Software safety agency Black Duck has appointed Dom Glavach as its new Chief Data Safety Officer, bringing in a seasoned govt with greater than 20 years of expertise spanning enterprise safety, nationwide defence, and SaaS environments.
The rent comes at a turbulent time for software program safety. Dependency abuse, credential misuse, and compromised construct pipelines have triggered a wave of provide chain breaches affecting developer instruments, cloud platforms, and AI-driven techniques, and organisations are struggling to maintain tempo. Black Duck’s choice to usher in a CISO of Glavach’s calibre indicators that software and provide chain safety is more and more being handled as a board-level concern moderately than a back-office technical downside.
Glavach steps into the function from CyberSN, the place he held the twin title of CISO and Chief Safety Strategist, overseeing safety operations, vulnerability administration, governance, danger and compliance, and safe product improvement throughout a completely distant workforce. Earlier than that, he spent 20 years at Concurrent Applied sciences Company (CTC), a top-100 Division of Defence contractor, the place he led compliance programmes aligned with FedRAMP, DFARS, NIST 800-171, and CMMC, and directed incident response towards nation-state adversaries, work that underpinned tens of tens of millions of {dollars} in secured authorities contracts.
At Black Duck, he’ll take possession of the corporate’s international safety technique, masking enterprise safety, governance, danger and compliance, and product safety. He’ll work carefully with engineering, product, and customer-facing groups to embed safety throughout each inner operations and the platforms Black Duck delivers to prospects, an more and more urgent job as organisations grapple with dangers from open supply software program, AI-generated code, and fragile software program provide chains.
“Dom has operated on the intersection of safety, software program, and national-scale danger for his total profession,” mentioned Jason Schmitt, Black Duck’s CEO. “His expertise main safety programmes in high-stakes environments makes him uniquely certified to assist Black Duck scale securely whereas advancing how the trade approaches software and provide chain safety within the age of AI.”
Past his practitioner credentials, Glavach is an lively voice within the safety neighborhood. He authored the CyberSN Job Taxonomy, teaches as an Adjunct Professor of Cybersecurity at Indiana College of Pennsylvania, and speaks repeatedly on AI-enabled defence, cyber workforce danger, and trendy CISO management.
“Black Duck sits on the centre of how trendy software program is constructed and secured,” mentioned Glavach. “As organisations race to undertake AI and speed up improvement, safety should evolve simply as rapidly — with out slowing innovation.”
