Tech Edge hosted a fireside chat on April 30 at RSAC 2025 in San Francisco with Kim Lewandowski, Chief Product Officer and co-founder at Chainguard. The in-person interview was joined by Editor-in-Chief John Jannarone they discussed how the company addresses the known vulnerabilities that companies cannot keep up with to protect them against attackers, among other topics.
Watch the interview below:
About Kim Lewandowski
Kim, a seasoned security expert and visionary, is co-founder and Chief Product Officer at Chainguard, a leading provider of secure open source software. With over 15 years of experience in the tech industry, Kim has been instrumental in driving innovation and security best practices.
Prior to founding Chainguard, Kim held key leadership positions at Google and several startups, where she spearheaded the development of groundbreaking open source projects like SLSA, Tekton and Security Scorecards. Her expertise has been instrumental in shaping the landscape of secure software development.
As a passionate advocate for open source security, Kim served on the founding boards of the Open Source Security Foundation and Continuous Delivery Foundation, driving industry collaboration and standards. Her unwavering commitment to building a more secure digital world has positioned Chainguard as a trusted partner for organizations seeking to protect their software supply chains.
About Chainguard
Over the past few years, high-profile supply chain attacks like SolarWinds attack and the Log4Shell vulnerability have eroded confidence in traditional digital infrastructure. These incidents didn’t just exploit weaknesses; they turned trusted tools into threats, leaving organizations scrambling to mitigate damage.It’s like watching a burglar raid your home in real-time on your security camera, but being powerless to stop them. Traditional security tools are often reactive — scanners that catch threats serve an important purpose, but Chainguard’s vision flips this narrative: what if every update made your software safer? What if you could prevent vulnerabilities instead of constantly patching them?
Contact:
