Black Duck Names New CIO, CISO

Black Duck Software, which focuses on offering application security, appointed Ishpreet Singh as CIO and Bruce Jenkins as CISO.

“As we are at an expansive point in the growth and evolution of our newly independent organization, Ishpreet and Bruce are the ideal fits for such critical roles,” said company CEO, Jason Schmitt. “As a proven leader in the software security industry, it’s imperative that we at Black Duck deliver solutions that further accelerate our mission to support our customers in protecting their bottom line by building trust in their software. Appointing proven leaders to continually heighten Black Duck’s information technology and information security strategies is essential for us to bolster our organization’s innovation and stability.”

The appointments follow last month’s announcement of Sean Forkan as CRO.

Singh will lead organizational technology strategy, and be responsible for aligning technology initiatives with business objectives to drive digital transformation and innovative solutions implementation, including AI strategy to enhance growth and scalability. He will oversee enterprise security, ensuring the development and maintenance of a resilient cybersecurity framework to protect assets and data while maintaining compliance with industry standards.

Singh brings a 20-year track record of developing a strategic vision, aligned with business objectives and implementing cutting-edge solutions to enhance operational efficiency and foster innovation. He most recently served as global CIO for Qualys and on the Evanta CIO Governing Body, in addition to being a member of CNBC’s executive technology council.

“Black Duck is in a unique position as a newly independent organization with an impressive track record, the broadest portfolio in the market and rapid growth potential,” said Singh. “I’m thrilled to join a team in which such exciting potential stands ahead to craft a strong vision through robust IT solutions. Software truly enables innovation, and it is my mission to ensure we take our business and the needs of our customers to new heights when it comes to building trust into software at the speed businesses demand.”

As new CISO, meanwhile, Jenkins will lead all aspects of Black Duck’s cybersecurity program and strategy, including on-premise products, cloud solutions, IT infrastructure and supply chain.

Jenkins brings nearly 25 years of physical, IT and software security expertise to this role. Previously, he oversaw internal product security, incident response and risk and compliance strategy with the Synopsys Software Integrity Group, through its transition to Black Duck.

“It all comes down to trust,” said Jenkins. “It’s what drives our team, our organization, our industry and our customer commitments. My primary focus is on taking a pragmatic path to the development and delivery of resilient, secure-by-design solutions that maintain the safety, reliability and security of our business operations, and earning the trust of our customers.”