our-own-alive
swannysecAug 4, 2023

This week I had a chance to speak about GitHub’s 2FA enrollment campaign to help secure the software supply chain on the @ITSPmagazine Podcast with @sean_martin and @Marcociappelli. Had a blast discussing culture as it relates to Security.



https://redefining-cybersecurity.simplecast.com/episodes/i-was-tasked-with-enrolling-millions-of-developers-in-2fa-heres-what-happened-at-github-a-conversation-with-john-swanson-las-vegas-black-hat-2023-event-coverage-redefining-cybersecurity-podcast-with-sean-martin-and-marco-ciappelli

I Was Tasked With Enrolling Millions of Developers in 2FA - Here's What Happened at GitHub | A Conversation with John Swanson | Las Vegas Black Hat 2023 Event Coverage | Redefining CyberSecurity Podcast With Sean Martin and Marco Ciappelli | Redefining CyberSecurity

In this Chats on the Road to Black Hat USA, hosts Sean and Marco are joined by John Swanson to discuss the challenges and importance of implementing two-factor authentication for developers on the GitHub platform. They explore the role of culture, collaboration, and usability in cybersecurity.

Redefining CyberSecurity
swannysecMar 9, 2023

This work has been my focus since September of 2021. It's challenging and deeply impactful work and I share it with a wonderful team of product, engineering, security, support, comms, and marketing folks who made the roadmap that led us here possible.

https://github.blog/2023-03-09-raising-the-bar-for-software-security-github-2fa-begins-march-13/

Raising the bar for software security: GitHub 2FA begins March 13

On March 13, we will officially begin rolling out our initiative to require all developers who contribute code on GitHub.com to enable one or more forms of two-factor authentication (2FA) by the end of 2023. Read on to learn about what the process entails and how you can help secure the software supply chain with 2FA.

The GitHub Blog
Show threadswannysecDec 14, 2022
Huge thanks to the team of folks at GitHub doing amazing work to make this possible, it's my privilege to work with fantastic, dedicated professionals who care deeply about security every day.
swannysecDec 14, 2022
An update on how GitHub will bring 2FA to millions of developers in 2023 as part of our work to ensure a more secure software supply chain: https://github.blog/2022-12-14-raising-the-bar-for-software-security-next-steps-for-github-com-2fa/
Raising the bar for software security: next steps for GitHub.com 2FA | The GitHub Blog

GitHub will require all users who contribute code on GitHub.com to enable one or more forms of two-factor authentication (2FA) by the end of 2023. Learn more about our approach, when we’ll begin our rollout, and what you can expect as we begin requiring 2FA.

The GitHub Blog