Ed TALKS: SolariGate – Avoiding Supply Chain Burns

Presented by

Ed Adams, Security Innovation | Edna Conway, Microsoft | Octavia Howell, Equifax | Zach Minneker, Security Innovation

About this talk

Edna Conway (Microsoft) & Octavia Howell (Equifax) join us for an exclusive panel on avoiding supply chain burns. Supply chain risk is not going away, especially not software updates that fuels the IT-dependent enterprise. The SolarWinds hack has sowed doubts about the fidelity and security of 3rd-party tech. Despite significant damage, some organizations successfully thwarted the attacks despite using the vulnerable SolarWinds Orion appliance – how did they do it and what can we learn from it. This Ed TALK brings respected cybersecurity and supply chain experts together to discuss what companies that build and use technology can do to protect themselves in this increasingly partner dependent world. Topics include: Knowing your ingredients – SBOMs (software bill of materials) I spy – can we detect or prevent “tainted” software updates Walking the walk – let’s talk effective defense-in-depth, incidence response, network segmentation, and “zero-trust” Avoiding the recency trap – risk rating threats to avoid knee-jerk reactions Robots to the rescue – can AI be the solution to real-time threat intelligence?
Related topics:

More from this channel

Upcoming talks (0)
On-demand talks (71)
Subscribers (14829)
Security Innovation is an authority on software security and helps organizations build and deploy more secure software. Global technology vendors and enterprise IT organizations such as Microsoft, IBM, FedEx, ING, Symantec, Coca-Cola and GE rely on our expertise to understand the security risks in their software systems and facilitate the software and process change necessary to mitigate them. Security Innovation specializes in software security, an area where traditional “information security” and “business” consultants tend to struggle. We have been analyzing application vulnerabilities and risk for almost a decade and were one of the first providers of software risk solutions to Fortune 500 firms. Our unrivaled proficiency in technical analysis, coupled with sound knowledge of business processes, results in world-class solutions that bridge the gap between application security holes and risk management optimization.