Interlynk

🚀 Excited to share that Interlynk will be at MD&M Trade Shows Midwest - one of the leading events for the medical device engineering and manufacturing community! 🎙️ Our CEO Surendra Pathak will be hosting a featured session: Cybersecurity Across the Finish Line: Making QMS a Pillar of Device Resilience 📅 Date: October 22, 2025 🔗 Session Details: https://lnkd.in/gviR86AE As the FDA now requires SBOM readiness, secure design controls, and continuous post-market mitigation, cybersecurity can no longer be treated as a bolt-on - it must be engineered into the quality management system (QMS). Surendra will break down a practical framework that medical device manufacturers can apply to accelerate compliance while reducing product risk. 👩⚕️👨💻 Whether you're leading regulatory strategy, product security, or quality engineering, this session will deliver actionable insights for modern device resilience. 📍 Heading to MD&M Midwest? Let’s connect! https://lnkd.in/g9gcBrxR Stop by to meet the Interlynk team and see how we help med devices, SaMD and AIInSaMD automate FDA cybersecurity readiness with SBOM intelligence. #MDMMidwest #MedicalDevices #Cybersecurity #FDA #SBOM #QMS #DeviceSecurity #Interlynk #MedTech #Compliance

🕊️ Release: Bi-directional sync with Jira and MD&M Midwest 🕊️   With Interlynk’s seamless integration with Jira, you can now manage vulnerability status (VEX) across both platforms. This allows developers to continue working in their preferred tool while keeping compliance and data fully synchronized. ̶ ̶ ̶ ̶ ̶ ̶ ̶ ̶ ̶ ̶ ̶ ̶ ̶ ̶ ̶ 🛠️ 𝗣𝗹𝗮𝘁𝗳𝗼𝗿𝗺 𝗥𝗲𝗹𝗲𝗮𝘀𝗲 🔁 𝗕𝗶-𝗱𝗶𝗿𝗲𝗰𝘁𝗶𝗼𝗻𝗮𝗹 𝗝𝗶𝗿𝗮 𝗦𝘆𝗻𝗰: Interlynk now supports full two-way synchronization with Jira, including issue creation, SBOM-specific custom fields, workflows, and layouts. You can link these to specific Jira projects to keep vulnerability status perfectly aligned between Interlynk and Jira. 🏭 𝗠𝘂𝗹𝘁𝗶-𝗽𝗿𝗼𝗷𝗲𝗰𝘁 𝗝𝗶𝗿𝗮 𝗦𝗲𝘁𝘂𝗽: Connect Interlynk products to multiple Jira projects, making it easy to manage vulnerabilities across different teams and environments. ⤵️ 𝗦𝘁𝗮𝘁𝘂𝘀 𝗜𝗺𝗽𝗼𝗿𝘁 𝗘𝗻𝗵𝗮𝗻𝗰𝗲𝗺𝗲𝗻𝘁𝘀: You can now preview vulnerability status with a simple hover, and filter statuses during import for faster, cleaner review. ⌨️ 𝗡𝗲𝘄 𝗞𝗲𝘆𝗯𝗼𝗮𝗿𝗱 𝗦𝗵𝗼𝗿𝘁𝗰𝘂𝘁𝘀: Switching between version tabs is now easier using the new shortcut: Alt/Option + {Tab first character}. 🩻 𝗦𝘆𝘀𝘁𝗲𝗺 𝗟𝗼𝗴 𝗣𝗲𝗿𝗳𝗼𝗿𝗺𝗮𝗻𝗰𝗲: System log performance has been significantly improved for faster loading and smoother navigation. 📈 𝗨𝗜/𝗨𝗫 𝗘𝗻𝗵𝗮𝗻𝗰𝗲𝗺𝗲𝗻𝘁𝘀 ⁉️ New filters are now available in the product vulnerability view and in the vulnerability import wizard. 🛂 Labels are now sorted by default and support drag-and-drop reordering. 📁 Product filters have been added to the personalized notifications view. 🐞 𝗕𝘂𝗴 𝗙𝗶𝘅𝗲𝘀 & 𝗦𝘁𝗮𝗯𝗶𝗹𝗶𝘁𝘆 13 big and tiny bug fixes, including: NVD link missing for some vulnerabilties, VEX status defaulting to 'Affected', license manager short-ID duplication Read our official release notes here: https://lnkd.in/gV2F8mCr ̶ ̶ ̶ ̶ ̶ ̶ ̶ ̶ ̶ ̶ ̶ ̶ ̶ ̶ ̶ 🗞️ 𝗜𝗻 𝘁𝗵𝗲 𝗻𝗲𝘄𝘀 𝗠𝗲𝗲𝘁 𝘂𝘀 𝗮𝘁 𝘁𝗵𝗲 𝗠𝗗&𝗠 𝗠𝗶𝗱𝘄𝗲𝘀𝘁 The Interlynk team will be at MD&M Midwest (https://lnkd.in/gWfhZYHh) - the largest design and medtech manufacturing event in the region.   If you’re attending, let’s connect. We’d love to share how software supply chain security has evolved this year and what leading device manufacturers are doing about it. Let’s schedule a quick meeting here - https://lnkd.in/gWi4vudW   You’re also invited to join our CEO, Surendra Pathak, for his session: Cybersecurity Across the Finish Line: Making QMS a Pillar of Device Resilience (https://lnkd.in/gviR86AE) 📅 October 22 🕚 11:15 AM 📍 Room 103C Hope to see you there!

🎉 It’s SBOM Jobs Friday! 🎉 If you’re excited about software supply chain security and want to work on cutting-edge challenges, now’s a great time to explore new opportunities! 🚀 From the US FDA to NIS2, DORA, CRA, and beyond - more and more companies are looking for folks who understand SBOMs and how they help with compliance and product security. Whether you’re passionate about securing open source, managing third-party risk, or driving innovation in SBOM automation, there’s a role out there for you. Take a look at some of the open positions and see where your next career move could take you! 💼🔐 PeopleTec, Inc. 🖥️ DevSecOps Engineer 🌎 Huntsville (AL) https://lnkd.in/gxNR8aJN TDI (Tetrad Digital Integrity) 🖥️ Information Systems Security Office (Cloud) 🌎 Ashburn (VA) https://lnkd.in/ggG2BZHx Good luck, and reach out to Interlynk if you need help getting started: hello@interlynk.io #SBOM  #DevSecOps  #Hiring

#SFTechWeek 2025 Lightspeed’s Cyber60 breaks down what’s ahead in cybersecurity - from AI security and intent-based security to AI supply chain provenance - and shows a nearly even split in preference between platforms and point solutions. with Guru Chahal Praveen Kumar Kartik Donga Kosuke Mitsuoka Palash Basu, P.E. Rupesh Mishra Vinay Mamidi Apurv Garg Ritesh Noronha

🤝 💼 SBOM Minimum Elements - A conversation 💪 🙏 CISA’s proposed 2025 Minimum Elements for SBOM are an important step forward for software supply chain security. At the same time, this creates an opportunity to learn from the adoption of the previous version, eliminate ambiguity, and align with the capabilities of the existing toolset. In Interlynk's formal response, by our CTO Ritesh Noronha, we shared practical recommendations based on our experience analyzing millions of SBOMs through our platform and open-source tools - from removing legacy formats like SWID to adding essential fields like component hashes, license data, tool metadata, and generation context. But many questions remain for all of us who build, consume, and manage SBOMs every day: 🗨️ How do we standardize hashing methods across toolchains? 🗨️ What’s the best way to represent support levels or handle known unknowns? 🗨️ How can smaller teams meet new coverage and distribution requirements without heavy overhead? 🗨️ Should SBOM signing and data licenses be mandatory for public distribution? At Interlynk, we know the answers will come from the community - from the operators who live and breathe SBOMs in CI/CD, vulnerability workflows, and compliance programs. 👉 We’re hosting an open conversation to brainstorm these and other challenges around SBOM minimum elements, practical adoption, and tooling gaps. If you’re an SBOM practitioner, we want your voice in this discussion. Comment below or DM us to join the conversation. CISA's SBOM 2025 Minimum Elements: https://lnkd.in/gn9ECfTT Interlynk's Submission: https://lnkd.in/gS_RF_Sh

🛳️ Release: Free Enterprise trial, webhook controls, brand new partnership 🛳️ We are excited to roll out a 15-day free Enterprise tier trial for all existing accounts. Interlynk Enterprise tier is full of powerful features - compliance reports by regulations, automation rules, open-source insights and enrichment, license manager, and integrations with existing tools. ̶ ̶ ̶ ̶ ̶ ̶ ̶ ̶ ̶ ̶ ̶ ̶ ̶ ̶ ̶ 🛠️ 𝗣𝗹𝗮𝘁𝗳𝗼𝗿𝗺 𝗥𝗲𝗹𝗲𝗮𝘀𝗲 🚀 𝗪𝗲𝗯𝗵𝗼𝗼𝗸 𝗘𝘃𝗲𝗻𝘁 𝗖𝗼𝗻𝘁𝗿𝗼𝗹:  Customizable environment rules that support mapping webhook event types to a specific environment 🚀 𝗙𝗶𝗻𝗲-𝗚𝗿𝗮𝗶𝗻𝗲𝗱 𝗡𝗼𝘁𝗶𝗳𝗶𝗰𝗮𝘁𝗶𝗼𝗻𝘀 𝗖𝗼𝗻𝘁𝗿𝗼𝗹: Users can control the type of notification, underlying environment, and its delivery 🚀 𝗕𝗶𝘁𝗯𝘂𝗰𝗸𝗲𝘁 𝗢𝗔𝘂𝘁𝗵 𝗜𝗻𝘁𝗲𝗴𝗿𝗮𝘁𝗶𝗼𝗻: Seamless authentication with secure token handling and improved setup guidance 🚀 𝗕𝘂𝗹𝗸 𝗮𝗻𝗱 𝗔𝘂𝘁𝗼𝗺𝗮𝘁𝗶𝗰 𝗧𝗶𝗰𝗸𝗲𝘁𝗶𝗻𝗴: Continuous improvements in turning policy violations into actions by creating and assigning tickets in bulk or triggering on violation. 📈 𝗨𝗜/𝗨𝗫 𝗘𝗻𝗵𝗮𝗻𝗰𝗲𝗺𝗲𝗻𝘁𝘀 🛟 New floating action menu on vulnerabilities makes it easier than ever to act quickly ⌨️ Global keyboard shortcuts added to reach Policy details and environment rules pages  ©️ Copy to clipboard added to multiple commonly used fields 🐞 𝗕𝘂𝗴 𝗙𝗶𝘅𝗲𝘀 & 𝗦𝘁𝗮𝗯𝗶𝗹𝗶𝘁𝘆 🐞 18 big and tiny bug fixes Read our official release notes here: https://lnkd.in/gV2F8mCr ̶ ̶ ̶ ̶ ̶ ̶ ̶ ̶ ̶ ̶ ̶ ̶ ̶ ̶ ̶ 🔓 𝗢𝗽𝗲𝗻 𝗦𝗼𝘂𝗿𝗰𝗲 𝗥𝗲𝗹𝗲𝗮𝘀𝗲𝘀 🎯 sbomqs now supports SBOM policy evaluation and enforcement, making it easy to check SBOM quality in build/release pipelines and block or alert based on results. 🎯 sbomasm, in partnership with ShiftLeftCyber, now supports cryptographic signing and validation directly in the tool. 🎯 sbomasm - with new augment merge - to enrich a primary SBOM with data present in a secondary SBOM. 𝗦𝗕𝗢𝗠 𝗤𝘂𝗮𝗹𝗶𝘁𝘆: v1.2.0 🚀 Enforce SBOM policy using sbomqs 👉 Additional details: https://lnkd.in/gEDhPRJm   𝗦𝗕𝗢𝗠 𝗘𝗱𝗶𝘁𝗶𝗻𝗴: v1.0.8 🚀 Support for SBOM augmentation 👉 Additional details: https://lnkd.in/gbjwDe4H ̶ ̶ ̶ ̶ ̶ ̶ ̶ ̶ ̶ ̶ ̶ ̶ ̶ ̶ ̶ 🗞️ 𝗜𝗻 𝘁𝗵𝗲 𝗻𝗲𝘄𝘀 𝗜𝗻𝘁𝗲𝗿𝗹𝘆𝗻𝗸 𝗽𝗮𝗿𝘁𝗻𝗲𝗿𝘀 𝘄𝗶𝘁𝗵 𝗦𝗵𝗶𝗳𝘁𝗟𝗲𝗳𝘁 𝗖𝘆𝗯𝗲𝗿 We're excited to announce our partnership with ShiftLeftCyber and use its SecureSBOM API to power SBOM signing - https://lnkd.in/gzaRPu_A 𝗠𝗲𝗲𝘁 𝘂𝘀 𝗮𝘁 𝘁𝗵𝗲 𝗠𝗲𝗱𝗧𝗲𝗰𝗵 𝗖𝗼𝗻𝗳𝗲𝗿𝗲𝗻𝗰𝗲 The MedTech Conference brings together critical medtech education, networking, and innovation all in one place. If you are there, learn how FDA cybersecurity compliance has advanced this year - https://lnkd.in/giSr9-SE

🎉 It’s SBOM Jobs Friday! 🎉 If you’re excited about software supply chain security and want to work on cutting-edge challenges, now’s a great time to explore new opportunities! 🚀 From the US FDA to NIS2, DORA, CRA, and beyond — more and more companies are looking for folks who understand SBOMs and how they help with compliance and product security. Whether you’re passionate about securing open source, managing third-party risk, or driving innovation in SBOM automation, there’s a role out there for you. Take a look at some of the open positions and see where your next career move could take you! 💼🔐 Blankfactor 🖥️ Cybersecurity Engineer (Cloud, K8s Hardening, AppSec & IAM) 🌎 Remote (US) https://lnkd.in/gUhWS2Em Lynx 🖥️ Sr. Embedded Software Engineer 🌎 Remote (US) https://lnkd.in/gm5cfA8B Goldbelt Nighthawk, LLC 🖥️ DevSecOps SME 🌎 Mechanicsburg (PA) https://lnkd.in/gBBXb9wQ Nuclearn 🖥️ Staff Full Stack Engineer 🌎 Phoenix (AZ) https://lnkd.in/gHUJVCDd Johnson & Johnson 🖥️ Senior Cloud Security Engineer 🌎 Danvers / Birmingham / Tucson / Little Rock / Irvine / Denver / Hartford / Dover / Jacksonville / Atlanta / Boise / Chicago / Indianapolis / Des Moines / Kansas City / Topeka / Louisville / New Orleans / Portland / Baltimore / Columbia / Detroit / Minneapolis / Jackson / Billings / Omaha / Las Vegas / Concord / Raritan / Albuquerque / New York / Charlotte / Fargo / Columbus / Oklahoma City / Philadelphia / Providence / Sioux Falls / Nashville / Austin / Salt Lake City / Burlington / Richmond / Seattle / Charleston / Milwaukee  https://lnkd.in/gEegNA4A Good luck, and reach out to Interlynk if you need help getting started: hello@interlynk.io #SBOM #DevSecOps #Hiring

📢 Improving Risk Management Decisions with SBOM 📢 The OpenSSF SBOM Operations Working Group, in collaboration with the Cybersecurity and Infrastructure Security Agency (CISA), has released a whitepaper outlining processes and use cases for improving risk management decisions with SBOM data. The document demonstrates that: 💡 SBOMs are not only inventories, they are actionable intelligence. 💡 By analyzing and enriching SBOM data, organizations can improve security, compliance, licensing, procurement, and even M&A decisions. 💡 The document highlights 13 practical use cases across the SBOM lifecycle, including:  • Pre- and post-deployment vulnerability management  • Open-source licensing risk detection  • End-of-life & non-maintained component alerting  • Pre-purchase software risk assessment  • Incident response acceleration  • M&A due diligence At Interlynk, this is exactly where we focus: turning SBOMs from static artifacts into a living, automated source of truth for risk, compliance, and operational resilience. Interlynk platform (with free community tier: https://app.interlynk.io/) supports each of these use cases out of the box. 🔗 OpenSSF announcement here: https://lnkd.in/e_jfqrPG 💡 Curious how to put these SBOM use cases into practice? Let’s talk. #SBOM #CyberSecurity #RiskManagement #SupplyChainSecurity #Interlynk