Video interview with Information Security Media Group at Black Hat USA 2025 on software supply chain security beyond dependencies and SBOMs.
Key Topics
- Supply chain risks beyond code dependencies: developer tools, browser extensions, and cloud infrastructure
- SBOMs as inventory, not a security solution — using them to address broader operational problems
- Visibility gaps across interconnected systems and third-party services in the software lifecycle
- Tools and practices to improve tracking, awareness, and management of software risk
