The purpose of thisblogis to establish a dialogue and get your input on issues and topics important to CVE. We encourage you to useMedium,LinkedIn, orTwitterto comment on, share, or like a post. Right-click and copyhereto share this article from the CVE website.

Chandan Nandakumaraiah of Palo Alto Networks Joins CVE Board

Share or comment

Chandan Nandakumaraiah

The CVE Program is pleased to welcome Chandan Nandakumaraiah ofPalo Alto Networksas the newest member of theCVE Board. Chandan, a long-term active contributor to the CVE Program and current co-chair of theCVE Quality Working Group (QWG), will continue to help CVE to evolve in a positive, user-centric way as a CVE Board member.

About Chandan

With over 20 years of experience working in product security, Chandan is an insightful, strong technical leader with an eye towards vulnerability issues that affect end-user organizations. Chandan has a long history of contributing to the CVE Program, demonstrating a commitment to improving CVE, and working as a producer and consumer of CVE information. He leads the product security team at Palo Alto Networks.

Chandan is the co-chair of the CVE QWG that is currently working to improve the quality of CVE data and standardize the CVE JSON record format. He leads the product security tooling workgroup at theForum of Incident Response and Security Teams (FIRST)and is an active participant of theCVSS SIGthat is developing the industry standard for assessing the severity of security vulnerabilities.

Chandan is the creator of the open-source projectOpenGrok, the popular source code search solution used by several major open-source projects and software development teams. Chandan continues to focus on automation within the CVE Program and improving the user experience for CVE stakeholders. He developed an online toolVulnogramto help CNAs easily produce and update CVE assignment details in the CVE JSON record format.

About the CVE Board

TheCVE Boardincludes members from numerous cybersecurity-related organizations including commercial security tool vendors, academia, research institutions, government departments and agencies, and other prominent security experts, as well as end-users of vulnerability information. Through open and collaborative discussions, the Board provides critical input regarding the data sources, product coverage, coverage goals, operating structure, and strategic direction of the CVE Program.

Comments or Questions?

If you have any questions about this article, please use theCVE Request Web Formand select “Other” from the dropdown menu.

We look forward to hearing from you, but more importantly, we look forward to your participation in the CVE Program!

Recent Posts

• We Speak CVE Podcast: Interview with Larry Cashdollar A Researcher’s Perspective
• CVE Program Report for Q1 Calendar Year 2021
• Our CVE Story: An Open-Source, Community-Based Example(guest author)
• We Speak CVE Podcast: Partnering with the CVE Program
• We Speak CVE Podcast - How MongoDB Manages Its CVEs
• More >>