SCA Your First Step Toward Supply Chain Security

Research shows that open source supply chain attacks are now the #2 most common attack vector. Are you prepared to defend your company against them?

The breach of SolarWinds showed just how devastating a software supply chain attack can be. Protecting the software supply chain is a complex challenge that includes code signing, identity and access management, policy and software composition analysis (SCA).

In this session, Mend (formerly WhiteSource) Director of Product Rhys Arkins and guest Sandy Carielli, principal analyst, Forrester, discuss why SCA is crucial to achieving supply chain security and why the increased threat of malicious packages has meant a shift from the traditional “scan and report” SCA approach to a “prevent and defend” supply chain security strategy. Forrester’s perspective will be presented, and different types of threats and their effects will be reviewed.