IBM and its subsidiary Red Hat have unveiled Project Lightwell, a $5 billion initiative aimed at reshaping the future of open-source software and securing corporate software supply chains in the age of artificial intelligence.
Facing advanced AI models that now enable cyber adversaries to identify and exploit security gaps more readily, IBM and Red Hat plan to field a global workforce of more than 20,000 engineers.
This team will draw on cutting-edge AI capabilities to establish a trusted clearinghouse for the enterprise market.
This one-stop clearinghouse will function as a security coordination layer. Its aim is to harness AI to identify, test, and remediate vulnerabilities within vast volumes of open-source code.
20,000 AI-assisted Engineers
Project Lightwell services will be offered as subscriptions. Through this model, enterprises will be able to confidentially report vulnerabilities or bugs discovered in the open-source frameworks they use.
In return, they will receive patched fixes that have been validated and are production-ready, which they can integrate directly into their own software supply chains.
According to IBM, securing these ecosystems has become a critical priority: more than 90% of Fortune 500 companies today rely heavily on open-source software to power their infrastructure.
To refine and validate its approach, Project Lightwell is already collaborating with a select group of marquee financial-industry clients. Among these early adopters are Bank of America, Citi, Goldman Sachs, Morgan Stanley, Visa, and Wells Fargo.
“With Project Lightwell, IBM and Red Hat are helping define a new sector-wide model that brings together AI, engineering expertise, and trusted collaboration to secure open-source software at its source and throughout the supply chain,” stated Arvind Krishna, IBM’s CEO.
