Overview
With the increasing frequency and sophistication of attacks aimed at the modern software supply chain, software-producing organizations face mounting regulatory pressure to ensure the integrity of their software. Gartner Research estimates that by 2025, 45% of organizations will have experienced at least one software supply chain attack. This is largely due to the proliferation of OSS components in modern applications, which introduces a wide range of vulnerabilities into software artifacts.
This webinar offers security and GRC leaders expert guidance on establishing more secure, compliant software supply chains. We’ll first examine the elements of the software supply chain and the ways in which they can be compromised. We’ll then discuss the importance of the Supply Chain Levels for Software Artifacts (SLSA) compliance framework and give an overview of Software Bills of Material (SBOMs). We’ll highlight the role of SBOMs in remediating zero-day vulnerabilities and license compliance issues, in addition to meeting the requirements of Executive Order 14028.
You will learn:
- Where and how modern software supply chains are vulnerable in an intensifying cyber threat landscape
- What’s required for ensuring software artifact integrity
- How to use SBOMs as a tool for governing OSS component use and fast remediation of security and compliance issues