The modern digital business relies heavily on technology partnerships and third-party applications to deliver new functionality and improve user experience. However, this also exposes businesses to more risks from entities in the supply chain such as suppliers, vendors, and contractors. It is important to analyze the nature of software supply chains and understand the potential implications of a breach, including data exposure, operational disruptions, and reputational damage.
With over 90% of software components in enterprise apps being open source, the risks of malicious packages from the open-source ecosystem are higher than ever. This session will focus on implementing proactive measures to identify and mitigate software supply chain risks, establishing third-party governance for enhanced visibility, and evaluating a use case of securing a software supply chain process to reduce risks.