Software Supply Chain Security: Surviving the Era of the Criminal Coder
Remember when software supply chain security meant waiting for adversaries to exploit a newly discovered zero day? Those days are gone.
Attackers are now focusing proactively on the open-source software supply chain - planting vulnerabilities as opposed to waiting for them. Why? Because the supply chain is the perfect vehicle to gain an exponential advantage over unsuspecting victims.
Today's reality: Most organizations do not fully grasp supply chain risks and have not taken the appropriate steps to safeguard their apps against such risks. It is time to learn and get prepared.
Join Peter Chestna, CISO of North America at Checkmarx, to gain his unique insight on the new open-source risks inherent in software supply chain security.
Attackers are now focusing proactively on the open-source software supply chain - planting vulnerabilities as opposed to waiting for them. Why? Because the supply chain is the perfect vehicle to gain an exponential advantage over unsuspecting victims.
Today's reality: Most organizations do not fully grasp supply chain risks and have not taken the appropriate steps to safeguard their apps against such risks. It is time to learn and get prepared.
Discussion topics will include:
- New dangers plaguing the software supply chain.
- How adversaries are planting threats in open source code.
- How to reduce risks with mitigation and remediation strategies.
Join Peter Chestna, CISO of North America at Checkmarx, to gain his unique insight on the new open-source risks inherent in software supply chain security.
Peter Chestna
CISO of North America
Checkmarx
James DeLuccia
Product Security Chief
Honeywell
March 22, 2023 | 05:30 - 08:00 pm PDT | Mastro's Ocean Club- 1200 S Figueroa St, Los Angeles, CA
