The business environment has evolved from tightly controlled, centralized, and internalized models to open models with multiple external dependencies. The modern digital business increasingly relies on technology partnerships, leveraging third-party applications, APIs, and data to deliver new functionality and optimized user experience to market.

That presents more risks from entities in the supply chain - suppliers, vendors, partners, contractors, open-source developers, etc. The SolarWinds incident and, more recently, 3CX have demonstrated that we are susceptible to attacks even from trusted third parties. With 90% of software components in enterprise apps being open source, the risks of malicious packages from the open-source ecosystem are higher than ever.

In this session, you will learn:

• How to establish a secure coding process without malicious intent and compromised source control system;
• How to adopt a “shift-left” strategy in taking a security-by-design approach through automation;
• Establishing a framework for faster detection and remediation of supply chain attacks;