Software Supply Chain Security: Surviving the Era of the Criminal Coder
Remember when software supply chain security meant waiting for adversaries to exploit a newly discovered zero day? Those days are gone.

Attackers are now focusing proactively on the open-source software supply chain - planting vulnerabilities as opposed to waiting for them. Why? Because the supply chain is the perfect vehicle to gain an exponential advantage over unsuspecting victims.

Today's reality: Most organizations do not fully grasp supply chain risks and have not taken the appropriate steps to safeguard their apps against such risks. It is time to learn and get prepared.

Discussion topics will include:

  • New dangers plaguing the software supply chain.
  • How adversaries are planting threats in open source code.
  • How to reduce risks with mitigation and remediation strategies.

Join Peter Chestna, CISO of North America at Checkmarx, to gain his unique insight on the new open-source risks inherent in software supply chain security.
Tom Field
Tom Field
SVP, Editorial

Peter  Chestna
Peter Chestna
CISO of North America

March 21, 2023 | 05:30 - 08:00 pm EDT | Morton's the Steakhouse - 5th Avenue, New York City
Sponsored By

Checkmarx is the global leader in software security solutions for modern application development. Checkmarx delivers the industry’s most comprehensive software security platform in Checkmarx One. It’s a platform that unifies with DevOps and provides static and interactive application security testing, software composition analysis, and developer application security awareness and training programs to reduce and remediate risk from software vulnerabilities. Checkmarx is trusted by more than 40 percent of the Fortune 100 and half of the Fortune 50, including leading organizations such as SAP, Samsung, and Learn more at

ISMG Brands

ISMG’s 30 global media properties provide security professionals with industry and geo-specific news, research and educational events.

March 21, 2023 | 05:30 - 08:00 pm EDT

Software Supply Chain Security: Surviving the Era of the Criminal Coder