In today’s hyper-connected digital landscape, enterprise risk no longer stops at the perimeter. The growing reliance on third-party software vendors—particularly SaaS providers—has exposed organizations to increasingly complex and opaque cyber supply chains. Recent high-profile incidents have shown that trust in external providers can quickly become a risk factor when those vendors are compromised.

This session explores real-world cyber incidents involving key suppliers, analyzing how attackers leveraged trusted connections to gain access or disrupt operations. Drawing from these cases, we will outline practical, actionable strategies to reduce risk and improve resilience across your supply chain.

​

Topics covered will include:

• Policy and governance considerations for supplier onboarding and lifecycle management

• Contractual clauses to support security accountability and breach response

• Third-party incident detection and coordinated response

• Governance of SaaS platforms

• Continuous assurance and reassessment of vendor controls

 

Attendees will leave with a clearer understanding of the threat landscape tied to cyber supply chains, and a toolkit of mitigation strategies that combine governance, legal, and technical controls for securing the extended enterprise.