The Open Source Program Office (OPSO) at Schneider Electric will prioritize the following best practices:
- Governance: Collaborative decision-making involving the OSPO team and stakeholders.
- Quality: Ensuring high-quality contributions that meet internal security, safety, and reliability standards.
- Compliance: Adhering to open source licenses and conducting regular audits.
- Support: Active participation in external open source communities.
- Learning: Providing training on open source best practices.
- Continuous Improvement: Continuously improving processes based on feedback and industry trends.
- Cybersecurity: Certified ISA/IEC 62443-4-1 Secure Development Lifecycle practices at the highest maturity level.
- Technology Validation: Secure testing, verification, and validation by CREST-accredited resources.
- Vulnerability Management: ISO/IEC certified vulnerability management and disclosure policies.